Hacking a Bank by Finding a 0day in DotCMS – Assetnote
https://blog.assetnote.io/2022/05/03/hacking-a-bank-using-dotcms-rce/
POLITICO on Twitter: "The Supreme Court has voted to strike down Roe v. Wade, according to an initial draft majority opinion written by Justice Samuel Alito and obtained by POLITICO. “We hold that Roe and Casey must be overruled,” Alito writes. https://t.co/nl3JFLx9xg" / Twitter
https://twitter.com/politico/status/1521288272021901312
Data Broker Is Selling Location Data of People Who Visit Abortion Clinics
https://www.vice.com/en/article/m7vzjb/location-data-abortion-clinics-safegraph-planned-parenthood
UNC3524: Eye Spy on Your Email | Mandiant
https://www.mandiant.com/resources/unc3524-eye-spy-email
AvosLocker Ransomware Variant Abuses Driver File to Disable Anti-Virus, Scans for Log4shell
https://www.trendmicro.com/en_us/research/22/e/avoslocker-ransomware-variant-abuses-driver-file-to-disable-anti-Virus-scans-log4shell.html
Supreme Court has voted to overturn abortion rights, draft opinion shows - POLITICO
https://www.politico.com/news/2022/05/02/supreme-court-abortion-draft-opinion-00029473
GitHub - forrest-orr/WizardOpium: Google Chrome Use After Free
https://github.com/forrest-orr/WizardOpium
🔍 Looking for Remote Code Execution bugs in the Linux kernel | Andrey Konovalov
https://xairy.io/articles/syzkaller-external-network
CDC Tracked Millions of Phones to See If Americans Followed COVID Lockdown Orders
https://www.vice.com/en/article/m7vymn/cdc-tracked-phones-location-data-curfews
APIsec: The Only Fully Automated API Security Testing Solution
http://APIsec.ai
Trello From the Other Side: Tracking APT29 Phishing Campaigns | Mandiant
https://www.mandiant.com/resources/tracking-apt29-phishing-campaigns
GitHub Says Recent Attack Involving Stolen OAuth Tokens Was "Highly Targeted"
https://thehackernews.com/2022/05/github-says-recent-attack-involving.html
AvosLocker Ransomware Variant Using New Trick to Disable Antivirus Protection
https://thehackernews.com/2022/05/avoslocker-ransomware-variant-using-new.html
Update on cyber activity in Eastern Europe
https://blog.google/threat-analysis-group/update-on-cyber-activity-in-eastern-europe
| Job Preference
http://www.jobpreference.com
REvil ransomware returns: New malware sample confirms gang is back
https://www.bleepingcomputer.com/news/security/revil-ransomware-returns-new-malware-sample-confirms-gang-is-back/
Unpatched DNS Related Vulnerability Affects a Wide Range of IoT Devices
https://thehackernews.com/2022/05/unpatched-dns-related-vulnerability.html
Update on cyber activity in Eastern Europe
https://blog.google/threat-analysis-group/update-on-cyber-activity-in-eastern-europe/
What Your Period Tracker App Knows About You - Consumer Reports
https://www.consumerreports.org/health-privacy/what-your-period-tracker-app-knows-about-you-a8701683935/
(pub)TBHM App v1 - Google スライド
https://docs.google.com/presentation/d/1cMSRVlJJ5de6Pyv-09YgzOGS0OYrP6p7ggGl0f42wmw/edit?usp=sharing
cocomelonc
https://cocomelonc.github.io/
The Hermit Kingdom’s Ransomware Play
https://www.trellix.com/en-us/about/newsroom/stories/threat-labs/the-hermit-kingdoms-ransomware-play.html
Introduction to Use-After-Free Vulnerabilities | UserAfterFree Challenge Walkthrough (Part: 1) - YouTube
https://www.youtube.com/watch?v=PKqMsaKGdlM
Cyber Warrior Studios Bio Links
https://cyberwarriorstudios.bio.link
SCOTUSblog on Twitter: "It’s impossible to overstate the earthquake this will cause inside the Court, in terms of the destruction of trust among the Justices and staff. This leak is the gravest, most unforgivable sin." / Twitter
https://twitter.com/SCOTUSblog/status/1521295411545260035
Chinese cyber-espionage group Moshen Dragon targets Asian telcos
https://www.bleepingcomputer.com/news/security/chinese-cyber-espionage-group-moshen-dragon-targets-asian-telcos/
New Hacker Group Pursuing Corporate Employees Focused on Mergers and Acquisitions
https://thehackernews.com/2022/05/new-hacker-group-pursuing-corporate.html
Chinese Hackers Caught Exploiting Popular Antivirus Products to Target Telecom Sector
https://thehackernews.com/2022/05/chinese-hackers-caught-exploiting.html