SharpTongue Deploys Clever Mail-Stealing Browser Extension "SHARPEXT" | Volexity
https://www.volexity.com/blog/2022/07/28/sharptongue-deploys-clever-mail-stealing-browser-extension-sharpext/
Untangling KNOTWEED: European private-sector offensive actor using 0-day exploits - Microsoft Security Blog
https://www.microsoft.com/security/blog/2022/07/27/untangling-knotweed-european-private-sector-offensive-actor-using-0-day-exploits/
Corrupting memory without memory corruption | The GitHub Blog
https://github.blog/2022-07-27-corrupting-memory-without-memory-corruption/
LofyLife: malicious npm packages steal Discord tokens and bank card data | Securelist
https://securelist.com/lofylife-malicious-npm-packages/107014/
Inside Matanbuchus: A Quirky Loader
https://www.cyberark.com/resources/threat-research-blog/inside-matanbuchus-a-quirky-loader
William Turton on Twitter: "The curious case of Glenn Greenwald, a phone with "Built with Government-grade curved encryption" tied to Blackwater founder Erik prince, and the DEF CON hacking conference in Vegas:" / Twitter
https://twitter.com/WilliamTurton/status/1552637071801679872
As Microsoft blocks Office macros, hackers find new attack vectors
https://www.bleepingcomputer.com/news/security/as-microsoft-blocks-office-macros-hackers-find-new-attack-vectors/
OAuth 2.0 authentication vulnerabilities | Web Security Academy
https://portswigger.net/web-security/oauth
GitHub - PortSwigger/oauth-scan: Burp Suite Extension useful to verify OAUTHv2 and OpenID security
https://github.com/PortSwigger/oauth-scan
SEKOIA.IO Mid-2022 Ransomware Threat Landscape - SEKOIA.IO Blog
https://blog.sekoia.io/sekoia-io-mid-2022-ransomware-threat-landscape/
Spionage im Stromnetz: "Russland ist in unseren Netzen" | tagesschau.de
https://www.tagesschau.de/investigativ/br-recherche/stromnetz-hacker-russland-101.html
Kansas MSP shuts down cloud services to fend off cyberattack
https://www.bleepingcomputer.com/news/security/kansas-msp-shuts-down-cloud-services-to-fend-off-cyberattack/
U.S. Offers $10 Million Reward for Information on North Korean Hackers
https://thehackernews.com/2022/07/us-offers-10-million-reward-for.html
Jamie Saker on Twitter: "Worst cyber quote ever: "Cyber risk is actually just compliance. If you're complying with regulations and standards, you have no risk." - from a former F250 CISO https://t.co/VQmZrFLeuU" / Twitter
https://twitter.com/jamiesaker/status/1552398104237834240
LibreOffice Releases Software Update to Patch 3 New Vulnerabilities
https://thehackernews.com/2022/07/libreoffice-releases-software-security.html
EXCLUSIVE EU found evidence employee phones compromised with spyware -letter | Reuters
https://www.reuters.com/technology/exclusive-eu-found-evidence-employee-phones-compromised-with-spyware-letter-2022-07-27/
Onid the T. Rex on Twitter: "If you only apply for one job this year, apply to DART. But if you apply for two jobs, the MSTIC crew are quite awesome! 🦖" / Twitter
https://twitter.com/OnidTheTrex/status/1424893165966790664
hakan on Twitter: "Wenn wir drüber reden, wie gut unser Stromnetz vor Cyberangriffen geschützt ist, denke ich seit Ausbruch des Krieges an diese Hacker vom FSB, die tief in genau diese Netze wollten. LKA BaWü hat mutmaßlichen Täter ermittelt mit @FlorianFlade https://t.co/NHq3HqaOKZ" / Twitter
https://twitter.com/hatr/status/1552532560965763072
Stammy on Twitter: "In case you’ve ever wondered how advanced MicroSD card data recovery works (likely dead controller) 🤯 https://t.co/pV2Wp6tzrh" / Twitter
https://twitter.com/stammy/status/1552485928505151488
Cyberspies use Google Chrome extension to steal emails undetected
https://www.bleepingcomputer.com/news/security/cyberspies-use-google-chrome-extension-to-steal-emails-undetected/
Fusion Analyst in Redmond, Washington, United States | Security Engineering at Microsoft
https://careers.microsoft.com/professionals/us/en/job/1424781/Fusion-Analyst
Senior Threat Intelligence Manager in Redmond, Washington, United States | Security Engineering at Microsoft
https://careers.microsoft.com/professionals/us/en/job/1424780/Senior-Threat-Intelligence-Manager
How Threat Actors Are Adapting to a Post-Macro World | Proofpoint US
https://www.proofpoint.com/us/blog/threat-insight/how-threat-actors-are-adapting-post-macro-world
Microsoft Uncovers Austrian Company Exploiting Windows and Adobe Zero-Day Exploits
https://thehackernews.com/2022/07/microsoft-uncover-austrian-company.html
Malicious npm packages steal Discord users’ payment card info
https://www.bleepingcomputer.com/news/security/malicious-npm-packages-steal-discord-users-payment-card-info/
Microsoft Security Intelligence on Twitter: "Microsoft discovered and patched a 0-day exploit (CVE-2022-22047) that #KNOTWEED, an Austria-based private sector offensive actor, used to deploy #Subzero malware. Analysis of campaigns, tactics, & payloads in this #MSTIC blog w/ @msftsecresponse @RiskIQ: https://t.co/9QZbKSo9FA" / Twitter
https://twitter.com/MsftSecIntel/status/1552294738933547009