FortiNAC - Just a few more RCEs | Frycos Security Diary
https://frycos.github.io/vulns4free/2023/06/18/fortinac.html
DLL Injection: Background & DLL Proxying (1/5) « RCE Endeavors
https://www.codereversing.com/archives/653
GitHub - j00sean/CVE-2022-44666: Write-up for another forgotten Windows vulnerability (0day): Microsoft Windows Contacts (VCF/Contact/LDAP) syslink control href attribute escape, which was not fully fixed as CVE-2022-44666 in the patches released on December, 2022.
https://github.com/j00sean/CVE-2022-44666#jar-files-as-payload
The art of Fuzzing: Introduction. - Bushido Security
https://bushido-sec.com/index.php/2023/06/19/the-art-of-fuzzing/
Embattled consulting firm PwC swept up in global cyber breach of file service MOVEit by cybercrime group C10p
https://www.afr.com/technology/embattled-consulting-firm-pwc-swept-up-in-global-cyber-breach-20230619-p5dhlz
2440 - iOS/macOS: libIPTelephony.dylib use-after-free in SIP decoder with multiple Alert-Info header lines - project-zero
https://bugs.chromium.org/p/project-zero/issues/detail?id=2440
Fragments of Cross-Platform Backdoor Hint at Larger Mac OS Attack
https://www.bitdefender.com/blog/labs/fragments-of-cross-platform-backdoor-hint-at-larger-mac-os-attack/
New Mystic Stealer Malware Targets 40 Web Browsers and 70 Browser Extensions
https://thehackernews.com/2023/06/new-mystic-stealer-malware-targets-40.html
State-Backed Hackers Employ Advanced Methods to Target Middle Eastern and African Governments
https://thehackernews.com/2023/06/state-backed-hackers-employ-advanced.html
GitHub - persistent-security/hermes-the-messenger: A PoC for achieving persistence via push notifications on Windows
https://github.com/persistent-security/hermes-the-messenger