Jerry Gamblin on Twitter: "The House passed a defense spending bill saying you can't sell software to the DoD that has *any* known CVEs in it. https://t.co/6zO2pPgdwq https://t.co/FTzHwHbPP3" / Twitter
https://twitter.com/JGamblin/status/1560016175265972224
JSSLoader: the shellcode edition
https://malwarebytes.com/blog/threat-intelligence/2022/08/jssloader-the-shellcode-edition
Apple releases iOS, iPadOS and macOS security fixes for two zero-days under active attack | TechCrunch
https://techcrunch.com/2022/08/17/iphone-ipad-mac-zero-days/
GitHub - target/strelka-ui: Strelka Web UI for File Submission and Analysis
https://github.com/target/strelka-ui
How a Third-Party SMS Service Was Used to Take Over Signal Accounts
https://www.vice.com/en/article/qjkvxv/how-a-third-party-sms-service-was-used-to-take-over-signal-accounts
IDORs with unpredictable IDs are valid vulnerabilities · rez0
https://rez0.blog/hacking/cybersecurity/2022/08/18/unpredictable-idors.html
Orange: Let's Dance in the Cache - Destabilizing Hash Table on Microsoft IIS!
https://blog.orange.tw/2022/08/lets-dance-in-the-cache-destabilizing-hash-table-on-microsoft-iis.html
Red Team Ops II
https://training.zeropointsecurity.co.uk/courses/red-team-ops-ii
👑 Alyssa Miller 🦄 on Twitter: "Let's be clear about what this lawsuit is about. It's not about DEFCON or DarkTangent. This is about CH trying to force the names and full details of his accusers into the public sphere so he can go after them, attack them, and try to discredit them. 1/ https://t.co/dwozr5Nw6A" / Twitter
https://twitter.com/AlyssaM_InfoSec/status/1560035887421046800
On Detection: Tactical to Functional | by Jared Atkinson | Aug, 2022 | Posts By SpecterOps Team Members
https://posts.specterops.io/on-detection-tactical-to-functional-fef1e09d3174
GitHub - wavestone-cdt/EDRSandblast at DefCon30Release
https://github.com/wavestone-cdt/EDRSandblast/tree/DefCon30Release
Ransomware Summit 2022 - YouTube
https://www.youtube.com/playlist?list=PLtgaAEEmVe6AGQj2LhA4UnN0XolmeYw9_
GitHub - ConsciousHacker/WFH
https://github.com/ConsciousHacker/WFH
Reservations Requested: TA558 Targets Hospitality and Travel | Proofpoint US
https://www.proofpoint.com/us/blog/threat-insight/reservations-requested-ta558-targets-hospitality-and-travel
GitHub - Neo23x0/sysmon-config: Sysmon configuration file template with default high-quality event tracing
https://github.com/Neo23x0/sysmon-config
Analysis of the emerging Darth Maul eCrime Market
https://blog.bushidotoken.net/2022/08/analysis-of-emerging-darth-maul-ecrime.html
Apple Releases Security Updates to Patch Two New Zero-Day Vulnerabilities
https://thehackernews.com/2022/08/apple-releases-security-updates-to.html
autobahn/Cary on Twitter: "Just a reminder that CH included this pointedly bigoted language in the official contest rules for #defcon 25 social engineering CTF. https://t.co/i7aki1LGjp" / Twitter
https://twitter.com/autobahn/status/1560049297370013702
Kasablanka(卡萨布兰卡)组织针对中东地区政治团体和公益组织的攻击行动
https://mp-weixin-qq-com.translate.goog/s/mstwBMkS0G3Et4GOji2mwA?_x_tr_sl=zh-CN&_x_tr_tl=en&_x_tr_hl=en
PayPal Phishing Scam Uses Invoices Sent Via PayPal – Krebs on Security
https://krebsonsecurity.com/2022/08/paypal-phishing-scam-uses-invoices-sent-via-paypal/
MalwareBazaar | SHA256 01c14f491a773e6a8c6223997318631d8105533a282e6380d94706df5d620d7b
https://bazaar.abuse.ch/sample/01c14f491a773e6a8c6223997318631d8105533a282e6380d94706df5d620d7b/
IcedID/icedID_18.08.2022.txt at main · pr0xylife/IcedID · GitHub
https://github.com/pr0xylife/IcedID/blob/main/icedID_18.08.2022.txt
Steve Ragan on Twitter: "So @humanhacker has sued @defcon @thedarktangent for "malicious, willful, and intentional and/or reckless conduct" One of the claims is that the COC violation ban was intentional so that DEFCON could replace the old SE village with @sec_defcon https://t.co/oxs0CJVkC9 https://t.co/mBcIO6x3VF" / Twitter
https://twitter.com/steved3/status/1560025494594224133
👑 Alyssa Miller 🦄 on Twitter: "Let's be clear about what this lawsuit is about. It's not about DEFCON or DarkTangent. This is about CH trying to force the names and full details of his accusers into the public sphere so he can go after them, attack them, and try to discredit them. 1/ https://t.co/dwozr5Nw6A" / Twitter
https://twitter.com/alyssam_infosec/status/1560035887421046800
Kasablanka(卡萨布兰卡)组织针对中东地区政治团体和公益组织的攻击行动
https://mp.weixin.qq.com/s/mstwBMkS0G3Et4GOji2mwA
Visegrád 24 on Twitter: "Finland’s Prime Minister @MarinSanna is in the headlines after a video of her partying was leaked today. She has previously been criticized for attending too many music festivals & spending too much on partying instead of ruling. The critics say it’s not fitting for a PM. https://t.co/FbOhdTeEGw" / Twitter
https://twitter.com/visegrad24/status/1560015797367488517
Cobalt Strike 4.7: The 10th Anniversary Edition - Cobalt Strike Research and Development
https://www.cobaltstrike.com/blog/cobalt-strike-4-7-the-10th-anniversary-edition/
APT41 World Tour 2021 on a tight schedule
https://blog.group-ib.com/apt41-world-tour-2021
APT Lazarus Targets Engineers with macOS Malware | Threatpost
https://threatpost.com/apt-lazarus-macos-malware/180426/
Hackers launch malware posing as Bangladeshi critical service websites | The Daily Star
https://www.thedailystar.net/toggle/news/hackers-launch-targeted-malware-campaign-the-guise-bangladeshi-critical-service-websites-2046413
Senior Hunt Analyst in Redmond, Washington, United States | Engineering at Microsoft
https://careers.microsoft.com/us/en/job/1446577/Senior-Hunt-Analyst
Zero Day Initiative — But You Told Me You Were Safe: Attacking the Mozilla Firefox Renderer (Part 1)
https://www.zerodayinitiative.com/blog/2022/8/17/but-you-told-me-you-were-safe-attacking-the-mozilla-firefox-renderer-part-1
Senior Hunt Analyst in Redmond, Washington, United States | Engineering at Microsoft
https://careers.microsoft.com/us/en/job/1439899/Senior-Hunt-Analyst
ipc_kmsg_get_from_kernel - iOS 15.4 | ipc_kmsg_vuln_blogpost
https://saaramar.github.io/ipc_kmsg_vuln_blogpost/
Apple security updates - Apple Support
https://support.apple.com/en-us/HT201222
Browser-Powered Desync Attacks: A New Frontier in HTTP Request Smuggling | PortSwigger Research
https://portswigger.net/research/browser-powered-desync-attacks