DOJ Detected SolarWinds Breach Months Before Public Disclosure | WIRED
https://www.wired.com/story/solarwinds-hack-public-disclosure/
Michael Koczwara on Twitter: "Pivoting from VirusTotal to Shodan and uncovering all threat actor infra (BRc4) 🎯 Let's grab this hash/badger implant (BRc4) 086d6f54b51a368d0a836ad8e24df659 Looks like the badger implant is connecting to this IP address -> 51.77.112.254 Now let's check IP with Shodan and… https://t.co/vtSILHsGlg" / Twitter
https://twitter.com/i/web/status/1652067563545800705
Kelsey on Twitter: "Forked #IcedID reappears! h/t @joewise34 and @Myrtus0x0 Example Attachment Name: RussvetLLC_#998800.html Loader C2: fdorepolass\.com BotID: 3887211302 This is the new variant we documented here: https://t.co/zVuvkLquzk" / Twitter
https://twitter.com/k3dg3/status/1652001968783601665
IcedID/icedID_28.04.2023.txt at main · pr0xylife/IcedID · GitHub
https://github.com/pr0xylife/IcedID/blob/main/icedID_28.04.2023.txt
Hackers target vulnerable Veeam backup servers exposed online
https://www.bleepingcomputer.com/news/security/hackers-target-vulnerable-veeam-backup-servers-exposed-online/
Stop the passing of the Online Safety Bill - Petitions
https://petition.parliament.uk/petitions/634725
Zyxel Firewall Devices Vulnerable to Remote Code Execution Attacks — Patch Now
https://thehackernews.com/2023/04/zyxel-firewall-devices-vulnerable-to.html
dissectors/acble.lua at main · netspooky/dissectors · GitHub
https://github.com/netspooky/dissectors/blob/main/acble.lua
MSRC-Security-Research/Security analysis of memory tagging.pdf at master · microsoft/MSRC-Security-Research · GitHub
https://github.com/microsoft/MSRC-Security-Research/blob/master/papers/2020/Security%20analysis%20of%20memory%20tagging.pdf
ChatGPT is Back in Italy After Addressing Data Privacy Concerns
https://thehackernews.com/2023/04/chatgpt-is-back-in-italy-after.html
CISA Warns of Critical Flaws in Illumina's DNA Sequencing Instruments
https://thehackernews.com/2023/04/cisa-warns-of-critical-flaws-in.html
Zscaler ThreatLabz on Twitter: "The #Akira ransomware group is using #jQuery Terminal, which is a web-based JavaScript terminal emulator to create a retro look and feel for their data leak site: https://akiral2iz6a7qgd3ayp3l6yub7xx2uep76idk3u2kollpj5z3z636bad[.]onion https://t.co/PCkcqAQpZD" / Twitter
https://twitter.com/Threatlabz/status/1651956941437145089![Zscaler ThreatLabz on Twitter: "The #Akira ransomware group is using #jQuery Terminal, which is a web-based JavaScript terminal emulator to create a retro look and feel for their data leak site: https://akiral2iz6a7qgd3ayp3l6yub7xx2uep76idk3u2kollpj5z3z636bad[.]onion https://t.co/PCkcqAQpZD" / Twitter](/image/screenshot/c3c2f6e918ac2c91376e188fbdc5d558.webp)
State of DNS Rebinding in 2023 | NCC Group Research Blog | Making the world safer and more secure
https://research.nccgroup.com/2023/04/27/state-of-dns-rebinding-in-2023/
c3rb3ru5d3d53c - Twitch
https://twitch.tv/c3rb3ru5d3d53c
GitHub - s0md3v/SubGPT: Find subdomains with GPT, for free
https://github.com/s0md3v/SubGPT
Kim Zetter on Twitter: "DOJ detected SolarWinds hack i own network in summer of 2020 - 6 months before it was publicly exposed by Mandiant - but didn't know significance of what it found. Microsoft/Mandiant/SolarWinds all helped inv, but none could solve the mystery at the time https://t.co/JCiuQsFSS1" / Twitter
https://twitter.com/kimzetter/status/1652021967258566665
Best Practices for securing AD FS and Web Application Proxy | Microsoft Learn
https://learn.microsoft.com/en-us/windows-server/identity/ad-fs/deployment/best-practices-securing-ad-fs#enable-protection-to-prevent-by-passing-of-cloud-azure-ad-multi-factor-authentication-when-federated-with-azure-ad
