09/20

Project Zero: Analyzing a Modern In-the-wild Android Exploit

https://googleprojectzero.blogspot.com/2023/09/analyzing-modern-in-wild-android-exploit.html
Project Zero: Analyzing a Modern In-the-wild Android Exploit

Fake WinRAR proof-of-concept exploit drops VenomRAT malware

https://www.bleepingcomputer.com/news/security/fake-winrar-proof-of-concept-exploit-drops-venomrat-malware/
Fake WinRAR proof-of-concept exploit drops VenomRAT malware

Voting machine companies use cybersecurity stress tests to take on conspiracy theorists | CNN Politics

https://www.cnn.com/2023/09/20/politics/voting-machines-cybersecurity-2024/index.html
Voting machine companies use cybersecurity stress tests to take on conspiracy theorists | CNN Politics

Fresh Wave of Malicious npm Packages Threaten Kubernetes Configs and SSH Keys

https://thehackernews.com/2023/09/fresh-wave-of-malicious-npm-packages.html
Fresh Wave of Malicious npm Packages Threaten Kubernetes Configs and SSH Keys

GitLab Releases Urgent Security Patches for Critical Vulnerability

https://thehackernews.com/2023/09/gitlab-releases-urgent-security-patches.html
GitLab Releases Urgent Security Patches for Critical Vulnerability

Signal Messenger Introduces PQXDH Quantum-Resistant Encryption

https://thehackernews.com/2023/09/signal-messenger-introduces-pqxdh.html
Signal Messenger Introduces PQXDH Quantum-Resistant Encryption

Finnish Authorities Dismantle Notorious PIILOPUOTI Dark Web Drug Marketplace

https://thehackernews.com/2023/09/finnish-authorities-dismantle-notorious.html
Finnish Authorities Dismantle Notorious PIILOPUOTI Dark Web Drug Marketplace

TransUnion denies it was hacked, links leaked data to 3rd party

https://www.bleepingcomputer.com/news/security/transunion-denies-it-was-hacked-links-leaked-data-to-3rd-party/
TransUnion denies it was hacked, links leaked data to 3rd party

Critical Security Flaws Exposed in Nagios XI Network Monitoring Software

https://thehackernews.com/2023/09/critical-security-flaws-exposed-in.html
Critical Security Flaws Exposed in Nagios XI Network Monitoring Software

Trend Micro Releases Urgent Fix for Actively Exploited Critical Security Vulnerability

https://thehackernews.com/2023/09/trend-micro-releases-urgent-fix-for.html
Trend Micro Releases Urgent Fix for Actively Exploited Critical Security Vulnerability

T-Mobile app glitch let users see other people's account info

https://www.bleepingcomputer.com/news/security/t-mobile-app-glitch-let-users-see-other-peoples-account-info/
T-Mobile app glitch let users see other people's account info

Signal adds quantum-resistant encryption to its E2EE messaging protocol

https://www.bleepingcomputer.com/news/security/signal-adds-quantum-resistant-encryption-to-its-e2ee-messaging-protocol/
Signal adds quantum-resistant encryption to its E2EE messaging protocol

Intel Launches New Attestation Service as Part of Trust Authority Portfolio - SecurityWeek

https://www.securityweek.com/intel-launches-new-attestation-service-as-part-of-trust-authority-portfolio/
Intel Launches New Attestation Service as Part of Trust Authority Portfolio - SecurityWeek

The dark web drug marketplace PIILOPUOTI dismantled by Finnish Customs

https://securityaffairs.com/151131/deep-web/finnish-police-seized-piilopuoti-marketplace.html
The dark web drug marketplace PIILOPUOTI dismantled by Finnish Customs

GraphRunner: A Post-Exploitation Toolset for M365 – Beau Bullock & Steve Borosh – Wild West Hackin' Fest

https://wildwesthackinfest.com/event/graphrunner-a-post-exploitation-toolset-for-m365/
GraphRunner: A Post-Exploitation Toolset for M365 – Beau Bullock & Steve Borosh – Wild West Hackin' Fest

Release YARA v4.4.0-rc1 · VirusTotal/yara · GitHub

https://github.com/VirusTotal/yara/releases/tag/v4.4.0
Release YARA v4.4.0-rc1 · VirusTotal/yara · GitHub

SANS Digital Forensics and Incident Response - YouTube

https://youtube.com/@SANSForensics?feature=shared
SANS Digital Forensics and Incident Response - YouTube

UK Minister Warns Meta Over End-to-End Encryption - SecurityWeek

https://www.securityweek.com/uk-minister-warns-meta-over-end-to-end-encryption/
UK Minister Warns Meta Over End-to-End Encryption - SecurityWeek

Remote Code Execution in Tutanota Desktop due to Code Flaw | Sonar

https://www.sonarsource.com/blog/remote-code-execution-in-tutanota-desktop-due-to-code-flaw/
Remote Code Execution in Tutanota Desktop due to Code Flaw | Sonar

CrowdStrike Achieves 100% in MITRE Engenuity ATT&CK Evaluations: Enterprise

https://www.crowdstrike.com/blog/crowdstrike-achieves-100-percent-mitre-engenuity-attack-enterprise-evaluation/
CrowdStrike Achieves 100% in MITRE Engenuity ATT&CK Evaluations: Enterprise

Trend Micro addresses actively exploited zero-day in Apex One

https://securityaffairs.com/151095/hacking/trend-micro-apex-one-zero-day-flaw.html
Trend Micro addresses actively exploited zero-day in Apex One

P2PInfect botnet activity surges 600x with stealthier malware variants

https://www.bleepingcomputer.com/news/security/p2pinfect-botnet-activity-surges-600x-with-stealthier-malware-variants/
P2PInfect botnet activity surges 600x with stealthier malware variants

Behind the Scenes of BBTok: Analyzing a Banker’s Server Side Components - Check Point Research

https://research.checkpoint.com/2023/behind-the-scenes-of-bbtok-analyzing-a-bankers-server-side-components/
Behind the Scenes of BBTok: Analyzing a Banker’s Server Side Components - Check Point Research

Tor-Based Drug Marketplace Piilopuoti Shut Down by Law Enforcement - SecurityWeek

https://www.securityweek.com/tor-based-drug-marketplace-piilopuoti-shut-down-by-law-enforcement/
Tor-Based Drug Marketplace Piilopuoti Shut Down by Law Enforcement - SecurityWeek

Program | Australian Cyber Conference Melbourne 2023

https://cyberconference.com.au/melbourne/program
Program | Australian Cyber Conference Melbourne 2023

Atos Unify Vulnerabilities Could Allow Hackers to Backdoor Systems - SecurityWeek

https://www.securityweek.com/atos-unify-vulnerabilities-could-allow-hackers-to-backdoor-systems/
Atos Unify Vulnerabilities Could Allow Hackers to Backdoor Systems - SecurityWeek

Quick, Draw!

https://quickdraw.withgoogle.com/
Quick, Draw!

International Criminal Court hit with a cyber attack

https://securityaffairs.com/151115/hacking/international-criminal-court-cyber-attack.html
International Criminal Court hit with a cyber attack

Free Download Manager releases script to check for Linux malware

https://www.bleepingcomputer.com/news/security/free-download-manager-releases-script-to-check-for-linux-malware/
Free Download Manager releases script to check for Linux malware