Hack The Planet on Twitter: "Hackers was released 27 years ago, today. 💾 https://t.co/WwgX6x7iZk" / Twitter
https://twitter.com/hackedplanet/status/1570261123756064768
Say Hello to Crazy Thin ‘Deep Insert’ ATM Skimmers – Krebs on Security
https://krebsonsecurity.com/2022/09/say-hello-to-crazy-thin-deep-insert-atm-skimmers/
GitHub - MaherAzzouzi/CVE-2022-37706-LPE-exploit: A reliable exploit + write-up to elevate privileges to root. (Tested on Ubuntu 22.04)
https://github.com/MaherAzzouzi/CVE-2022-37706-LPE-exploit
Practical Attacks against NTLMv1 - TrustedSec
https://hubs.la/Q01mpY-j0
攻撃グループBlackTechによるF5 BIG-IPの脆弱性(CVE-2022-1388)を悪用した攻撃 - JPCERT/CC Eyes | JPCERTコーディネーションセンター公式ブログ
https://blogs.jpcert.or.jp/ja/2022/09/bigip-exploit.html
mast1c0re PS2 Emulator Escape Demo - Backup Loader Scenario - YouTube
https://www.youtube.com/watch?v=GIl1mR0HLnc
Qakbot/Qakbot_BB_15.09.2022.txt at main · pr0xylife/Qakbot · GitHub
https://github.com/pr0xylife/Qakbot/blob/main/Qakbot_BB_15.09.2022.txt
Treasury Sanctions IRGC-Affiliated Cyber Actors for Roles in Ransomware Activity | U.S. Department of the Treasury
https://home.treasury.gov/news/press-releases/jy0948
MalwareBazaar | SHA256 547cb5940ad0002c72bdb315004cd31bb43256ef3b2a707a6ebb0d00e0077b0e
https://bazaar.abuse.ch/sample/547cb5940ad0002c72bdb315004cd31bb43256ef3b2a707a6ebb0d00e0077b0e/
mast1c0re: Hacking the PS4 / PS5 through the PS2 Emulator - Part 1 - Escape
https://cturt.github.io/mast1c0re.html
Microsoft Teams stores auth tokens as cleartext in Windows, Linux, Macs
https://www.bleepingcomputer.com/news/security/microsoft-teams-stores-auth-tokens-as-cleartext-in-windows-linux-macs/
Jetty Features for Hacking Web Apps – PT SWARM
https://swarm.ptsecurity.com/jetty-features-for-hacking-web-apps/
IcedID_09_15_2022.txt · GitHub
https://gist.github.com/myrtus0x0/1f524fc3ae39683799fa649ef8dd13ed
Lesley Carhart on Twitter: "This tweet is for a specific type of person - especially young and hungry ones. I’m talking to the ones who jump in and quietly save things whenever their teammates and seniors drop the ball. Sometimes when not too much is on the line, you have to just let them fail." / Twitter
https://twitter.com/hacks4pancakes/status/1570494114755661832
F5 BIG-IP Vulnerability (CVE-2022-1388) Exploited by BlackTech - JPCERT/CC Eyes | JPCERT Coordination Center official Blog
https://blogs.jpcert.or.jp/en/2022/09/bigip-exploit.html
The Follower – Dries Depoorter
https://driesdepoorter.be/thefollower
GitHub - SECFORCE/SharpWhispers: C# porting of SysWhispers2. It uses SharpASM to find the code caves for executing the system call stub.
https://github.com/SECFORCE/SharpWhispers
Webworm Hackers Using Modified RATs in Latest Cyber Espionage Attacks
https://thehackernews.com/2022/09/webworm-hackers-using-modified-rats-in.html
The Follower – Dries Depoorter
https://driesdepoorter.be/thefollowerYT
Brenna T. Smith on Twitter: "👇🧵When Renee signed onto her federal benefits portal, her heart sank. Her prior balance of $3,000 was down to $66 dollars. The police and DHS are responsible for figuring out how this happened. But, she solved the mystery on her own. My latest story:https://t.co/K9ssIz6IlH" / Twitter
https://twitter.com/brenna__smith/status/1568228082284204032
A Detailed Analysis Of The Quantum Ransomware
https://securityscorecard.pathfactory.com/research/quantum-ransomware
Elk Grove men arrested in Bank of America ATM skimmer thefts | The Sacramento Bee
https://www.sacbee.com/news/local/crime/article265394781.html
DHS built huge database from cellphones, computers seized at border - The Washington Post
https://www.washingtonpost.com/technology/2022/09/15/government-surveillance-database-dhs/
Products – Dries Depoorter
https://driesdepoorter.be/shop
Myths About External C2 | Ret2Pwn
https://xret2pwn.github.io/Myths-About-External-C2
ESF Members, NSA and CISA publish Open Radio Access Network Security Considerations > National Security Agency/Central Security Service > Article
https://www.nsa.gov/Press-Room/News-Highlights/Article/Article/3159347/esf-members-nsa-and-cisa-publish-open-radio-access-network-security-considerati/
Attacking the Android kernel using the Qualcomm TrustZone | Tamir Zahavi-Brunner’s Blog
https://tamirzb.com/attacking-android-kernel-using-qualcomm-trustzone
China Wanted GE’s Secrets, But Then Their Spy Got Caught - Bloomberg
https://www.bloomberg.com/news/features/2022-09-15/china-wanted-ge-s-secrets-but-then-their-spy-got-caught
GitHub - vxunderground/MalwareSourceCode: Collection of malware source code for a variety of platforms in an array of different programming languages.
https://github.com/vxunderground/MalwareSourceCode