Request for Comment on Secure Software Self-Attestation Common Form | CISA
https://www.cisa.gov/secure-software-attestation-form
OpenAI reinstates ChatGPT service in ItalySecurity Affairs
https://securityaffairs.com/145434/security/openai-chatgpt-italy.html
Micro-channel public platform
https://mp-weixin-qq-com.translate.goog/s/FzesFjuhcag8UsSV_RLA1A?_x_tr_sl=auto&_x_tr_tl=en&_x_tr_hl=en&_x_tr_pto=wapp
voldimmoral 🛡️ on Twitter: "@MoistenedTart I am currently a senior member of a SOC at the enterprise level with experience in securing over 200k devices and 35k users seated all over the world. DNS, DLP, anti-virus, SIEM, firewall, DFIR, analysis, Splunk, military intelligence and #veteran are some of my buzz words." / Twitter
https://twitter.com/voldimmoral/status/1652133198942306304
gaut on Twitter: "My friend is one of the smartest engineers in the world. Has written code billions use. This is his closet: https://t.co/Lj7iUBRUk3" / Twitter
https://twitter.com/0xgaut/status/1652160424454832130
Flipper Zero on Twitter: "The guys from Antenna Test Lab measured the Flipper Zero's emitting pattern of Sub-GHz antenna. It turned out to be an even donut on all ranges. It can be seen that on some bands the transmit power is lower than other, but this is compromise in order to support all bands.… https://t.co/oetMTWAr9h" / Twitter
https://twitter.com/i/web/status/1652229417622536192
ViperSoftX InfoStealer Adopts Sophisticated Techniques to Avoid Detection
https://thehackernews.com/2023/04/vipersoftx-infostealer-adopts.html
G7前にサイバー攻撃が頻発 特殊な手法、企業や官庁に | 共同通信
https://nordot.app/1024954370013462528
TRAPA Security on Twitter: "We have reported a critical Pre-Auth RCE in Zyxel VPN Firewall (CVE-2023-28771) The device can be exploited as soon as it connects to the internet, without any additional configuration. Patch your Zyxel devices as soon as possible. https://t.co/OYpMwg8Q6i" / Twitter
https://twitter.com/TrapaSecurity/status/1651934011311403008
GitHub - irsdl/IIS-ShortName-Scanner: latest version of scanners for IIS short filename (8.3) disclosure vulnerability
https://github.com/irsdl/IIS-ShortName-Scanner
CISPA on Twitter: "On May 9, at 10 CET, CISPA welcomes Barton Miller for the Distinguished Lecture Series. He will give a lecture on “Random Testing with ‘Fuzz’: 30 Years of Finding Bugs”. For all details, including Zoom link: https://t.co/28XABWEOwn https://t.co/5B3jBUAFDC" / Twitter
https://twitter.com/cispa/status/1652234331182571520
HTB: MetaTwo | 0xdf hacks stuff
https://0xdf.gitlab.io/2023/04/29/htb-metatwo.html
ViperSoftX info-stealing malware now targets password managers
https://www.bleepingcomputer.com/news/security/vipersoftx-info-stealing-malware-now-targets-password-managers/
KesagataMe on Twitter: "界隈の皆様 偽サイトの見分け方レクチャーをしてくれているので共有です!!!!! https://t.co/9unj9nCKMx https://t.co/2qPX0SXVoS" / Twitter
https://twitter.com/KesaGataMe0/status/1652091943567122434
Germán Fernández on Twitter: "#SimpleHelp is another remote administration tool that is being actively used to maintain access on victim networks. IP 185.108.129.62 was recently seen in a #Medusa ransomware incident and apparently also in a #BianLian case 🧐 The main difference with other tools, is that… https://t.co/mIET9lLjWl" / Twitter
https://twitter.com/i/web/status/1652053634517987330
Analyzing Malware using FREE Online Tools | by shamooo | Apr, 2023 | InfoSec Write-ups
https://infosecwriteups.com/analyzing-malware-using-free-online-tools-e37b56bc3868
Cold storage giant Americold outage caused by network breach
https://www.bleepingcomputer.com/news/security/cold-storage-giant-americold-outage-caused-by-network-breach/