Pre-Auth RCE in Aspera Faspex: Case Guide for Auditing Ruby on Rails – Assetnote
https://blog.assetnote.io/2023/02/02/pre-auth-rce-aspera-faspex/
GitHub - duc-nt/CVE-2022-44268-ImageMagick-Arbitrary-File-Read-PoC: CVE-2022-44268 ImageMagick Arbitrary File Read - Payload Generator
https://github.com/duc-nt/CVE-2022-44268-ImageMagick-Arbitrary-File-Read-PoC
Massive ESXiArgs ransomware attack targets VMware ESXi servers worldwide
https://www.bleepingcomputer.com/news/security/massive-esxiargs-ransomware-attack-targets-vmware-esxi-servers-worldwide/
Mustang Panda APT Group Uses European Commission-Themed Lure to Deliver PlugX Malware | EclecticIQ
https://blog.eclecticiq.com/mustang-panda-apt-group-uses-european-commission-themed-lure-to-deliver-plugx-malware
Twitter Dev on Twitter: "Starting February 9, we will no longer support free access to the Twitter API, both v2 and v1.1. A paid basic tier will be available instead 🧵" / Twitter
https://twitter.com/TwitterDev/status/1621026986784337922
Rachael Lininger - Senior Security Analyst, Third Party Risk - Okta | LinkedIn
https://www.linkedin.com/in/rachaellininger/
Adobe Acrobat Reader - resetForm - CAgg UaF - RCE Exploit - CVE-2023-21608 - HackSys Inc
https://hacksys.io/blogs/adobe-reader-resetform-cagg-rce-cve-2023-21608
Iran responsible for Charlie Hebdo attacks - Microsoft On the Issues
https://blogs.microsoft.com/on-the-issues/2023/02/03/dtac-charlie-hebdo-hack-iran-neptunium/
Adobe Acrobat Reader - resetForm - CAgg UaF - RCE Exploit - CVE-2023-21608 - HackSys Inc
https://hacksys.io/blogs/adobe-reader-resetform-cagg-rce-CVE-2023-21608
Atlassian's Jira Software Found Vulnerable to Critical Authentication Vulnerability
https://thehackernews.com/2023/02/atlassians-jira-software-found.html
Nighthawk Loader: DLL Generation on Vimeo
https://vimeo.com/795567174
North Korean hackers stole research data in two-month-long breach
https://www.bleepingcomputer.com/news/security/north-korean-hackers-stole-research-data-in-two-month-long-breach/
GitHub - hacksysteam/CVE-2023-21608: Adobe Acrobat Reader - CVE-2023-21608 - Remote Code Execution Exploit
https://github.com/hacksysteam/CVE-2023-21608
Iranian OilRig Hackers Using New Backdoor to Exfiltrate Data from Govt. Organizations
https://thehackernews.com/2023/02/iranian-oilrig-hackers-using-new.html
CISA Alert: Oracle E-Business Suite and SugarCRM Vulnerabilities Under Attack
https://thehackernews.com/2023/02/cisa-alert-oracle-e-business-suite-and.html
New York attorney general orders stalkerware maker to notify hacked victims | TechCrunch
https://techcrunch.com/2023/02/03/new-york-stalkerware-notify-victims/
Google ads push ‘virtualized’ malware made for antivirus evasion
https://www.bleepingcomputer.com/news/security/google-ads-push-virtualized-malware-made-for-antivirus-evasion/
Malware-IOCs/2023-01-31 Unknown Rust (likely) Stealer IOCs at main · executemalware/Malware-IOCs · GitHub
https://github.com/executemalware/Malware-IOCs/blob/main/2023-01-31%20Unknown%20Rust%20(likely)%20Stealer%20IOCs
GitHub - Simpsonpt/AppSecEzine: AppSec Ezine Public Repository.
https://github.com/Simpsonpt/AppSecEzine
https://pathonproject.com/zb/?a2282305b884d3f8#MYGSdFNv+ZNZPvgP1jHuEdaXOd+DXZa/dZ9VYVS5XKo=
https://pathonproject.com/zb/?a2282305b884d3f8#MYGSdFNv+ZNZPvgP1jHuEdaXOd+DXZa/dZ9VYVS5XKo=