Microsoft Warns of North Korean Attacks Exploiting JetBrains TeamCity Flaw
https://thehackernews.com/2023/10/microsoft-warns-of-north-korean-attacks.html
Casio discloses data breach impacting customers in 149 countries
https://www.bleepingcomputer.com/news/security/casio-discloses-data-breach-impacting-customers-in-149-countries/
Google TAG Detects State-Backed Threat Actors Exploiting WinRAR Flaw
https://thehackernews.com/2023/10/google-tag-detects-state-backed-threat.html
Fake KeePass site uses Google Ads and Punycode to push malware
https://www.bleepingcomputer.com/news/security/fake-keepass-site-uses-google-ads-and-punycode-to-push-malware/
Sophisticated MATA Framework Strikes Eastern European Oil and Gas Companies
https://thehackernews.com/2023/10/sophisticated-mata-framework-strikes.html
Shodan Internet Exposure Dashboard
https://exposure.shodan.io/#/US
OFRAK: unpack, modify, and repack binaries
https://ofrak.com/
Iranian hackers lurked in Middle Eastern govt network for 8 months
https://www.bleepingcomputer.com/news/security/iranian-hackers-lurked-in-middle-eastern-govt-network-for-8-months/
Google Play Protect Introduces Real-Time Code-Level Scanning for Android Malware
https://thehackernews.com/2023/10/google-play-protect-introduces-real.html
Special Offer for Asia Pacific Students | SANS Online Training
https://www.sans.org/u/1tjx
Analysis CETX0157_9066954.js (MD5: 8A35DE89810575572D12018E6A8C519F) Malicious activity - Interactive analysis ANY.RUN
https://app.any.run/tasks/ffa0d924-a4a7-43b8-99e7-1a27f3293113
GitHub - M01N-Team/HeaderLessPE
https://github.com/M01N-Team/HeaderLessPE
Office of Public Affairs | Justice Department Announces Court-Authorized Action to Disrupt Illicit Revenue Generation Efforts of Democratic People’s Republic of Korea Information Technology Workers | United States Department of Justice
https://www.justice.gov/opa/pr/justice-department-announces-court-authorized-action-disrupt-illicit-revenue-generation
mXSS vulnerability in TinyMCE undo/redo, getContent API, resetContent API, and Autosave plugin · Advisory · tinymce/tinymce · GitHub
https://github.com/tinymce/tinymce/security/advisories/GHSA-v65r-p3vv-jjfv
Number of Cisco Devices Hacked via Unpatched Vulnerability Increases to 40,000 - SecurityWeek
https://www.securityweek.com/number-of-cisco-devices-hacked-via-unpatched-vulnerability-increases-to-40000/
India targets Microsoft, Amazon tech support scammers in nationwide crackdown
https://www.bleepingcomputer.com/news/security/india-targets-microsoft-amazon-tech-support-scammers-in-nationwide-crackdown/
global-perspective-of-the-sidewinder-apt.pdf
https://cdn-cybersecurity.att.com/docs/global-perspective-of-the-sidewinder-apt.pdf
GHSL-2023-180: Type confusion in Chrome’s renderer - CVE-2023-4069 | GitHub Security Lab
https://securitylab.github.com/advisories/GHSL-2023-180_Chromium/
GitHub - WKL-Sec/HiddenDesktop: HVNC for Cobalt Strike
https://github.com/WKL-Sec/HiddenDesktop
ZAP – ZAPit
https://www.zaproxy.org/blog/2023-10-18-zapit/
BlackCat ransomware uses new ‘Munchkin’ Linux VM in stealthy attacks
https://www.bleepingcomputer.com/news/security/blackcat-ransomware-uses-new-munchkin-linux-vm-in-stealthy-attacks/
US Government Releases Anti-Phishing Guidance - SecurityWeek
https://www.securityweek.com/us-government-releases-anti-phishing-guidance/
GitHub - franc-pentest/ldeep: In-depth ldap enumeration utility
https://github.com/franc-pentest/ldeep
Analysis 12375031183.zip (MD5: 984CEB721947FED1C977C79A2CDA2E8A) Malicious activity - Interactive analysis ANY.RUN
https://app.any.run/tasks/4c9948bb-9599-4fd7-9d30-c2e2ed685741/
Introducing GraphRunner: A Post-Exploitation Toolset for Microsoft 365 - Black Hills Information Security
https://www.blackhillsinfosec.com/introducing-graphrunner/
GitHub - CyberSecurityUP/OSCE3-Complete-Guide: OSWE, OSEP, OSED, OSEE
https://github.com/CyberSecurityUP/OSCE3-Complete-Guide
Crambus: New Campaign Targets Middle Eastern Government | Symantec Enterprise Blogs
https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/crambus-middle-east-government
Multiple North Korean threat actors exploiting the TeamCity CVE-2023-42793 vulnerability | Microsoft Security Blog
https://www.microsoft.com/en-us/security/blog/2023/10/18/multiple-north-korean-threat-actors-exploiting-the-teamcity-cve-2023-42793-vulnerability/
WhatsApp gets support for multiple accounts on the same phone
https://www.bleepingcomputer.com/news/software/whatsapp-gets-support-for-multiple-accounts-on-the-same-phone/