2022-10-27 | Hacker Trends

10/26

10/27

10/28

19 Posts

Hexacon - YouTube

https://www.youtube.com/channel/UCtzuVwPhBVFAQnes0NrqxBA/videos

Hexacon - YouTube

18 Posts

New York Post on Twitter: "The New York Post has been hacked. We are currently investigating the cause." / Twitter

https://twitter.com/nypost/status/1585629621521100801

New York Post on Twitter: "The New York Post has been hacked. We are currently investigating the cause." / Twitter

17 Posts

So long and thanks for all the bits - NCSC.GOV.UK

https://www.ncsc.gov.uk/blog-post/so-long-thanks-for-all-the-bits

So long and thanks for all the bits - NCSC.GOV.UK

13 Posts

Blog - Towards the next generation of XNU memory safety: kalloc_type - Apple Security Research

https://security.apple.com/blog/towards-the-next-generation-of-xnu-memory-safety/

Blog - Towards the next generation of XNU memory safety: kalloc_type - Apple Security Research

12 Posts

SiriSpy - iOS bug allowed apps to eavesdrop on your conversations with Siri | Rambo Codes

https://rambo.codes/posts/2022-10-25-sirispy-ios-bug-allowed-apps-to-eavesdrop

SiriSpy - iOS bug allowed apps to eavesdrop on your conversations with Siri | Rambo Codes

11 Posts

Raspberry Robin worm part of larger ecosystem facilitating pre-ransomware activity - Microsoft Security Blog

https://msft.it/6011djXFR

Raspberry Robin worm part of larger ecosystem facilitating pre-ransomware activity - Microsoft Security Blog

11 Posts

Microsoft Security Intelligence on Twitter: "Microsoft has discovered Raspberry Robin activity establishing its role in a complex, interconnected malware ecosystem that facilitates human-operated ransomware. Our latest blog details active operations and links to other malware and threat actors: https://t.co/Wm5nH3UQp9" / Twitter

https://twitter.com/MsftSecIntel/status/1585663867178434560

Microsoft Security Intelligence on Twitter: "Microsoft has discovered Raspberry Robin activity establishing its role in a complex, interconnected malware ecosystem that facilitates human-operated ransomware. Our latest blog details active operations and links to other malware and threat actors: https://t.co/Wm5nH3UQp9" / Twitter

11 Posts

Sysinternals - Windows Sysinternals | Microsoft Learn

https://learn.microsoft.com/en-us/sysinternals/

Sysinternals - Windows Sysinternals | Microsoft Learn

10 Posts

TCP/IP Vulnerability CVE-2022–34718 PoC Restoration and Analysis | by Numen Cyber Labs | Oct, 2022 | Medium

https://medium.com/@numencyberlabs/analysis-and-summary-of-tcp-ip-protocol-remote-code-execution-vulnerability-cve-2022-34718-8fcc28538acf

TCP/IP Vulnerability CVE-2022–34718 PoC Restoration and Analysis | by Numen Cyber Labs | Oct, 2022 | Medium

10 Posts

Overview - Apple Security Research

https://security.apple.com

Overview - Apple Security Research

9 Posts

Blog - Apple Security Bounty. Upgraded. - Apple Security Research

https://security.apple.com/blog/apple-security-bounty-upgraded/

Blog - Apple Security Bounty. Upgraded. - Apple Security Research

9 Posts

Microsoft Security Intelligence on Twitter: "Microsoft has discovered Raspberry Robin activity establishing its role in a complex, interconnected malware ecosystem that facilitates human-operated ransomware. Our latest blog details active operations and links to other malware and threat actors: https://t.co/Wm5nH3UQp9" / Twitter

https://twitter.com/msftsecintel/status/1585663867178434560

Microsoft Security Intelligence on Twitter: "Microsoft has discovered Raspberry Robin activity establishing its role in a complex, interconnected malware ecosystem that facilitates human-operated ransomware. Our latest blog details active operations and links to other malware and threat actors: https://t.co/Wm5nH3UQp9" / Twitter

8 Posts

Raspberry Robin worm part of larger ecosystem facilitating pre-ransomware activity - Microsoft Security Blog

https://www.microsoft.com/en-us/security/blog/2022/10/27/raspberry-robin-worm-part-of-larger-ecosystem-facilitating-pre-ransomware-activity/

