07/06
07/07
07/08
20 Posts

GitHub - GhostPack/Koh: The Token Stealer

https://github.com/GhostPack/Koh
GitHub - GhostPack/Koh: The Token Stealer
18 Posts

This Is the Code the FBI Used to Wiretap the World

https://www.vice.com/en/article/v7veg8/anom-app-source-code-operation-trojan-shield-an0m
This Is the Code the FBI Used to Wiretap the World
13 Posts

Automating binary vulnerability discovery with Ghidra and Semgrep - hn security

https://security.humanativaspa.it/automating-binary-vulnerability-discovery-with-ghidra-and-semgrep/
Automating binary vulnerability discovery with Ghidra and Semgrep - hn security
11 Posts

Unprecedented Shift: The Trickbot Group is Systematically Attacking Ukraine

https://securityintelligence.com/posts/trickbot-group-systematically-attacking-ukraine/
Unprecedented Shift: The Trickbot Group is Systematically Attacking Ukraine
11 Posts

Microsoft rolls back decision to block Office macros by default

https://www.bleepingcomputer.com/news/microsoft/microsoft-rolls-back-decision-to-block-office-macros-by-default/
Microsoft rolls back decision to block Office macros by default
11 Posts

Altiris Methods for Lateral Movement - MDSec

https://www.mdsec.co.uk/2022/07/altiris-methods-for-lateral-movement/
Altiris Methods for Lateral Movement - MDSec
10 Posts

Apple expands commitment to protect users from mercenary spyware - Apple

https://www.apple.com/newsroom/2022/07/apple-expands-commitment-to-protect-users-from-mercenary-spyware/
Apple expands commitment to protect users from mercenary spyware - Apple
9 Posts

2273 - Windows: Kerberos KerbRetrieveEncodedTicketMessage AppContainer EoP - project-zero

https://bugs.chromium.org/p/project-zero/issues/detail?id=2273
2273 - Windows: Kerberos KerbRetrieveEncodedTicketMessage AppContainer EoP - project-zero
9 Posts

Researchers Warn of New OrBit Linux Malware That Hijacks Execution Flow

https://thehackernews.com/2022/07/researchers-warn-of-new-orbit-linux.html
Researchers Warn of New OrBit Linux Malware That Hijacks Execution Flow
8 Posts

PrivFu/SeBackupPrivilegePoC.cs at main · daem0nc0re/PrivFu · GitHub

https://github.com/daem0nc0re/PrivFu/blob/main/PrivilegedOperations/SeBackupPrivilegePoC/SeBackupPrivilegePoC.cs
PrivFu/SeBackupPrivilegePoC.cs at main · daem0nc0re/PrivFu · GitHub
7 Posts

ENISA Threat Landscape Methodology — ENISA

https://www.enisa.europa.eu/publications/enisa-threat-landscape-methodology
ENISA Threat Landscape Methodology — ENISA
7 Posts

North Korean Maui Ransomware Actively Targeting U.S. Healthcare Organizations

https://thehackernews.com/2022/07/north-korean-maui-ransomware-actively.html
North Korean Maui Ransomware Actively Targeting U.S. Healthcare Organizations
7 Posts

Account hijacking using "dirty dancing" in sign-in OAuth-flows - Detectify Labs

https://labs.detectify.com/2022/07/06/account-hijacking-using-dirty-dancing-in-sign-in-oauth-flows/
Account hijacking using "dirty dancing" in sign-in OAuth-flows - Detectify Labs
6 Posts

MalwareBazaar | SHA256 a7210d9c96813885238dcd4c7d6a6c08cb41220c65d7ce547ec17fde959d233e (Gozi)

https://bazaar.abuse.ch/sample/a7210d9c96813885238dcd4c7d6a6c08cb41220c65d7ce547ec17fde959d233e/
MalwareBazaar | SHA256 a7210d9c96813885238dcd4c7d6a6c08cb41220c65d7ce547ec17fde959d233e (Gozi)
6 Posts

VirusTotal - File - 6d4e5e60b4f6cbc8a6e14343b59c406fe5c7f948aded16d23a0f6ed6984907c2

https://www.virustotal.com/gui/file/6d4e5e60b4f6cbc8a6e14343b59c406fe5c7f948aded16d23a0f6ed6984907c2
VirusTotal - File - 6d4e5e60b4f6cbc8a6e14343b59c406fe5c7f948aded16d23a0f6ed6984907c2
6 Posts

Rolling PWN

https://rollingpwn.github.io/rolling-pwn/
Rolling PWN
6 Posts

Quantum ransomware attack affects 657 healthcare orgs

https://www.bleepingcomputer.com/news/security/quantum-ransomware-attack-affects-657-healthcare-orgs/
Quantum ransomware attack affects 657 healthcare orgs
6 Posts

OrBit: New Undetected Linux Threat Uses Unique Hijack of Execution Flow

https://www.intezer.com/blog/incident-response/orbit-new-undetected-linux-threat/
OrBit: New Undetected Linux Threat Uses Unique Hijack of Execution Flow
6 Posts

Polish PM claims Russia hacked, tweaked, leaked govt emails | AP News

https://apnews.com/article/russia-ukraine-poland-judiciary-warsaw-a4e37e00c14e337f853ec1c9384d4b26
Polish PM claims Russia hacked, tweaked, leaked govt emails | AP News
6 Posts

VBA-macro-experiments/kerberoast.vba at main · Adepts-Of-0xCC/VBA-macro-experiments · GitHub

https://github.com/Adepts-Of-0xCC/VBA-macro-experiments/blob/main/kerberoast.vba
VBA-macro-experiments/kerberoast.vba at main · Adepts-Of-0xCC/VBA-macro-experiments · GitHub
6 Posts

Gareth Heyes

https://garethheyes.co.uk
Gareth Heyes
6 Posts

Over 1,200 NPM Packages Found Involved in "CuteBoi" Cryptomining Campaign

https://thehackernews.com/2022/07/over-1200-npm-packages-found-involved.html
Over 1,200 NPM Packages Found Involved in "CuteBoi" Cryptomining Campaign
6 Posts

Security advisory accidentally exposes vulnerable systems

https://www.bleepingcomputer.com/news/security/security-advisory-accidentally-exposes-vulnerable-systems/
Security advisory accidentally exposes vulnerable systems