Beloved hacking veteran Kelly ‘Aloria’ Lum passes away at 41 | TechCrunch
https://techcrunch.com/2023/03/22/kelly-aloria-lum-passes-away-at-41-obituary/
Journalist opens USB letter bomb in newsroom - BBC News
https://www.bbc.com/news/world-latin-america-65026522
Patch Tuesday -> Exploit Wednesday: Pwning Windows Ancillary Function Driver for WinSock (afd.sys) in 24 Hours
https://securityintelligence.com/posts/patch-tuesday-exploit-wednesday-pwning-windows-ancillary-function-driver-winsock/
The Unintentional Leak: A glimpse into the attack vectors of APT37 | Zscaler
https://www.zscaler.com/blogs/security-research/unintentional-leak-glimpse-attack-vectors-apt37
Book: Arm Assembly & Reverse Engineering
https://arm-assembly.com
GitHub - netspooky/scare: A multi-arch assembly REPL and emulator for your command line.
https://github.com/netspooky/scare
Cryptolaemus on Twitter: "Just a heads up that #emotet/Ivan are back spamming for E4 late on a Tuesday at 2100UTC. E5 is not spamming yet. Details are here: https://t.co/fIQo7i0egx" / Twitter
https://twitter.com/Cryptolaemus1/status/1638290779222204417
Qakbot/Qakbot_BB20_22.03.2023.txt at main · pr0xylife/Qakbot · GitHub
https://github.com/pr0xylife/Qakbot/blob/main/Qakbot_BB20_22.03.2023.txt
NAPLISTENER: New Malware in REF2924 Group's Arsenal for Bypassing Detection
https://thehackernews.com/2023/03/new-naplistener-malware-used-by-ref2924.html
GitHub - XaFF-XaFF/Black-Angel-Rootkit: Black Angel is a Windows 11/10 x64 kernel mode rootkit. Rootkit can be loaded with enabled DSE while maintaining its full functionality.
https://github.com/XaFF-XaFF/Black-Angel-Rootkit
Chris Blume on Twitter: "@ItsSimonTime @David3141593 I've got a fun one for you all to look at. I opened a 198 byte PNG with Microsoft's Snipping Tool, chose "Save As" to overwrite a different PNG file (no editing), and saves a 4,762 byte file with all that extra after the PNG IEND chunk. Sounds similar :D" / Twitter
https://twitter.com/ProgramMax/status/1638217206180741121
Triage | Malware sandboxing report by Hatching Triage
https://tria.ge/230322-v3x72aad27
Qakbot/Qakbot_obama245_22.03.2023.txt at main · pr0xylife/Qakbot · GitHub
https://github.com/pr0xylife/Qakbot/blob/main/Qakbot_obama245_22.03.2023.txt
Evilginx Mastery
https://academy.breakdev.org/evilginx-mastery
Threat Detection Report: Introduction - Red Canary
https://redcanary.com/threat-detection-report/
Azeria on Twitter: "Finally! My new book "Arm Assembly Internals & Reverse Engineering" is up for pre-order! Save the date for the official launch on May 9th. Can't wait for you to dive into the world of Arm Assembly! Check out the official book website for more info: https://t.co/ZdtfY6GwoK" / Twitter
https://twitter.com/Fox0x01/status/1638214314237603840
GitHub - blacklanternsecurity/badsecrets: A library for detecting known secrets across many web frameworks
https://github.com/blacklanternsecurity/badsecrets
PoC exploits released for Netgear Orbi router vulnerabilities
https://www.bleepingcomputer.com/news/security/poc-exploits-released-for-netgear-orbi-router-vulnerabilities/
ScarCruft's Evolving Arsenal: Researchers Reveal New Malware Distribution Techniques
https://thehackernews.com/2023/03/scarcrufts-evolving-arsenal-researchers.html
Malware Reverse Engineering for Beginners - Part 2 - Intezer
https://www.intezer.com/blog/incident-response/malware-reverse-engineering-for-beginners-part-2/