Okta's source code stolen after GitHub repositories hacked
https://www.bleepingcomputer.com/news/security/oktas-source-code-stolen-after-github-repositories-hacked/
OWASSRF: CrowdStrike Identifies New Method for Bypassing ProxyNotShell Mitigations
https://www.crowdstrike.com/blog/owassrf-exploit-analysis-and-recommendations/
Guardian hit by serious IT incident believed to be ransomware attack | The Guardian | The Guardian
https://www.theguardian.com/media/2022/dec/21/guardian-hit-by-serious-it-incident-believed-to-be-ransomware-attack
Welcome to Comprehensive Rust 🦀 - Comprehensive Rust 🦀
https://google.github.io/comprehensive-rust/
DirtyCred Remastered | LukeGix
https://exploiter.dev/blog/2022/CVE-2022-2602.html
Inside the IcedID BackConnect Protocol
https://www.team-cymru.com/post/inside-the-icedid-backconnect-protocol
Deconstructing and Exploiting CVE-2020-6418 | STAR Labs
https://starlabs.sg/blog/2022/12-deconstructing-and-exploiting-cve-2020-6418/
Ransomware gang uses new Microsoft Exchange exploit to breach servers
https://www.bleepingcomputer.com/news/security/ransomware-gang-uses-new-microsoft-exchange-exploit-to-breach-servers/
Ransomware Hackers Using New Way to Bypass MS Exchange ProxyNotShell Mitigations
https://thehackernews.com/2022/12/ransomware-hackers-using-new-way-to.html
What child is this? | Trail of Bits Blog
https://blog.trailofbits.com/2022/12/20/process-reparenting-microsoft-windows/
Okta says its GitHub account hacked, source code stolen
https://www.bleepingcomputer.com/news/security/okta-says-its-github-account-hacked-source-code-stolen/
Russia’s Trident Ursa (aka Gamaredon APT) Cyber Conflict Operations Unwavering Since Invasion of Ukraine
https://unit42.paloaltonetworks.com/trident-ursa/
CVE-2022-41076 - Security Update Guide - Microsoft - PowerShell Remote Code Execution Vulnerability
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2022-41076
Guardian hit by serious IT incident believed to be ransomware attack | The Guardian | The Guardian
https://www.theguardian.com/media/2022/dec/21/guardian-hit-by-serious-it-incident-believed-to-be-ransomware-attack?CMP=twt_gu&utm_source=Twitter&utm_medium#Echobox=1671629085-1
FBI warns of search engine ads pushing malware, phishing
https://www.bleepingcomputer.com/news/security/fbi-warns-of-search-engine-ads-pushing-malware-phishing/
Rskvp93 on Twitter: "MSRC released the patch for our "TabShell" vulnerability (https://t.co/5vlDHIlX02). This is a nice bug chain to RCE Exchange on-premises, Exchange Online, Skype for Business Server (may be SFB Online+Teams too but can't find its powershell remote endpoint) with @_q5ca @hoangnx99" / Twitter
https://twitter.com/rskvp93/status/1602879250910314496
CVE-2022-41080 - Security Update Guide - Microsoft - Microsoft Exchange Server Elevation of Privilege Vulnerability
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41080
Guardian newspaper hit by suspected ransomware attack, staff told not to come to office - The Record by Recorded Future
https://therecord.media/guardian-newspaper-hit-by-suspected-ransomware-attack-staff-told-not-to-come-to-office/