Detecting and preventing LSASS credential dumping attacks - Microsoft Security Blog
https://www.microsoft.com/security/blog/2022/10/05/detecting-and-preventing-lsass-credential-dumping-attacks/
raptor on Twitter: "CVE-2022-26766: the CoreTrust bug "For years, macOS allowed any root certificate when checking code signatures, making code signing completely useless." // bug discovered by @LinusHenze // writeup by @zhuowei https://t.co/vuC4mcxwim https://t.co/sER7mt93NQ" / Twitter
https://twitter.com/0xdea/status/1579023880077082624
Get root on macOS 12.3.1: proof-of-concepts for Linus Henze’s CoreTrust and DriverKit bugs (CVE-2022-26766, CVE-2022-26763) | Worth Doing Badly
https://worthdoingbadly.com/coretrust/
GitHub - S3cur3Th1sSh1t/NimShellcodeFluctuation: ShellcodeFluctuation PoC ported to Nim
https://github.com/S3cur3Th1sSh1t/NimShellcodeFluctuation
Michael Koczwara on Twitter: "Ransomware actors still active. Two new files added. https://t.co/5u3hpcHmLe https://t.co/hBX0lfNK3Y https://t.co/cXdrwY6bff" / Twitter
https://twitter.com/michalkoczwara/status/1574103025693622277
Download - MEGA
https://mega.nz/file/nxkglKyT#NtabGLxmW_s17mGYK_CPOv7foVxAcPRMCdkMtAMMb-I
004 - Empowering Donut with Direct and Indirect Syscalls - YouTube
https://youtu.be/ypX7N4498xE
‘The Owner of This iPhone Was in a Severe Car Crash’—or Just on a Roller Coaster - WSJ
https://on.wsj.com/3CkEJJz
Women Cryptologists of World War II Stamps Stamp | USPS.com
https://store.usps.com/store/product/buy-stamps/women-cryptologists-of-world-war-ii-stamps-S_482204
Triage | Behavioral Report
https://tria.ge/221008-3k1jfafhh4/behavioral1
Cybersecurity Difference Makers Awards | SANS Institute
https://www.sans.org/u/1nf5
ايران اينترنشنال on Twitter: "گروه «عدالت علی» اخبار ساعت ۹ شب صدا و سیما را هک کرده و تصویر سه دختر کشته شده را همراه با شعار زن زندگی آزادی نمایش داده است https://t.co/Vp2280KmDl" / Twitter
https://twitter.com/IranIntl/status/1578812731209445376
SANS Rocky Mountain Fall 2022 | Cyber Security Training
https://www.sans.org/u/1n3o
GitHub - rfxn/linux-malware-detect: Linux Malware Detection (LMD)
https://github.com/rfxn/linux-malware-detect
VirusTotal - File - 7436f6600a22e92bcae60ec78335ac8a3306f33c9ba6133649024a95f393e394
https://www.virustotal.com/gui/file-analysis/ZDQ3YTQ1ZDI1Y2UzYWIyNGNmZmZmYmIzODlkM2ZiNDY6MTY2NTI3MjE2Ng==
Darkweb market BidenCash gives away 1.2 million credit cards for free
https://www.bleepingcomputer.com/news/security/darkweb-market-bidencash-gives-away-12-million-credit-cards-for-free/
Lufthansa on Twitter: "@djthomashome @Apple Hi David, Lufthansa is banning activated AirTags from luggage as they are classified as dangerous and need to be turned off./Mony" / Twitter
https://twitter.com/lufthansa/status/1578879849577385984
47133 - apache-commons-jxpath:JXPathFuzzer: Uncaught exception in jaz.Zer.<clinit> - oss-fuzz
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=47133
Victim tells of rape and torture by Russian soldiers in occupied Izyum - The Washington Post
https://www.washingtonpost.com/world/2022/10/09/izyum-rape-torture-occupation-russia/
Core NetWars Tournament of Champions | SANS Cyber Ranges
https://www.sans.org/u/1nlM
GitHub - last-byte/PersistenceSniper: Powershell script that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines.
