abuse.ch | Introducing YARAify
https://abuse.ch/blog/introducing-yaraify/
YARAify | YARA scan engine
https://yaraify.abuse.ch/
x86matthew - ProcEnvInjection - Remote code injection by abusing process environment strings
https://www.x86matthew.com/view_post?id=proc_env_injection
How SeaFlower 藏海花 installs backdoors in iOS/Android web3 wallets to steal your seed phrase | by taha aka "lordx64" | Jun, 2022 | Confiant
https://blog.confiant.com/how-seaflower-%E8%97%8F%E6%B5%B7%E8%8A%B1-installs-backdoors-in-ios-android-web3-wallets-to-steal-your-seed-phrase-d25f0ccdffce
GitHub - wiz-sec/cloud-middleware-dataset
https://github.com/wiz-sec/cloud-middleware-dataset
Objective-See's Blog
https://objective-see.org/blog/blog_0x6F.html
Linux Threat Hunting: 'Syslogk' a kernel rootkit found under development in the wild - Avast Threat Labs
https://decoded.avast.io/davidalvarez/linux-threat-hunting-syslogk-a-kernel-rootkit-found-under-development-in-the-wild/
Iranian Hackers Spotted Using a new DNS Hijacking Malware in Recent Attacks
https://thehackernews.com/2022/06/iranian-hackers-spotted-using-new-dns.html
JWT attacks | Web Security Academy
https://portswigger.net/web-security/jwt
Researchers Disclose Rooting Backdoor in Mitel IP Phones for Businesses
https://thehackernews.com/2022/06/researchers-disclose-rooting-backdoor.html
GALLIUM Expands Targeting Across Telecommunications, Government and Finance Sectors With New PingPull Tool
https://unit42.paloaltonetworks.com/pingpull-gallium/
Introduction to Use-After-Free Vulnerabilities | UserAfterFree Challenge Walkthrough (Part: 1) - YouTube
https://www.youtube.com/watch?v=PKqMsaKGdlM
VIP Program
https://docs.greynoise.io/docs/vip-program
Risky Biz News: Google shuts down YouTube Russian propaganda channels
https://riskybiznews.substack.com/p/risky-biz-news-google-shuts-down
HelloXD Ransomware Installing Backdoor on Targeted Windows and Linux Systems
https://thehackernews.com/2022/06/hello-xd-ransomware-installing-backdoor.html