Notice of Recent Security Incident - The LastPass Blog
https://blog.lastpass.com/2022/08/notice-of-recent-security-incident/
An interview with initial access broker Wazawaka: 'There is no such money anywhere as there is in ransomware' - The Record from Recorded Future News
https://therecord.media/an-interview-with-initial-access-broker-wazawaka-there-is-no-such-money-anywhere-as-there-is-in-ransomware/
Pen Test Partners on Twitter: "Last week our @_EthicalChaos_ promised something tasty: "Want to authenticate to RDP/Citrix using your abused ADCS certificate and live off the land? PIVert has got your back. Will be releasing soon!" Well, here it is - Living off the land, AD CS style https://t.co/SO1QK6fQ7y https://t.co/F80cbCQ7A4" / Twitter
https://twitter.com/PenTestPartners/status/1563093472067825667
Eliot Higgins on Twitter: "🧵Meet Maria Adela Kuhfeldt Rivera, widow, jeweller, and socialite. The love child of a German father and a Peruvian mother, born in Callao, Peru, and abandoned in Moscow by her mother during the 1980 Olympic Games. https://t.co/wHo6qSmKik" / Twitter
https://twitter.com/EliotHiggins/status/1563060250269589505
Socialite, Widow, Jeweller, Spy: How a GRU Agent Charmed Her Way Into NATO Circles in Italy - bellingcat
https://www.bellingcat.com/news/2022/08/25/socialite-widow-jeweller-spy-how-a-gru-agent-charmed-her-way-into-nato-circles-in-italy/
GitHub - m8sec/CVE-2021-34527: PrintNightmare (CVE-2021-34527) PoC Exploit
https://github.com/m8sec/CVE-2021-34527
Exploiting PrintNightmare (CVE-2021–34527) | by Mike Brown | Aug, 2022 | InfoSec Write-ups
https://infosecwriteups.com/exploiting-printnightmare-cve-2021-34527-10c6e0f5b83f?source=social.tw
Ghidrathon: Snaking Ghidra with Python 3 Scripting | Mandiant
https://www.mandiant.com/resources/blog/ghidrathon-snaking-ghidra-python-3-scripting
Eliot Higgins on Twitter: "🧵Meet Maria Adela Kuhfeldt Rivera, widow, jeweller, and socialite. The love child of a German father and a Peruvian mother, born in Callao, Peru, and abandoned in Moscow by her mother during the 1980 Olympic Games. https://t.co/wHo6qSmKik" / Twitter
https://twitter.com/eliothiggins/status/1563060250269589505
GitHub - mandiant/Ghidrathon: The FLARE team's open-source extension to add Python 3 scripting to Ghidra.
https://github.com/mandiant/Ghidrathon
MERCURY leveraging Log4j 2 vulnerabilities in unpatched systems to target Israeli organizations - Microsoft Security Blog
https://www.microsoft.com/security/blog/2022/08/25/mercury-leveraging-log4j-2-vulnerabilities-in-unpatched-systems-to-target-israeli-organizations/
Tool Release – JWT-Reauth – NCC Group Research
https://research.nccgroup.com/2022/08/25/tool-release-jwt-reauth/
Ransomware Actor Abuses Genshin Impact Anti-Cheat Driver to Kill Antivirus
https://www.trendmicro.com/en_us/research/22/h/ransomware-actor-abuses-genshin-impact-anti-cheat-driver-to-kill-antivirus.html
Unstripping Stripped Binaries
http://lock.cmpxchg8b.com/symbols.html
Linux Kernel Exploit (CVE-2022-32250) with mqueue | Theori
https://blog.theori.io/research/CVE-2022-32250-linux-kernel-lpe-2022/
Acyn on Twitter: "Greene: For our government just to say ok your debt is completely forgiven.. it’s completely unfair https://t.co/V0yJWYSbot" / Twitter
https://twitter.com/Acyn/status/1562530929838436355?s=20&t=Anxeqtkb5PiVIELnC7dCoA
How 'Kimsuky' hackers ensure their malware only reach valid targets
https://www.bleepingcomputer.com/news/security/how-kimsuky-hackers-ensure-their-malware-only-reach-valid-targets/
The Evolution of Network Scanning with HD Moore and Gordon Lyon - YouTube
https://youtu.be/aOqlwsfgUuI?t=50
The White House on Twitter: "Congresswoman Marjorie Taylor Greene had $183,504 in PPP loans forgiven. https://t.co/4FoCymt8TB" / Twitter
https://twitter.com/whitehouse/status/1562916200866267138
LastPass developer systems hacked to steal source code
https://www.bleepingcomputer.com/news/security/lastpass-developer-systems-hacked-to-steal-source-code/
Malware-IOCs/2022-08-25 Remcos RAT IOCs at main · executemalware/Malware-IOCs · GitHub
https://github.com/executemalware/Malware-IOCs/blob/main/2022-08-25%20Remcos%20RAT%20IOCs
ensdao.eth on Twitter: "We're aware that https://t.co/C7Kj40AtGU is down. Unfortunately, the name is owned by Virgil Griffith, who is currently unavailable, and despite help from his lawyer, we've been unable to obtain access to his registrar account to renew the name so far." / Twitter
https://twitter.com/ENS_DAO/status/1562998396968873984
http://eth.link
http://eth.link
Hackers Breach LastPass Developer System to Steal Source Code
https://thehackernews.com/2022/08/hackers-breach-lastpass-developer.html