CVE-2022-3786 and CVE-2022-3602: X.509 Email Address Buffer Overflows - OpenSSL Blog
https://www.openssl.org/blog/blog/2022/11/01/email-address-overflows/
https://www.openssl.org/news/secadv/20221101.txt
https://www.openssl.org/news/secadv/20221101.txt
The OpenSSL punycode vulnerability (CVE-2022-3602): Overview, detection, exploitation, and remediation | Datadog Security Labs
https://securitylabs.datadoghq.com/articles/openssl-november-1-vulnerabilities/
Elon Musk on Twitter: "Twitter’s current lords & peasants system for who has or doesn’t have a blue checkmark is bullshit. Power to the people! Blue for $8/month." / Twitter
https://twitter.com/elonmusk/status/1587498907336118274
Exploiting Static Site Generators: When Static Is Not Actually Static – Assetnote
https://blog.assetnote.io/2022/10/28/exploiting-static-site-generators/
GitHub - ustayready/wnfexec: WNF Code Execution Library Using C#
https://github.com/ustayready/wnfexec
SANS Pen Test HackFest Summit & Training 2022 – Arlington, VA | Cyber security training courses | SANS Institute
https://sansurl.com/hackfest-jao
USCGSoutheast on Twitter: "#SearchAndRescue @USCG crews are searching for 36-year-old Vitali Kremez, last seen wearing a black wetsuit and scuba tank while diving near #HollywoodBeach, Florida. Anyone with information is asked to call Sector Miami at (305) 535-4472." / Twitter
https://twitter.com/uscgsoutheast/status/1586820085116715009
Accused ‘Raccoon’ Malware Developer Fled Ukraine After Russian Invasion – Krebs on Security
https://krebsonsecurity.com/2022/10/accused-raccoon-malware-developer-fled-ukraine-after-russian-invasion/
NCSC Annual Review 2022 - NCSC.GOV.UK
https://www.ncsc.gov.uk/annual-review-2022
Hackers selling access to 576 corporate networks for $4 million
https://www.bleepingcomputer.com/news/security/hackers-selling-access-to-576-corporate-networks-for-4-million/
Maddie – Darknet Diaries
https://darknetdiaries.com/episode/127
GitHub - NCSC-NL/OpenSSL-2022: Operational information about the recently announced vulnerability in OpenSSL 3
https://github.com/NCSC-NL/OpenSSL-2022
SANS Holiday Hack Challenge & KringleCon 2022 | SANS Institute
https://www.sans.org/u/1nAs
CISA_CPG_CHECKLIST_508c.pdf
https://www.cisa.gov/sites/default/files/publications/CISA_CPG_CHECKLIST_508c.pdf
GIMP - GNU Image Manipulation Program
http://GIMP.org
Qakbot/Qakbot_BB05_01.11.2022.txt at main · pr0xylife/Qakbot · GitHub
https://github.com/pr0xylife/Qakbot/blob/main/Qakbot_BB05_01.11.2022.txt
Google ad for GIMP.org served info-stealing malware via lookalike site
https://www.bleepingcomputer.com/news/security/google-ad-for-gimporg-served-info-stealing-malware-via-lookalike-site/
OpenSSL-2022/README.md at main · NCSC-NL/OpenSSL-2022 · GitHub
https://github.com/NCSC-NL/OpenSSL-2022/blob/main/software/README.md
APT10: Tracking down LODEINFO 2022, part I | Securelist
https://securelist.com/apt10-tracking-down-lodeinfo-2022-part-i/107742/
SANS Difference Makers 2022 - community vote
https://survey.sans.org/jfe/form/SV_eXuwVrkCVdeoKMu
MalwareBazaar | Browse Checking your browser
https://bazaar.abuse.ch/sample/614c3f36b2f32d43246a250bc12eeaeb5dfbed64f8cf5d1db72ab5f09c171ab3/
Elon Musk on Twitter: "@StephenKing We need to pay the bills somehow! Twitter cannot rely entirely on advertisers. How about $8?" / Twitter
https://twitter.com/elonmusk/status/1587312517679878144
Everything you need to know about the OpenSSL 3.0.7 Patch - MalwareTech
https://malwaretech.com/2022/11/everything-you-need-to-know-about-the-openssl-3-0-7-patch.html
OpenSSL-2022/software at main · NCSC-NL/OpenSSL-2022 · GitHub
https://github.com/NCSC-NL/OpenSSL-2022/tree/main/software
Chinese Hackers Using New Stealthy Infection Chain to Deploy LODEINFO Malware
https://thehackernews.com/2022/11/chinese-hackers-using-new-stealthy.html
Zack Whittaker on Twitter: "Twitter's ongoing verification chaos is now a cybersecurity problem. It looks like some people (including in our newsroom) are getting crude phishing emails trying to trick people into turning over their Twitter credentials. https://t.co/Nig4nhoXWF" / Twitter
https://twitter.com/zackwhittaker/status/1587188619000922112
MalwareBazaar | Browse Checking your browser
https://bazaar.abuse.ch/sample/592dc94d71effe762414d7d1ab10df18bf999340dd5851f0c132509d3f525dc2/