https://github.com/last-byte/PersistenceSniper
Joanna Stern on Twitter: "Since the iPhone 14 went on sale, the 911 dispatch center near Kings Island amusement park has received at least six phones calls saying: “The owner of this iPhone was in a severe car crash...” Except, the owner was just on a roller coaster. 🆕 by me: https://t.co/hp1fHZBIf6 https://t.co/i0lZPoWzGz" / Twitter
https://twitter.com/joannastern/status/1579106766704369667
Detecting and preventing LSASS credential dumping attacks - Microsoft Security Blog
http://www.microsoft.com/security/blog/2022/10/05/detecting-and-preventing-lsass-credential-dumping-attacks/
Archaeo - Histories on Twitter: "A new chapter of the “Epic of Gilgamesh”is revealed when the fragment of TABLET V was finally recovered. It was written in Standard Babylonian and dates back to Neo-Babylonian period (626-538 BC), according to researchers. #archaeohistories https://t.co/hyZ8lCQRnJ" / Twitter
https://twitter.com/archeohistories/status/1416706177056927747
Sol 🧹 on Twitter: "programming tip: avoid nested "if" statements, combine conditionals using "goto" instead https://t.co/H5T5bf43Ae" / Twitter
https://twitter.com/typeswitch/status/1578881799438356481
Antonio Vieira Santos on Twitter: "Lufthansa "bans AirTags in luggage" after passengers publicly shame it with location of lost bags. #IoT #Mobility https://t.co/saOqpZoVk9 @mirko_ross @ZeinaZakhour @ScottWLuton @DigitalColmer @WSWMUC @CyrilCoste @EvanKirstel @TylerCohenWood @BillMew @avrohomg @efipm @dinisguarda" / Twitter
https://twitter.com/AkwyZ/status/1579038527076982784
Iranian Hackers Hid in Albanian Networks for Over a Year - Infosecurity Magazine
https://bit.ly/3Rz59Ns
BSides Portland on Twitter: "We are excited to announce we are back for an in-person event this year to celebrate our 10th anniversary! BSidesPDX 2022 will be held on Friday, October 7th at Portland State University. Save the date & join our Google group to stay tuned for more details https://t.co/lXxJZIPSLy https://t.co/YbjzTU1byp" / Twitter
https://twitter.com/BSidesPDX/status/1517977166297718785
CyberKnow on Twitter: "👀👀👀 Someone claims to have leaked 74GB of stolen #singtel data. Sample data looks convincing Singtel has over 640million customers and is the parent company of #optus who also suffered a data breach recently #cybersecurity #infosec #Singapore #auspol #OptusDataBreach https://t.co/hPiQuNrIFZ" / Twitter
https://twitter.com/cyberknow20/status/1579067155647455232
BsidesPDX 2022 (Live Stream 2 of 2) - YouTube
https://youtu.be/QOypldw6hnY
Jonathan Scott, MSCS on Twitter: "@notshenetworks @jonathandata0 How about spend less time interacting with a hate account and more time learning @notshenetworks There is more to the security world than nmap & burp suite “USB/IP code and components are part of the Linux mainline source tree since version 3.17.” https://t.co/qRACK82p2d" / Twitter
https://twitter.com/jonathandata1/status/1578286946765656064
Report: Big U.S. Banks Are Stiffing Account Takeover Victims – Krebs on Security
https://krebsonsecurity.com/2022/10/report-big-u-s-banks-are-stiffing-account-takeover-victims/
Lia Wong on Twitter: "Blood-Wing, a Chinese defense contractor, demonstrates drone-deploying an armed robodog. The Future is Now. https://t.co/tRKnKa8xvp" / Twitter
https://twitter.com/liawongosint/status/1577209925255561216
Callback phishing attacks evolve their social engineering tactics
https://www.bleepingcomputer.com/news/security/callback-phishing-attacks-evolve-their-social-engineering-tactics/
Lufthansa "bans AirTags in luggage" after passengers publicly shame it with location of lost bags | Boing Boing
https://boingboing.net/2022/10/08/lufthansa-bans-airtags-in-luggage-after-passengers-publicly-shame-them-with-location-of-lost-luggage.html
Building_v8_Windows.md · GitHub
https://gist.github.com/jhalon/5cbaab99dccadbf8e783921358020159
Capturing Detection Ideas to Improve Their Impact | by Florian Roth | Oct, 2022 | Medium
https://cyb3rops.medium.com/capturing-detection-ideas-to-improve-their-impact-311cf4e1c7a8
The Curious Case of Copy & Paste - on risks of pasting arbitrary content in browsers - research.securitum.com
https://research.securitum.com/the-curious-case-of-copy-paste/
How Threat Actors Can Use GitHub Repositories to Deploy Malware | CrowdStrike
https://www.crowdstrike.com/blog/how-threat-actors-use-github-repositories-to-deploy-malware/
The Problem With Jon Stewart on Twitter: "Jon interviewed Leslie Rutledge, Arkansas Attorney General, about why her state banned gender-affirming care for minors - ignoring the guidelines of major medical organizations and taking the decision out of parents’ hands. Watch the full interview on @AppleTVPlus https://t.co/4SoH3orWa6" / Twitter
https://twitter.com/TheProblem/status/1578414849083654144
VirusTotal - File - c278b63d39dcf13d5bafa6ba86823fe8194ae4c6d70b57a781069e55e581c142
https://www.virustotal.com/gui/file/c278b63d39dcf13d5bafa6ba86823fe8194ae4c6d70b57a781069e55e581c142?nocache=1
GitHub - rasta-mouse/MinHook.NET: A C# port of the MinHook API hooking library
https://github.com/rasta-mouse/MinHook.NET
Eva on Twitter: "I am begging people who run conferences to think about people who wear skirts and dresses when they are making their seating arrangements because I don’t want to have to spend my entire interview desperately hoping that I’m not flashing the audience." / Twitter
https://twitter.com/evacide/status/1578776562865872896
Triage | Malware sandboxing report by Hatching Triage
https://tria.ge/221009-eebfcsgcgn
GitHub - veritas501/CVE-2022-34918: CVE-2022-34918 netfilter nf_tables 本地提权 POC
https://github.com/veritas501/CVE-2022-34918
The war in Ukraine has battered the reputation of Russian spies | The Economist
https://www.economist.com/europe/2022/10/09/the-war-in-ukraine-has-battered-the-reputation-of-russian-spies
ZINC weaponizing open-source software - Microsoft Security Blog
https://www.microsoft.com/security/blog/2022/09/29/zinc-weaponizing-open-source-software/
graham starr on Twitter: "William Shatner on his Blue Origin flight to space: "It was among the strongest feelings of grief I have ever encountered." https://t.co/CI1WDV17oe https://t.co/z0jyFRzJ7w" / Twitter
https://twitter.com/grahamstarr/status/1578935093829455873
GitHub - myrtus0x0/smoke_conf_extract
https://github.com/myrtus0x0/smoke_conf_extract