09/25

From ScreenConnect to Hive Ransomware in 61 hours - The DFIR Report

https://thedfirreport.com/2023/09/25/from-screenconnect-to-hive-ransomware-in-61-hours/
From ScreenConnect to Hive Ransomware in 61 hours - The DFIR Report

EvilBamboo Targets Mobile Devices in Multi-year Campaign | Volexity

https://www.volexity.com/blog/2023/09/22/evilbamboo-targets-mobile-devices-in-multi-year-campaign/
EvilBamboo Targets Mobile Devices in Multi-year Campaign | Volexity

Call for Papers – ShmooCon

https://www.shmoocon.org/call-for-papers/
Call for Papers – ShmooCon

From Watering Hole to Spyware: EvilBamboo Targets Tibetans, Uyghurs, and Taiwanese

https://thehackernews.com/2023/09/from-watering-hole-to-spyware.html
From Watering Hole to Spyware: EvilBamboo Targets Tibetans, Uyghurs, and Taiwanese

Xenomorph Android malware now targets U.S. banks and crypto wallets

https://www.bleepingcomputer.com/news/security/xenomorph-android-malware-now-targets-us-banks-and-crypto-wallets/
Xenomorph Android malware now targets U.S. banks and crypto wallets

Windows Hook Events – Pavel Yosifovich

https://scorpiosoftware.net/2023/09/24/windows-hook-events/
Windows Hook Events – Pavel Yosifovich

Ukrainian Military Targeted in Phishing Campaign Leveraging Drone Manuals

https://thehackernews.com/2023/09/ukrainian-military-targeted-in-phishing.html
Ukrainian Military Targeted in Phishing Campaign Leveraging Drone Manuals

Google is retiring its Gmail Basic HTML view in January 2024

https://www.bleepingcomputer.com/news/security/google-is-retiring-its-gmail-basic-html-view-in-january-2024/
Google is retiring its Gmail Basic HTML view in January 2024

BORN Ontario child registry data breach affects 3.4 million people

https://www.bleepingcomputer.com/news/security/born-ontario-child-registry-data-breach-affects-34-million-people/
BORN Ontario child registry data breach affects 3.4 million people

How the Cult of the Dead Cow plans to save the internet | CyberScoop

https://cyberscoop.com/cult-of-the-dead-cow-veilid/
How the Cult of the Dead Cow plans to save the internet | CyberScoop

Mixin Network suspends operations following $200 million hack

https://www.bleepingcomputer.com/news/security/mixin-network-suspends-operations-following-200-million-hack/
Mixin Network suspends operations following $200 million hack

GitHub - embee-research/revengerat-config-extractor: config extractor for revenge rat

https://github.com/embee-research/revengerat-config-extractor
GitHub - embee-research/revengerat-config-extractor: config extractor for revenge rat

WTS API Wasteland — (Remote) Token Impersonation In Another Level | by Omri Baso | Sep, 2023 | Medium

https://medium.com/@omribaso/wts-api-wasteland-remote-token-impersonation-in-another-level-a23965e8227e
WTS API Wasteland — (Remote) Token Impersonation In Another Level | by Omri Baso | Sep, 2023 | Medium

Release BinDiff 8 Open Source · google/bindiff · GitHub

https://github.com/google/bindiff/releases/tag/v8
Release BinDiff 8 Open Source · google/bindiff · GitHub

Active-Directory-trust-attacks/presentations/BSidesCPH2022 at main · martinsohn/Active-Directory-trust-attacks · GitHub

https://github.com/martinsohn/Active-Directory-trust-attacks/tree/main/presentations/BSidesCPH2022
Active-Directory-trust-attacks/presentations/BSidesCPH2022 at main · martinsohn/Active-Directory-trust-attacks · GitHub

How Could a Self-XSS end with $$$$ | by Mahmoud Hamed | Sep, 2023 | Medium

https://7odamoo.medium.com/how-could-self-xss-end-with-b8342555cf3e
How Could a Self-XSS end with $$$$ | by Mahmoud Hamed | Sep, 2023 | Medium

900 US Schools Impacted by MOVEit Hack at National Student Clearinghouse - SecurityWeek

https://www.securityweek.com/900-us-schools-impacted-by-moveit-hack-at-national-student-clearinghouse/
900 US Schools Impacted by MOVEit Hack at National Student Clearinghouse - SecurityWeek

In-the-Wild Exploitation Expected for Critical TeamCity Flaw Allowing Server Takeover - SecurityWeek

https://www.securityweek.com/in-the-wild-exploitation-expected-for-critical-teamcity-flaw-allowing-server-takeover/
In-the-Wild Exploitation Expected for Critical TeamCity Flaw Allowing Server Takeover - SecurityWeek

Trend Micro Patches Exploited Zero-Day Vulnerability in Endpoint Security Products - SecurityWeek

https://www.securityweek.com/trend-micro-patches-exploited-zero-day-vulnerability-in-endpoint-security-products/
Trend Micro Patches Exploited Zero-Day Vulnerability in Endpoint Security Products - SecurityWeek

Stealthy APT Gelsemium Seen Targeting Southeast Asian Government - SecurityWeek

https://www.securityweek.com/stealthy-apt-gelsemium-seen-targeting-southeast-asian-government/
Stealthy APT Gelsemium Seen Targeting Southeast Asian Government - SecurityWeek

‘Who Benefits?’ Inside the EU’s Fight over Scanning for Child Sex Content | Balkan Insight

https://balkaninsight.com/2023/09/25/who-benefits-inside-the-eus-fight-over-scanning-for-child-sex-content/
‘Who Benefits?’ Inside the EU’s Fight over Scanning for Child Sex Content | Balkan Insight

City of Dallas Details Ransomware Attack Impact, Costs  - SecurityWeek

https://www.securityweek.com/city-of-dallas-details-ransomware-attack-impact-costs/
City of Dallas Details Ransomware Attack Impact, Costs  - SecurityWeek

EDRaser - Tool For Remotely Deleting Access Logs, Windows Event Logs, Databases, And Other Files

http://www.kitploit.com/2023/09/edraser-tool-for-remotely-deleting.html
EDRaser - Tool For Remotely Deleting Access Logs, Windows Event Logs, Databases, And Other Files

Predator Spyware Delivered to iOS, Android Devices via Zero-Days, MitM Attacks - SecurityWeek

https://www.securityweek.com/predator-spyware-delivered-to-ios-android-devices-via-zero-days-mitm-attacks/
Predator Spyware Delivered to iOS, Android Devices via Zero-Days, MitM Attacks - SecurityWeek

Fantilator Page

https://onlyfans.web.cern.ch
Fantilator Page