x86matthew - ClipboardInject - Abusing the clipboard to inject code into remote processes
https://www.x86matthew.com/view_post?id=clipboard_inject
The Hacking of Starlink Terminals Has Begun | WIRED
https://www.wired.com/story/starlink-internet-dish-hack/
Browser-Powered Desync Attacks: A New Frontier in HTTP Request Smuggling | PortSwigger Research
https://portswigger.net/research/browser-powered-desync-attacks
GitHub - sourceincite/DashOverride: This is a pre-authenticated RCE exploit for VMware vRealize Operations Manager
https://github.com/sourceincite/DashOverride
From Shared Dash to Root Bash :: Pre-Authenticated RCE in VMWare vRealize Operations Manager
https://srcincite.io/blog/2022/08/09/from-shared-dash-to-root-bash-pre-authenticated-rce-in-vmware-vrealize-operations-manager.html
The mechanics of a sophisticated phishing scam and how we stopped it
https://blog.cloudflare.com/2022-07-sms-phishing-attacks/
VileRAT: DeathStalker’s continuous strike at foreign and cryptocurrency exchanges | Securelist
https://securelist.com/vilerat-deathstalkers-continuous-strike/107075/
GitHub - icyguider/Shhhloader: Syscall Shellcode Loader (Work in Progress)
https://github.com/icyguider/Shhhloader
How to Attack and Remediate Excessive Network Share Permissions in Active Directory Environments
https://www.netspi.com/blog/technical/network-penetration-testing/network-share-permissions-powerhuntshares/
Mass Exploitation of (Un)authenticated Zimbra RCE: CVE-2022-27925 | Volexity
https://www.volexity.com/blog/2022/08/10/mass-exploitation-of-unauthenticated-zimbra-rce-cve-2022-27925/
Discovering Domains via a Timing Attack on Certificate Transparency – PT SWARM
https://swarm.ptsecurity.com/discovering-domains-via-timing-attack/
Controlling the Source: Abusing Source Code Management Systems
https://securityintelligence.com/posts/abusing-source-code-management-systems
Member of Iran's Islamic Revolutionary Guard Corps (IRGC) Charged with Plot to Murder the Former National Security Advisor | OPA | Department of Justice
https://www.justice.gov/opa/pr/member-irans-islamic-revolutionary-guard-corps-irgc-charged-plot-murder-former-national
Andariel deploys DTrack and Maui ransomware | Securelist
https://securelist.com/andariel-deploys-dtrack-and-maui-ransomware/107063/
CISA Issues Warning on Active Exploitation of UnRAR Software for Linux Systems
https://thehackernews.com/2022/08/cisa-issues-warning-on-active.html
CISA Director Jen Easterly shares vision for her agency's private sector work
https://www.axios.com/2022/08/10/cisa-director-jen-easterly-vision-for-jcdc
MalwareBazaar | SHA256 cb63444a83bd04e1df746d2500caae56185d81d88dc5000a6eb0cc0bc00db152 (Formbook)
https://bazaar.abuse.ch/sample/cb63444a83bd04e1df746d2500caae56185d81d88dc5000a6eb0cc0bc00db152/
Hackers Behind Twilio Breach Also Targeted Cloudflare Employees
https://thehackernews.com/2022/08/hackers-behind-twilio-breach-also_10.html
On Detection: Tactical to Functional | by Jared Atkinson | Aug, 2022 | Posts By SpecterOps Team Members
https://posts.specterops.io/on-detection-tactical-to-functional-45e41fef7af4
Elon Musk's Flawed Vision and the Dangers of Trusting Billionaires | Time
https://time.com/6203815/elon-musk-flaws-billionaire-visions/