Signal says there is no evidence rumored zero-day bug is real
https://www.bleepingcomputer.com/news/security/signal-says-there-is-no-evidence-rumored-zero-day-bug-is-real/
request-encoding-to-bypass-web-application-firewalls.pdf
https://soroush.me/downloadable/request-encoding-to-bypass-web-application-firewalls.pdf
Pro-Russian Hackers Exploiting Recent WinRAR Vulnerability in New Campaign
https://thehackernews.com/2023/10/pro-russian-hackers-exploiting-recent.html
Cisco warns of new IOS XE zero-day actively exploited in attacks
https://www.bleepingcomputer.com/news/security/cisco-warns-of-new-ios-xe-zero-day-actively-exploited-in-attacks/
2023 Cybersecurity Awareness Month Kit | SANS Security Awareness
https://www.sans.org/u/1s5T
Binance's Smart Chain Exploited in New 'EtherHiding' Malware Campaign
https://thehackernews.com/2023/10/binances-smart-chain-exploited-in-new.html
Windows SQL Server Pre-Auth Overflow Read(CVE-2023-36728) · VictorV的小博客
https://v-v.space/2023/10/16/sqlserver-dos-CVE-2023-36728/
Hackers exploit critical flaw in WordPress Royal Elementor plugin
https://www.bleepingcomputer.com/news/security/hackers-exploit-critical-flaw-in-wordpress-royal-elementor-plugin/
Signal Debunks Zero-Day Vulnerability Reports, Finds No Evidence
https://thehackernews.com/2023/10/signal-debunks-zero-day-vulnerability.html
SANS Orlando Fall 2023 | Cyber Security Training
https://www.sans.org/u/1sPx
SpyNote: Beware of This Android Trojan that Records Audio and Phone Calls
https://thehackernews.com/2023/10/spynote-beware-of-this-android-trojan.html
Russian Sandworm hackers breached 11 Ukrainian telcos since May
https://www.bleepingcomputer.com/news/security/russian-sandworm-hackers-breached-11-ukrainian-telcos-since-may/
Fake 'RedAlert' rocket alert app for Israel installs Android spyware
https://www.bleepingcomputer.com/news/security/fake-redalert-rocket-alert-app-for-israel-installs-android-spyware/
1462951 - Security: Type Confusion in V8 WebAssembly, leading to RCE - chromium
https://crbug.com/1462951
Kansas courts IT systems offline after ‘security incident’
https://www.bleepingcomputer.com/news/security/kansas-courts-it-systems-offline-after-security-incident/
CISA, FBI urge admins to patch Atlassian Confluence immediately
https://www.bleepingcomputer.com/news/security/cisa-fbi-urge-admins-to-patch-atlassian-confluence-immediately/
CVE-2023-38831: WinRAR Bug Or Windows Feature? In-Depth Analysis of Winrar Vulnerability - Alee's Stories
https://aleeamini.com/cve-2023-38831-winrar-bug-or-windows-feature/
Snow can be bypassed with meta and the HTML sanitizer · Issue #151 · LavaMoat/snow · GitHub
https://github.com/LavaMoat/snow/issues/151
Signal Pours Cold Water on Zero-Day Exploit Rumors - SecurityWeek
https://www.securityweek.com/signal-pours-cold-water-on-zero-day-exploit-rumors/
Analysis Report on Lazarus Threat Group's Volgmer and Scout Malwares - ASEC BLOG
https://asec.ahnlab.com/en/57685/
Massive 5K Subscribers Giveaway! - YouTube
http://youtu.be/LzkPVoQIrkE
Researchers Uncover New GPU Side-Channel Vulnerability Leaking Sensitive Data
https://thehackernews.com/2023/09/researchers-uncover-new-gpu-side.html
X-Force Alert: Cybercriminals Zero In on Unsecured Citrix NetScaler Gateways
https://securityonline.info/x-force-alert-cybercriminals-zero-in-on-unsecured-citrix-netscaler-gateways/