11/08
11/09
11/10
9 Posts

Hacking the Canon imageCLASS MF742Cdw/MF743Cdw (again) - HAXX.IN

https://haxx.in/posts/hacking-canon-imageclass/
Hacking the Canon imageCLASS MF742Cdw/MF743Cdw (again) - HAXX.IN
7 Posts

Releases · hasherezade/hollows_hunter

https://github.com/hasherezade/hollows_hunter/releases
Releases · hasherezade/hollows_hunter
7 Posts

Releases · hasherezade/pe-sieve

https://github.com/hasherezade/pe-sieve/releases
Releases · hasherezade/pe-sieve
7 Posts

Abusing Slack for Offensive Operations: Part 2 | by Matt Creel | Nov, 2023 | Posts By SpecterOps Team Members

https://posts.specterops.io/abusing-slack-for-offensive-operations-part-2-19fef38cc967
Abusing Slack for Offensive Operations: Part 2 | by Matt Creel | Nov, 2023 | Posts By SpecterOps Team Members
6 Posts

Sandworm Disrupts Power in Ukraine Using a Novel Attack Against Operational Technology | Mandiant

https://www.mandiant.com/resources/blog/sandworm-disrupts-power-ukraine-operational-technology
Sandworm Disrupts Power in Ukraine Using a Novel Attack Against Operational Technology | Mandiant
5 Posts

OpenAI confirms DDoS attacks behind ongoing ChatGPT outages

https://www.bleepingcomputer.com/news/security/openai-confirms-ddos-attacks-behind-ongoing-chatgpt-outages/
OpenAI confirms DDoS attacks behind ongoing ChatGPT outages
5 Posts

MuddyC2Go: New C2 Framework Iranian Hackers Using Against Israel

https://thehackernews.com/2023/11/muddyc2go-new-c2-framework-iranian.html
MuddyC2Go: New C2 Framework Iranian Hackers Using Against Israel
4 Posts

New Malvertising Campaign Uses Fake Windows News Portal to Distribute Malicious Installers

https://thehackernews.com/2023/11/new-malvertising-campaign-uses-fake.html
New Malvertising Campaign Uses Fake Windows News Portal to Distribute Malicious Installers
4 Posts

Industrial and Commercial Bank of China hit by ransomware attack

https://www.bleepingcomputer.com/news/security/industrial-and-commercial-bank-of-china-hit-by-ransomware-attack/
Industrial and Commercial Bank of China hit by ransomware attack
4 Posts

Signal tests usernames that keep your phone number private

https://www.bleepingcomputer.com/news/software/signal-tests-usernames-that-keep-your-phone-number-private/
Signal tests usernames that keep your phone number private
4 Posts

Zero-Day Alert: Lace Tempest Exploits SysAid IT Support Software Vulnerability

https://thehackernews.com/2023/11/zero-day-alert-lace-tempest-exploits.html
Zero-Day Alert: Lace Tempest Exploits SysAid IT Support Software Vulnerability
4 Posts

From Akamai to F5 to NTLM... with love.

https://blog.malicious.group/from-akamai-to-f5-to-ntlm/
From Akamai to F5 to NTLM... with love.
4 Posts

Russian hackers switch to LOTL technique to cause power outage

https://www.bleepingcomputer.com/news/security/russian-hackers-switch-to-lotl-technique-to-cause-power-outage/
Russian hackers switch to LOTL technique to cause power outage
4 Posts

CISA Alerts: High-Severity SLP Vulnerability Now Under Active Exploitation

https://thehackernews.com/2023/11/cisa-alerts-high-severity-slp.html
CISA Alerts: High-Severity SLP Vulnerability Now Under Active Exploitation
3 Posts

Modern-Asian-APT-groups-TTPs_report_eng.pdf

https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2023/11/09055246/Modern-Asian-APT-groups-TTPs_report_eng.pdf
Modern-Asian-APT-groups-TTPs_report_eng.pdf
3 Posts

Malvertiser copies PC news site to deliver infostealer | Malwarebytes

https://www.malwarebytes.com/blog/threat-intelligence/2023/11/malvertiser-copies-pc-news-site-to-deliver-infostealer
Malvertiser copies PC news site to deliver infostealer | Malwarebytes
3 Posts

Russian Sandworm disrupts power in Ukraine with a new OT attack

https://securityaffairs.com/153920/apt/russian-sandworm-ot-attacks.html
Russian Sandworm disrupts power in Ukraine with a new OT attack
3 Posts

Microsoft shares threat intelligence at CYBERWARCON 2023 | Microsoft Security Blog

https://www.microsoft.com/en-us/security/blog/2023/11/09/microsoft-shares-threat-intelligence-at-cyberwarcon-2023/
Microsoft shares threat intelligence at CYBERWARCON 2023 | Microsoft Security Blog
3 Posts

Google ads push malicious CPU-Z app from fake Windows news site

https://www.bleepingcomputer.com/news/security/google-ads-push-malicious-cpu-z-app-from-fake-windows-news-site/
Google ads push malicious CPU-Z app from fake Windows news site
3 Posts

Windows Malware in C# — Using Github as C2 | by Yua Mikanana | Nov, 2023 | Medium

https://medium.com/@yua.mikanana19/windows-malware-in-c-using-github-as-c2-7ae95dfe37bd
Windows Malware in C# — Using Github as C2 | by Yua Mikanana | Nov, 2023 | Medium
3 Posts

Hacking Like Hollywood With Hard-Coded Secrets | Frycos Security Diary

https://frycos.github.io/vulns4free/2023/11/07/hacking-like-hollywood.html
Hacking Like Hollywood With Hard-Coded Secrets | Frycos Security Diary
3 Posts

Fantastic Windows Logon types and Where to Find Credentials in Them

https://www.alteredsecurity.com/post/fantastic-windows-logon-types-and-where-to-find-credentials-in-them
Fantastic Windows Logon types and Where to Find Credentials in Them
3 Posts

SysAid Zero-Day Vulnerability Exploited by Ransomware Group - SecurityWeek

https://www.securityweek.com/sysaid-zero-day-vulnerability-exploited-by-ransomware-group/
SysAid Zero-Day Vulnerability Exploited by Ransomware Group - SecurityWeek
3 Posts

Major ChatGPT Outage Caused by DDoS Attack - SecurityWeek

https://www.securityweek.com/major-chatgpt-outage-caused-by-ddos-attack/
Major ChatGPT Outage Caused by DDoS Attack - SecurityWeek
3 Posts

Abusing Microsoft Access "Linked Table" Feature to Perform NTLM Forced Authentication Attacks - Check Point Research

https://research.checkpoint.com/2023/abusing-microsoft-access-linked-table-feature-to-perform-ntlm-forced-authentication-attacks/
Abusing Microsoft Access "Linked Table" Feature to Perform NTLM Forced Authentication Attacks - Check Point Research