Job Details - Google Careers
https://careers.google.com/jobs/results/93320137781715654/
Exploit released for Cisco AnyConnect bug giving SYSTEM privileges
https://www.bleepingcomputer.com/news/security/exploit-released-for-cisco-anyconnect-bug-giving-system-privileges/
Advisory: IDOR in Microsoft Teams Allows for External Tenants to Introduce Malware | JUMPSEC LABS
https://labs.jumpsec.com/advisory-idor-in-microsoft-teams-allows-for-external-tenants-to-introduce-malware/
APT37 hackers deploy new FadeStealer eavesdropping malware
https://www.bleepingcomputer.com/news/security/apt37-hackers-deploy-new-fadestealer-eavesdropping-malware/
Camaro Dragon Hackers Strike with USB-Driven Self-Propagating Malware
https://thehackernews.com/2023/06/camaro-dragon-hackers-strike-with-usb.html
Critical Flaw Found in WordPress Plugin for WooCommerce Used by 30,000 Websites
https://thehackernews.com/2023/06/critical-flaw-found-in-wordpress-plugin.html
VMware fixes vCenter Server bugs allowing code execution, auth bypass
https://www.bleepingcomputer.com/news/security/vmware-fixes-vcenter-server-bugs-allowing-code-execution-auth-bypass/
GitHub - JetP1ane/Callisto: Callisto - An Intelligent Binary Vulnerability Analysis Tool
https://github.com/JetP1ane/Callisto
DuckDuckGo browser for Windows available for everyone as public beta
https://www.bleepingcomputer.com/news/security/duckduckgo-browser-for-windows-available-for-everyone-as-public-beta/
Military Satellite Access Sold on Russian Hacker Forum for $15,000
https://www.hackread.com/military-satellite-access-russian-hacker-forum/
日本最大級のサイバーセキュリティ国際会議『CODE BLUE 2023』 学生スタッフの募集を開始 応募は7月21日(金)まで|CODE BLUE実行委員会のプレスリリース
https://www.atpress.ne.jp/news/359676
Special Offer for Asia Pacific Students | SANS Online Training
https://www.sans.org/u/1r8s
MULTI#STORM Campaign Targets India and U.S. with Remote Access Trojans
https://thehackernews.com/2023/06/multistorm-campaign-targets-india-and.html
Microsoft: Hackers hijack Linux systems using trojanized OpenSSH version
https://www.bleepingcomputer.com/news/security/microsoft-hackers-hijack-linux-systems-using-trojanized-openssh-version/
Malware-IOCs/2023-06-21 Qakbot (obama270) IOCs at main · executemalware/Malware-IOCs · GitHub
https://github.com/executemalware/Malware-IOCs/blob/main/2023-06-21%20Qakbot%20(obama270)%20IOCs
Alert: Million of GitHub Repositories Likely Vulnerable to RepoJacking Attack
https://thehackernews.com/2023/06/alert-million-of-github-repositories.html
Mirai botnet targets 22 flaws in D-Link, Zyxel, Netgear devices
https://www.bleepingcomputer.com/news/security/mirai-botnet-targets-22-flaws-in-d-link-zyxel-netgear-devices/
GitHub - trustedsec/CS_COFFLoader
https://github.com/trustedsec/CS_COFFLoader/
PoC Exploit Published for Cisco AnyConnect Secure Vulnerability - SecurityWeek
https://www.securityweek.com/poc-exploit-published-for-cisco-anyconnect-secure-vulnerability/
nOAuth: How Microsoft OAuth Misconfiguration Can Lead to Full Account Takeover
https://www.descope.com/blog/post/noauth
ESPboy walkie-talkie - YouTube
https://www.youtube.com/watch?v=v-oIQ5hdZ3Q
Stepping Insyde System Management Mode | NCC Group Research Blog | Making the world safer and more secure
https://research.nccgroup.com/2023/04/11/stepping-insyde-system-management-mode/
Contact – Strong Consultancy & Engineering Solutions (Pvt) Ltd.
http://sconengr.com/contact.html
US Military Personnel Targeted by Unsolicited Smartwatches Linked to Data Breaches
https://www.hackread.com/us-military-unsolicited-smartwatches-data-breach/
Exploring Impersonation through the Named Pipe Filesystem Driver | by Jonathan Johnson | May, 2023 | Posts By SpecterOps Team Members
https://posts.specterops.io/exploring-impersonation-through-the-named-pipe-filesystem-driver-15f324dfbaf2
Zero-Day Alert: Apple Releases Patches for Actively Exploited Flaws in iOS, macOS, and Safari
https://thehackernews.com/2023/06/zero-day-alert-apple-releases-patches.html
GitHub - mzakocs/qualcomm_baseband_scripts: Collection of scripts for reversing Qualcomm Hexagon baseband / modem firmware
https://github.com/mzakocs/qualcomm_baseband_scripts
Microsoft Teams users can now chat with any Teams user outside their organization - Microsoft Community Hub
https://techcommunity.microsoft.com/t5/microsoft-teams-blog/microsoft-teams-users-can-now-chat-with-any-teams-user-outside/ba-p/3070832
CODE BLUE 2023 学生スタッフ 応募フォーム
https://forms.gle/Emyd1S79i3zDxyEo7
Kaspersky crimeware report: LockBit and phishing | Securelist
https://securelist.com/crimeware-report-lockbit-switchsymb/110068/
What is Tier Zero — Part 1. Tier Zero is a crucial group of assets… | by Jonas Bülow Knudsen | Jun, 2023 | Posts By SpecterOps Team Members
https://posts.specterops.io/what-is-tier-zero-part-1-e0da9b7cdfca
Researchers released a PoC exploit for CVE-2023-20178 flaw in Cisco AnyConnect SecureSecurity Affairs
https://securityaffairs.com/147744/hacking/cve-2023-20178-poc-exploit-code.html
NSA shares tips on blocking BlackLotus UEFI malware attacks
https://www.bleepingcomputer.com/news/security/nsa-shares-tips-on-blocking-blacklotus-uefi-malware-attacks/
HITB Armory
https://cfp.hackinthebox.org/events/hitb-armory-phuket2023