Researcher Reveals New Techniques to Bypass Cloudflare's Firewall and DDoS Protection
https://thehackernews.com/2023/10/researcher-reveal-new-technique-to.html
KubeHound: Identifying attack paths in Kubernetes clusters | Datadog Security Labs
https://securitylabs.datadoghq.com/articles/kubehound-identify-kubernetes-attack-paths/
仕事探し | Indeed (インディード)
http://indeed.com
Qualcomm Releases Patch for 3 new Zero-Days Under Active Exploitation
https://thehackernews.com/2023/10/qualcomm-releases-patch-for-3-new-zero.html
EvilProxy uses indeed.com open redirect for Microsoft 365 phishing
https://www.bleepingcomputer.com/news/security/evilproxy-uses-indeedcom-open-redirect-for-microsoft-365-phishing/
Warning: PyTorch Models Vulnerable to Remote Code Execution via ShellTorch
https://thehackernews.com/2023/10/warning-pytorch-models-vulnerable-to.html
2023 Cybersecurity Awareness Month Kit | SANS Security Awareness
https://www.sans.org/u/1s5T
Over 3 Dozen Data-Stealing Malicious npm Packages Found Targeting Developers
https://thehackernews.com/2023/10/over-3-dozen-data-stealing-malicious.html
SANS Cyber Security East: October 2023
https://www.sans.org/u/1sOO
(Research) Exploiting HTTP Parsers Inconsistencies
https://rafa.hashnode.dev/exploiting-http-parsers-inconsistencies
ShellTorch flaws expose AI servers to code execution attacks
https://www.bleepingcomputer.com/news/security/shelltorch-flaws-expose-ai-servers-to-code-execution-attacks/
Android's October 2023 Security Updates Patch Two Exploited Vulnerabilities - SecurityWeek
https://www.securityweek.com/androids-october-2023-update-patches-two-exploited-vulnerabilities/
MalwareBazaar | SHA256 4c4a5c51dc3e8cf6b2a3f6fd54008593002daa180fe73489e93da5e0d152be4f
https://bazaar.abuse.ch/sample/4c4a5c51dc3e8cf6b2a3f6fd54008593002daa180fe73489e93da5e0d152be4f/
Arm Issues Patch for Mali GPU Kernel Driver Vulnerability Amidst Ongoing Exploitation
https://thehackernews.com/2023/10/arm-issues-patch-for-mali-gpu-kernel.html
Exploiting the iPhone 4, Part 1: Gaining Entry | Phillip Tennen
https://axleos.com/exploiting-the-iphone-4-part-1-gaining-entry/
Cobalt Strike Aggressor Callbacks – Rasta Mouse
https://rastamouse.me/cobalt-strike-aggressor-callbacks/
Home Grown Red Team: LNK Phishing Revisited In 2023 | by assume-breach | Oct, 2023 | Medium
https://link.medium.com/oFs1JVueADb
Android October security update fixes zero-days exploited in attacks
https://www.bleepingcomputer.com/news/security/android-october-security-update-fixes-zero-days-exploited-in-attacks/
Life expectancy in U.S. is falling amid surges in chronic illness - Washington Post
https://www.washingtonpost.com/health/interactive/2023/american-life-expectancy-dropping/
Motel One Discloses Ransomware Attack Impacting Customer Data - SecurityWeek
https://www.securityweek.com/motel-one-discloses-ransomware-attack-impacting-customer-data/
APT34 Deploys Phishing Attack With New Malware
https://www.trendmicro.com/en_us/research/23/i/apt34-deploys-phishing-attack-with-new-malware.html
Microsoft Defender no longer flags Tor Browser as malware
https://www.bleepingcomputer.com/news/security/microsoft-defender-no-longer-flags-tor-browser-as-malware/
Analysis MyCV.doc (MD5: 64F8DFD92EB972483FEAF3137EC06D3C) Malicious activity - Interactive analysis ANY.RUN
https://app.any.run/tasks/f23fdb7f-40fb-48e1-a5bf-03d6dc7ef744/
New 'Looney Tunables' Linux bug gives root on major distros
https://www.bleepingcomputer.com/news/security/new-looney-tunables-linux-bug-gives-root-on-major-distros/
sigconverter.io - sigma rule converter
http://sigconverter.io
European Telecommunications Standards Institute Discloses Data Breach - SecurityWeek
https://www.securityweek.com/european-telecommunications-standards-institute-discloses-data-breach/
Analysis https://bing.com/ck/a?!&&p=e366bf6972b12b72JmltdHM9MTY5NTY4NjQwMCZpZ3VpZD0xZTQzNThiOS1jYzA3LTY2MmEtMjQyNi00YjI5Y2QwZTY3MDgmaW5zaWQ9NTAwMw&onnKHUNrPP&ptn=3&MieQzzYgKA&hsh=3&fclid=1e4358b9-cc07-662a-2426-4b29cd0e6708&JXDBxKHnUV&u=a1aHR0cDovL2Zlcm5hbmRhbmFkYWwuY29tLmJyLw#&&yygpKSi20tfPK80uLigvr8o1y8rOMDDKMis3ydYrrEw01ysq1a8yizRMNdYHAA==?YXBlcmV6QHBhbmRvcmEubmV0 Malicious activity - Interactive analysis ANY.RUN
https://app.any.run/tasks/9a1e55eb-05c5-499b-b995-d5ef0e275394?utm_content=linktotask&utm_term=031023%2F