06/12
06/13
06/14
14 Posts

Xortigate, or CVE-2023-27997 - The Rumoured RCE That Was

https://labs.watchtowr.com/xortigate-or-cve-2023-27997/
Xortigate, or CVE-2023-27997 - The Rumoured RCE That Was
8 Posts

JWT authentication bypass via `X-HTTP-Method-Override` header · Advisory · GoogleCloudPlatform/esp-v2 · GitHub

https://github.com/GoogleCloudPlatform/esp-v2/security/advisories/GHSA-6qmp-9p95-fc5f
JWT authentication bypass via `X-HTTP-Method-Override` header · Advisory · GoogleCloudPlatform/esp-v2 · GitHub
7 Posts

Malware-Traffic-Analysis.net - 30 days of Formbook: Day 8, Monday 2023-06-12 - "ee2q"

https://malware-traffic-analysis.net/2023/06/12/index.html
Malware-Traffic-Analysis.net - 30 days of Formbook: Day 8, Monday 2023-06-12 - "ee2q"
6 Posts

SAS 2023 is coming! - YouTube

https://youtu.be/yFdcNupjKU0
SAS 2023 is coming! - YouTube
5 Posts

Pre-authenticated RCE in VMware vRealize Network Insight

https://summoning.team/blog/vmware-vrealize-network-insight-rce-cve-2023-20887/
Pre-authenticated RCE in VMware vRealize Network Insight
4 Posts

Americans should prepare for cyber sabotage from Chinese hackers, US official warns | Reuters

https://www.reuters.com/world/americans-should-prepare-cyber-sabotage-chinese-hackers-us-official-warns-2023-06-12/
Americans should prepare for cyber sabotage from Chinese hackers, US official warns | Reuters
4 Posts

PSIRT Advisories | FortiGuard

https://www.fortiguard.com/psirt/FG-IR-23-097
PSIRT Advisories | FortiGuard
4 Posts

Beware: New DoubleFinger Loader Targets Cryptocurrency Wallets with Stealer

https://thehackernews.com/2023/06/beware-new-doublefinger-loader-targets.html
Beware: New DoubleFinger Loader Targets Cryptocurrency Wallets with Stealer
3 Posts

RDP honeypot targeted 3.5 million times in brute-force attacks

https://www.bleepingcomputer.com/news/security/rdp-honeypot-targeted-35-million-times-in-brute-force-attacks/
RDP honeypot targeted 3.5 million times in brute-force attacks
3 Posts

Reddit goes dark - by Casey Newton - Platformer

https://www.platformer.news/p/reddit-goes-dark
Reddit goes dark - by Casey Newton - Platformer
3 Posts

Bug Bounty Recon (Part-2). Previous Part… | by Aswin Thambi Panikulangara | Jun, 2023 | Medium

https://aswinthambipanik07.medium.com/bug-bounty-recon-part-2-6aa549ba63d5
Bug Bounty Recon (Part-2). Previous Part… | by Aswin Thambi Panikulangara | Jun, 2023 | Medium
3 Posts

SteelCloverが使用する新たなマルウェアPowerHarborについて, Rintaro Koike

https://insight-jp.nttsecurity.com/post/102ignh/steelcloverpowerharbor
SteelCloverが使用する新たなマルウェアPowerHarborについて, Rintaro Koike
3 Posts

Two Russian Nationals Charged for Masterminding Mt. Gox Crypto Exchange Hack

https://thehackernews.com/2023/06/two-russian-nationals-charged-for.html
Two Russian Nationals Charged for Masterminding Mt. Gox Crypto Exchange Hack
3 Posts

Experts released PoC exploit for MOVEit Transfer CVE-2023-34362Security Affairs

https://securityaffairs.com/147404/hacking/moveit-transfer-poc.html
Experts released PoC exploit for MOVEit Transfer CVE-2023-34362Security Affairs
3 Posts

An Illinois hospital links closure to ransomware attack

https://www.nbcnews.com/tech/security/illinois-hospital-links-closure-ransomware-attack-rcna85983
An Illinois hospital links closure to ransomware attack
3 Posts

Bug Bounty Recon(Part-1) | by Aswin Thambi Panikulangara | May, 2023 | Medium

https://aswinthambipanik07.medium.com/bug-bounty-recon-part-1-dad7f86d1b0f
Bug Bounty Recon(Part-1) | by Aswin Thambi Panikulangara | May, 2023 | Medium
3 Posts

Analysis of CVE-2023-27997 and Clarifications on Volt Typhoon Campaign | Fortinet Blog

https://www.fortinet.com/blog/psirt-blogs/analysis-of-cve-2023-27997-and-clarifications-on-volt-typhoon-campaign
Analysis of CVE-2023-27997 and Clarifications on Volt Typhoon Campaign | Fortinet Blog
3 Posts

A Truly Graceful Wipe Out - The DFIR Report

https://thedfirreport.com/2023/06/12/a-truly-graceful-wipe-out/
A Truly Graceful Wipe Out - The DFIR Report
3 Posts

Massive phishing campaign uses 6,000 sites to impersonate 100 brands

https://www.bleepingcomputer.com/news/security/massive-phishing-campaign-uses-6-000-sites-to-impersonate-100-brands/
Massive phishing campaign uses 6,000 sites to impersonate 100 brands
3 Posts

New Loader Delivering Spyware via Image Steals Cryptocurrency Info

https://www.darkreading.com/attacks-breaches/new-loader-delivering-spyware-via-image-steals-cryptocurrency-info
New Loader Delivering Spyware via Image Steals Cryptocurrency Info
3 Posts

Bug Bounty Recon (Part-3). Content Discovery using FFUF | by Aswin Thambi Panikulangara | Jun, 2023 | Medium

https://aswinthambipanik07.medium.com/bug-bounty-recon-part-3-ade14456e1ab
Bug Bounty Recon (Part-3). Content Discovery using FFUF | by Aswin Thambi Panikulangara | Jun, 2023 | Medium