American Airlines discloses data breach after employee email compromise
https://www.bleepingcomputer.com/news/security/american-airlines-discloses-data-breach-after-employee-email-compromise/
A Guide to DNS Takeovers: The Misunderstood Cousin of Subdomain Takeovers
https://blog.projectdiscovery.io/guide-to-dns-takeovers/
x86matthew - Exploiting a Seagate service to create a SYSTEM shell (CVE-2022-40286)
https://www.x86matthew.com/view_post?id=windows_seagate_lpe
GitHub - Markakd/CVE-2022-2588: exploit for CVE-2022-2588
https://github.com/Markakd/CVE-2022-2588
Out Of Band Update: Cobalt Strike 4.7.1 | Cobalt Strike
https://www.cobaltstrike.com/blog/out-of-band-update-cobalt-strike-4-7-1/
Stopping Vulnerable Driver Attacks | Elastic
https://www.elastic.co/security-labs/stopping-vulnerable-driver-attacks
MFA Fatigue: Hackers’ new favorite tactic in high-profile breaches
https://www.bleepingcomputer.com/news/security/mfa-fatigue-hackers-new-favorite-tactic-in-high-profile-breaches/
Bitbucket Server CVE-2022-36804 漏洞分析 - 安全客,安全资讯平台
https://www.anquanke.com/post/id/280193
[49] Malware Lab - Unpacking PE Injection - YouTube
https://www.youtube.com/watch?v=beJaOTQnn0s![[49] Malware Lab - Unpacking PE Injection - YouTube](/image/screenshot/34aad7548670def1d440ad2698049ece.webp)
Hackers steal $162 million from Wintermute crypto market maker
https://www.bleepingcomputer.com/news/security/hackers-steal-162-million-from-wintermute-crypto-market-maker/
EU Court of Justice on Twitter: "#ECJ confirms that #EUlaw precludes the general and indiscriminate retention of traffic and location #PersonalData, except in the case of a serious threat to #NationalSecurity #SpaceNet @TeIekomDE 👉https://t.co/ATb3CgcnmO" / Twitter
https://twitter.com/eucourtpress/status/1572138761160634368
Exploiting Azure AD PTA vulnerabilities: Creating backdoor and harvesting credentials
https://o365blog.com/post/pta/
VirusTotal - File - 24092e5b10b2dd678f8143a0fb43515e7e7fded3f578237d30c230e74b3928cd
https://www.virustotal.com/gui/file/24092e5b10b2dd678f8143a0fb43515e7e7fded3f578237d30c230e74b3928cd/detection
Triage | Malware sandboxing report by Hatching Triage
https://tria.ge/220920-t1wezsdgc2
Release v1.0.7 · projectdiscovery/interactsh · GitHub
https://github.com/projectdiscovery/interactsh/releases/tag/v1.0.7
Shir on Twitter: "Vulnerability full disclosure - New Oracle cloud vulnerability allowed users to access the virtual disks of other Oracle customers >>" / Twitter
https://twitter.com/shirtamari/status/1572223325719646211
Mark Russinovich on Twitter: "Speaking of languages, it's time to halt starting any new projects in C/C++ and use Rust for those scenarios where a non-GC language is required. For the sake of security and reliability. the industry should declare those languages as deprecated." / Twitter
https://twitter.com/markrussinovich/status/1571995117233504257
Last Week in Security (LWiS) - 2022-09-19 | Bad Sector Labs Blog
https://blog.badsectorlabs.com/last-week-in-security-lwis-2022-09-19.html
GitHub - projectdiscovery/interactsh: An OOB interaction gathering server and client library
https://github.com/projectdiscovery/interactsh#dynamic-http-response
Triage | Behavioral Report
https://tria.ge/220920-lhsmdacef9/behavioral1
I Wanna Go Fast, Really Fast, like (Kerberos) FAST - TrustedSec
https://hubs.la/Q01mKF060
▁ ▄ⓟⓗⓡⓔⓒⓚ▄ ▁ on Twitter: "Kids will SIM swap for SMS factors. Kids will proxy for ToTP abuse. Kids will spam MFA push. Kids will pilfer Slack tokens. Kids will look for internal tooling with credentials. This isn't even nation state TTP shit Literally KIDS doing this to your multibillion dollar corps" / Twitter
https://twitter.com/thephreck/status/1572235323836633093