Raspberry Robin worm part of larger ecosystem facilitating pre-ransomware activity - Microsoft Security Blog

7 Posts

MalwareBazaar | Browse Checking your browser

https://bazaar.abuse.ch/sample/e248f7a1cbd369a2111834664fa805b489c8610e0d9b7fa506c3a1fc882dd331/

MalwareBazaar | Browse Checking your browser

7 Posts

GitHub - mahaloz/decomp2dbg: A plugin to introduce interactive symbols into your debugger from your decompiler

https://github.com/mahaloz/decomp2dbg

GitHub - mahaloz/decomp2dbg: A plugin to introduce interactive symbols into your debugger from your decompiler

7 Posts

Self-Hosted GitHub Runners Are Backdoors - Praetorian

https://www.praetorian.com/blog/self-hosted-github-runners-are-backdoors/

Self-Hosted GitHub Runners Are Backdoors - Praetorian

7 Posts

MalwareBazaar | Browse Checking your browser

https://bazaar.abuse.ch/sample/5c6b6e4585e5fec1a4fdbfb3c225aa9dbdc229c6dc56d4408f1842efb17b1918/

MalwareBazaar | Browse Checking your browser

7 Posts

Qakbot/Qakbot_BB04_27.10.2022.txt at main · pr0xylife/Qakbot · GitHub

https://github.com/pr0xylife/Qakbot/blob/main/Qakbot_BB04_27.10.2022.txt

Qakbot/Qakbot_BB04_27.10.2022.txt at main · pr0xylife/Qakbot · GitHub

7 Posts

Apple MacOS Ventura Bug Breaks Third-Party Security Tools | WIRED

https://www.wired.com/story/apple-macos-ventura-bug-security-tools/

Apple MacOS Ventura Bug Breaks Third-Party Security Tools | WIRED

6 Posts

MalwareBazaar | Browse Checking your browser

https://bazaar.abuse.ch/sample/91bd47bc55fc258b74303067c506b578ecb57d0c709aea354d83c83391e3925d/

MalwareBazaar | Browse Checking your browser

6 Posts

Qakbot/Qakbot_obama218_27.10.2022.txt at main · pr0xylife/Qakbot · GitHub

https://github.com/pr0xylife/Qakbot/blob/main/Qakbot_obama218_27.10.2022.txt

Qakbot/Qakbot_obama218_27.10.2022.txt at main · pr0xylife/Qakbot · GitHub

6 Posts

MalwareBazaar | Browse Checking your browser

https://bazaar.abuse.ch/browse/tag/1666776497/

MalwareBazaar | Browse Checking your browser

6 Posts

decomp2dbg v3.0.0: Ghidra Support - YouTube

https://youtu.be/MK7N7uQTUNY

decomp2dbg v3.0.0: Ghidra Support - YouTube

6 Posts

Project Zero: RC4 Is Still Considered Harmful

https://googleprojectzero.blogspot.com/2022/10/rc4-is-still-considered-harmful.html

Project Zero: RC4 Is Still Considered Harmful

6 Posts

Malwarebytes on Twitter: "An apology https://t.co/8A3UtccX5K" / Twitter

https://twitter.com/Malwarebytes/status/1585748974862061570

Malwarebytes on Twitter: "An apology https://t.co/8A3UtccX5K" / Twitter

6 Posts

China strives to ramp up election influence this year - The Washington Post

https://www.washingtonpost.com/politics/2022/10/27/china-strives-ramp-up-election-influence-this-year/

China strives to ramp up election influence this year - The Washington Post

6 Posts

GitHub - secureworks/TokenMan

https://github.com/secureworks/TokenMan

GitHub - secureworks/TokenMan

6 Posts

immunIT – Ethernet ghosting & NAC bypass – A practical overview

https://www.immunit.ch/blog/2022/10/26/ethernet-ghosting-nac-bypass/

immunIT – Ethernet ghosting & NAC bypass – A practical overview

6 Posts

GL.iNET MT300N-V2 Vulnerabilities and Hardware Teardown

https://boschko.ca/glinet-router/

GL.iNET MT300N-V2 Vulnerabilities and Hardware Teardown