10/12
10/13
10/14
6 Posts

Project Zero: An analysis of an in-the-wild iOS Safari WebContent to GPU Process exploit

https://googleprojectzero.blogspot.com/2023/10/an-analysis-of-an-in-the-wild-ios-safari-sandbox-escape.html
Project Zero: An analysis of an in-the-wild iOS Safari WebContent to GPU Process exploit
5 Posts

DarkGate Malware Spreading via Messaging Services Posing as PDF Files

https://thehackernews.com/2023/10/darkgate-malware-spreading-via.html
DarkGate Malware Spreading via Messaging Services Posing as PDF Files
5 Posts

FBI, CISA Warn of Rising AvosLocker Ransomware Attacks Against Critical Infrastructure

https://thehackernews.com/2023/10/fbi-cisa-warn-of-rising-avoslocker.html
FBI, CISA Warn of Rising AvosLocker Ransomware Attacks Against Critical Infrastructure
5 Posts

Researchers Unveil ToddyCat's New Set of Tools for Data Exfiltration

https://thehackernews.com/2023/10/researchers-unveil-toddycats-new-set-of.html
Researchers Unveil ToddyCat's New Set of Tools for Data Exfiltration
5 Posts

New PEAPOD Cyberattack Campaign Targeting Women Political Leaders

https://thehackernews.com/2023/10/new-peapod-cyberattack-campaign.html
New PEAPOD Cyberattack Campaign Targeting Women Political Leaders
4 Posts

23andMe hit with lawsuits after hacker leaks stolen genetics data

https://www.bleepingcomputer.com/news/security/23andme-hit-with-lawsuits-after-hacker-leaks-stolen-genetics-data/
23andMe hit with lawsuits after hacker leaks stolen genetics data
3 Posts

Microsoft plans to kill off NTLM authentication in Windows 11

https://www.bleepingcomputer.com/news/security/microsoft-plans-to-kill-off-ntlm-authentication-in-windows-11/
Microsoft plans to kill off NTLM authentication in Windows 11
3 Posts

Hackers use Binance Smart Chain contracts to store malicious scripts

https://www.bleepingcomputer.com/news/security/hackers-use-binance-smart-chain-contracts-to-store-malicious-scripts/
Hackers use Binance Smart Chain contracts to store malicious scripts
3 Posts

A look at CVE-2023-29360, a beautiful logical LPE vuln | yar-eb

https://big5-sec.github.io/posts/CVE-2023-29360-analysis/
A look at CVE-2023-29360, a beautiful logical LPE vuln | yar-eb
3 Posts

Kwik Trip IT systems outage caused by mysterious ‘network incident’

https://www.bleepingcomputer.com/news/technology/kwik-trip-it-systems-outage-caused-by-mysterious-network-incident/
Kwik Trip IT systems outage caused by mysterious ‘network incident’
3 Posts

AI-enabled bots can solve CAPTCHAs faster than humans - Help Net Security

https://www.helpnetsecurity.com/2023/10/13/traditional-bot-management-solutions/
AI-enabled bots can solve CAPTCHAs faster than humans - Help Net Security
3 Posts

CISA Now Flagging Vulnerabilities, Misconfigurations Exploited by Ransomware - SecurityWeek

https://www.securityweek.com/cisa-now-flagging-vulnerabilities-misconfigurations-exploited-by-ransomware/
CISA Now Flagging Vulnerabilities, Misconfigurations Exploited by Ransomware - SecurityWeek
3 Posts

QBinDiff: A modular diffing toolkit

https://blog.quarkslab.com/qbindiff-a-modular-diffing-toolkit.html
QBinDiff: A modular diffing toolkit
3 Posts

Good Day Ransomware analysis — ShadowStackRE

https://www.shadowstackre.com/analysis/goodday
Good Day Ransomware analysis — ShadowStackRE