Lazarus Group Impersonates Recruiter from Meta to Target Spanish Aerospace Firm
https://thehackernews.com/2023/09/lazarus-group-impersonates-recruiter.html
Cisco Warns of Vulnerability in IOS and IOS XE Software After Exploitation Attempts
https://thehackernews.com/2023/09/cisco-warns-of-vulnerability-in-ios-and.html
WS_FTP Server Critical Vulnerability - (September 2023) - Progress Community
https://community.progress.com/s/article/WS-FTP-Server-Critical-Vulnerability-September-2023
Cybercriminals Using New ASMCrypt Malware Loader to Fly Under the Radar
https://thehackernews.com/2023/09/cybercriminals-using-new-asmcrypt.html
Lazarus hackers breach aerospace firm with new LightlessCan malware
https://www.bleepingcomputer.com/news/security/lazarus-hackers-breach-aerospace-firm-with-new-lightlesscan-malware/
Flare-On 10
https://flare-on10.ctfd.io/register
ZDI-23-1469 | Zero Day Initiative
https://www.zerodayinitiative.com/advisories/ZDI-23-1469/
NIST Publishes Final Version of 800-82r3 OT Security Guide - SecurityWeek
https://www.securityweek.com/nist-publishes-final-version-of-800-82r3-ot-security-guide/
Microsoft's AI-Powered Bing Chat Ads May Lead Users to Malware-Distributing Sites
https://thehackernews.com/2023/09/microsofts-ai-powered-bing-chat-ads-may.html
Discord is investigating cause of ‘You have been blocked’ errors
https://www.bleepingcomputer.com/news/security/discord-is-investigating-cause-of-you-have-been-blocked-errors/
Bing Chat responses infiltrated by ads pushing malware
https://www.bleepingcomputer.com/news/security/bing-chat-responses-infiltrated-by-ads-pushing-malware/
Exploit released for Microsoft SharePoint Server auth bypass flaw
https://www.bleepingcomputer.com/news/security/exploit-released-for-microsoft-sharepoint-server-auth-bypass-flaw/
Log in to Twitter / X
https://twitter.com/i/broadcasts/1RDGlleEWLmGL
Progress Software Releases Urgent Hotfixes for Multiple Security Flaws in WS_FTP Server
https://thehackernews.com/2023/09/progress-software-releases-urgent.html
Progress warns of maximum severity WS_FTP Server vulnerability
https://www.bleepingcomputer.com/news/security/progress-warns-of-maximum-severity-ws-ftp-server-vulnerability/
GitHub - 0xsyr0/vx-underground-wordlist: Wordlist to crack .zip-file password
https://github.com/0xsyr0/vx-underground-wordlist
Good-bye ESNI, hello ECH!
https://blog.cloudflare.com/encrypted-client-hello/
ANY.RUN - Interactive Online Malware Sandbox
http://ANY.RUN
I Tested an HDMI Adapter That Demands Your Location, Browsing Data, Photos, and Spams You with Ads
https://www.404media.co/i-tested-an-hdmi-adapter-that-demands-your-location-browsing-data-photos-and-spams-you-with-ads/
Misconfigured WBSC server leaks thousands of passports
https://securityaffairs.com/151666/data-breach/misconfigured-wbsc-server-leaks-thousands-of-passports.html
VirusTotal - IP address - 193.33.195.86
https://www.virustotal.com/gui/ip-address/193.33.195.86/detection
AWS Using MadPot Decoy System to Disrupt APTs, Botnets - SecurityWeek
https://www.securityweek.com/aws-using-madpot-decoy-system-to-disrupt-apts-botnets/
OSINT is A State of Mind
http://dlvr.it/Swl7dl
Lazarus luring employees with trojanized coding challenges: The case of a Spanish aerospace company
https://www.welivesecurity.com/en/eset-research/lazarus-luring-employees-trojanized-coding-challenges-case-spanish-aerospace-company/
Google’s Bard conversations turn up in search results
https://www.malwarebytes.com/blog/news/2023/09/googles-bard-conversations-turn-up-in-search-results
FBI Warns Organizations of Dual Ransomware, Wiper Attacks - SecurityWeek
https://www.securityweek.com/fbi-warns-organizations-of-dual-ransomware-wiper-attacks/
Johnson Controls Hit by Ransomware - SecurityWeek
https://www.securityweek.com/johnson-controls-hit-by-ransomware/