SummerCon on Twitter: "It is with profound sadness that we mourn the loss of our friend and mentor, @aloria. Kelly had an indomitable spirit, and our world is a bit darker without her. https://t.co/fMfYM9NCT5" / Twitter
https://twitter.com/summerc0n/status/1637988841926672384
Patch Tuesday -> Exploit Wednesday: Pwning Windows Ancillary Function Driver for WinSock (afd.sys) in 24 Hours
https://securityintelligence.com/posts/patch-tuesday-exploit-wednesday-pwning-windows-ancillary-function-driver-winsock/
GitHub - Impalabs/CVE-2023-27326: VM Escape for Parallels Desktop <18.1.1
https://github.com/Impalabs/CVE-2023-27326
Chris Blume on Twitter: "@ItsSimonTime @David3141593 I've got a fun one for you all to look at. I opened a 198 byte PNG with Microsoft's Snipping Tool, chose "Save As" to overwrite a different PNG file (no editing), and saves a 4,762 byte file with all that extra after the PNG IEND chunk. Sounds similar :D" / Twitter
https://twitter.com/ProgramMax/status/1638217206180741121
Parallels Desktop Toolgate Vulnerability - Impalabs Blog
https://blog.impalabs.com/2303_advisory_parallels-desktop_toolgate.html
NARAL Pro-Choice America
https://www.prochoiceamerica.org/
Home - Envision Freedom Fund
https://envisionfreedom.org/
The Trevor Project | For Young LGBTQ Lives
https://www.thetrevorproject.org/
Honoring Victims. Supporting Families - MrBallen Foundation
https://mrballen.foundation/
Ferrari discloses data breach after receiving ransom demand
https://www.bleepingcomputer.com/news/security/ferrari-discloses-data-breach-after-receiving-ransom-demand/
Journalist opens USB letter bomb in newsroom - BBC News
https://www.bbc.com/news/world-latin-america-65026522
Book: Arm Assembly & Reverse Engineering
https://arm-assembly.com
Hackers mostly targeted Microsoft, Google, Apple zero-days in 2022
https://www.bleepingcomputer.com/news/security/hackers-mostly-targeted-microsoft-google-apple-zero-days-in-2022/
Bad magic: new APT found in the area of Russo-Ukrainian conflict | Securelist
https://securelist.com/bad-magic-apt/109087/
Azeria on Twitter: "Finally! My new book "Arm Assembly Internals & Reverse Engineering" is up for pre-order! Save the date for the official launch on May 9th. Can't wait for you to dive into the world of Arm Assembly! Check out the official book website for more info: https://t.co/ZdtfY6GwoK" / Twitter
https://twitter.com/fox0x01/status/1638214314237603840
chompie on Twitter: "New blogpost by @FuzzySec and I! Patch Tuesday -> Exploit Wednesday: Pwning Windows afd.sys in 24 Hours. We reverse engineer a bug + write an exploit using a cool new primitive. We also find out that it's been exploited in the wild (previously unknown). https://t.co/DAuok3g7Ci" / Twitter
https://twitter.com/chompie1337/status/1638229619546488834
[email protected] on Twitter: "I received a wedding present from @k8em0. It is amazing. 🥰 https://t.co/7gpxNcBZDm" / Twitter
https://twitter.com/aloria/status/1553088318098874368
Qakbot/Qakbot_BB20_20.03.2023.txt at main · pr0xylife/Qakbot · GitHub
https://github.com/pr0xylife/Qakbot/blob/main/Qakbot_BB20_20.03.2023.txt
Max_Malyutin on Twitter: "#Emotet Weaponized OneNote Infection #TTP 🚨 Exec Flow #DFIR: OneNote.exe > Wscript.exe > Regsvr32.exe [+] VBScript T1059.005: .wsf (download and exec DLL loader) [+] Regsvr32 T1218.010: DLL loader exec from OneNote Exported path C2: 91.121.146[.]47 Port:8080 https://t.co/fHxr86AlUc" / Twitter
https://twitter.com/Max_Mal_/status/1636142019490766848?s=20![Max_Malyutin on Twitter: "#Emotet Weaponized OneNote Infection #TTP 🚨 Exec Flow #DFIR: OneNote.exe > Wscript.exe > Regsvr32.exe [+] VBScript T1059.005: .wsf (download and exec DLL loader) [+] Regsvr32 T1218.010: DLL loader exec from OneNote Exported path C2: 91.121.146[.]47 Port:8080 https://t.co/fHxr86AlUc" / Twitter](/image/screenshot/882f46f262adbdc6680da7132c96208f.webp)
Hackers Steal Over $1.6 Million in Crypto from General Bytes Bitcoin ATMs Using Zero-Day Flaw
https://thehackernews.com/2023/03/hackers-steal-over-16-million-in-crypto.html
Sign up to try Bard from Google
https://blog.google/technology/ai/try-bard/
General Bytes Bitcoin ATMs hacked using zero-day, $1.5M stolen
https://www.bleepingcomputer.com/news/security/general-bytes-bitcoin-atms-hacked-using-zero-day-15m-stolen/
chompie on Twitter: "Releasing a Windows 11 LPE exploit by @FuzzySec and I. Exploits CVE-2023-21768, a vuln in afd.sys. Blog post soon! https://t.co/iqQYsw5TmP https://t.co/8ypb4mZGtN" / Twitter
https://twitter.com/chompie1337/status/1633498392125997056