Introducing RPC Investigator | Trail of Bits Blog
https://blog.trailofbits.com/2023/01/17/rpc-investigator-microsoft-windows-remote-procedure-call/
Hackers turn to Google search ads to push info-stealing malware
https://www.bleepingcomputer.com/news/security/hackers-turn-to-google-search-ads-to-push-info-stealing-malware/
APT_REPORT/360_APT_Annual_Research_Report_2022.pdf at master · blackorbird/APT_REPORT · GitHub
https://github.com/blackorbird/APT_REPORT/blob/master/summary/2023/360_APT_Annual_Research_Report_2022.pdf
Cryptolaemus on Twitter: "Hello Ivan, is that you? *sounds of vodka bottles falling over* - We have reason to believe that #Emotet is coming back for distribution (SPAM) in short order. E4/E5 woke up yesterday. Now is the time to prepare and be vigilant as Ivan may have new lures/tricks/methods to share." / Twitter
https://twitter.com/Cryptolaemus1/status/1615439311935246336
GitHub - knight0x07/OneNoteAnalyzer: A C# based tool for analysing malicious OneNote documents
https://github.com/knight0x07/OneNoteAnalyzer
The Defender’s Guide to Windows Services | by Jonathan Johnson | Jan, 2023 | Posts By SpecterOps Team Members
https://posts.specterops.io/the-defenders-guide-to-windows-services-67c1711ecba7
TheDefendersGuide/WindowsServices at main · Defenders-Guide/TheDefendersGuide · GitHub
https://github.com/Defenders-Guide/TheDefendersGuide/tree/main/WindowsServices
XML Security in Java
https://semgrep.dev/blog/2022/xml-security-in-java
BleepingComputer on Twitter: "Hackers turn to Google search ads to push info-stealing malware - @Ionut_Ilascu https://t.co/8mgyr2kS2r" / Twitter
https://twitter.com/BleepinComputer/status/1615486585910312962
Gone Phishing: Hunting for Malicious Industrial-Themed Emails to Prevent Operational Technology Compromises | Mandiant
https://www.mandiant.com/resources/blog/phishing-hunting-industrial-emails
Caido is now in public beta | by Caido | Medium | Medium
https://medium.com/@caido/caido-is-now-in-public-beta-12ff5413c86c
Git Users Urged to Update Software to Prevent Remote Code Execution Attacks
https://thehackernews.com/2023/01/git-users-urged-to-update-software-to.html
Triage | Behavioral Report
https://tria.ge/230118-rrsavsag38/behavioral16
Founder and Majority Owner of Bitzlato, a Cryptocurrency Exchange, Charged with Unlicensed Money Transmitting | USAO-EDNY | Department of Justice
https://www.justice.gov/usao-edny/pr/founder-and-majority-owner-bitzlato-cryptocurrency-exchange-charged-unlicensed-money
MalwareBazaar | Browse Checking your browser
https://bazaar.abuse.ch/browse/tag/700AE/
JAMESWT on Twitter: "#ursnif #gozi #agenziaentrate #italy 🪧Zip oknaoptima24.]ru/agenzia/b85d/ZgHQnr.php gapegape.]co.]za/agenzia/5d14/p6oHkk.php 📋SMB \\Agenzia\Informazion.exe 62.173.147.]35 - 36 📡C2 62.173.140].150 31.41.44].179 91.107.119].172 Samples👇 https://t.co/kADezqnWmA https://t.co/sxDkVoxfAw" / Twitter
https://twitter.com/JAMESWT_MHT/status/1615315192342011906![JAMESWT on Twitter: "#ursnif #gozi #agenziaentrate #italy 🪧Zip oknaoptima24.]ru/agenzia/b85d/ZgHQnr.php gapegape.]co.]za/agenzia/5d14/p6oHkk.php 📋SMB \\Agenzia\Informazion.exe 62.173.147.]35 - 36 📡C2 62.173.140].150 31.41.44].179 91.107.119].172 Samples👇 https://t.co/kADezqnWmA https://t.co/sxDkVoxfAw" / Twitter](/image/screenshot/bb3bcab2091aff2390c0cba3f8d87506.webp)
Donelan confirms stiffer online safety measures after backbench pressure | Internet safety | The Guardian
https://www.theguardian.com/technology/2023/jan/17/donelan-confirms-stiffer-online-safety-measures-after-backbench-pressure
InfoSec Handlers Diary Blog - SANS Internet Storm Center
https://i5c.us/d29448
Assessing Potential Exploitation of Sophos Firewall and CVE-2022-3236 - Blog - VulnCheck
https://vulncheck.com/blog/sophos-cve-2022-3236