New Flaws in Fingerprint Sensors Let Attackers Bypass Windows Hello Login
https://thehackernews.com/2023/11/new-flaws-in-fingerprint-sensors-let.html
Hacktivists breach U.S. nuclear research lab, steal employee data
https://www.bleepingcomputer.com/news/security/hacktivists-breach-us-nuclear-research-lab-steal-employee-data/
Windows Internal Part 1 - Processes - YouTube
https://buff.ly/3R89lXc
North Korean Hackers Pose as Job Recruiters and Seekers in Malware Campaigns
https://thehackernews.com/2023/11/north-korean-hackers-pose-as-job.html
ClearFake Campaign Expands to Deliver Atomic Stealer on Mac Systems
https://thehackernews.com/2023/11/clearfake-campaign-expands-to-deliver.html
Remember, Remember the 22nd of November
http://www.damninteresting.com/remember-remember-the-22nd-of-november/
LockBit Ransomware Exploiting Critical Citrix Bleed Vulnerability to Break In
https://thehackernews.com/2023/11/lockbit-ransomware-exploiting-critical.html
Hacking Employers and Seeking Employment: Two Job-Related Campaigns Bear Hallmarks of North Korean Threat Actors
https://unit42.paloaltonetworks.com/two-campaigns-by-north-korea-bad-actors-target-job-hunters/
New botnet malware exploits two zero-days to infect NVRs and routers
https://www.bleepingcomputer.com/news/security/new-botnet-malware-exploits-two-zero-days-to-infect-nvrs-and-routers/
Microsoft: Lazarus hackers breach CyberLink in supply chain attack
https://www.bleepingcomputer.com/news/security/microsoft-lazarus-hackers-breach-cyberlink-in-supply-chain-attack/
MalwareBazaar | NetSupport
https://bazaar.abuse.ch/browse/tag/NetSupport/
GitHub - synacktiv/Mindmaps
https://github.com/synacktiv/Mindmaps
Exploit for Critical Windows Defender Bypass Goes Public
https://www.darkreading.com/vulnerabilities-threats/exploit-critical-windows-defender-bypass-public
Welltok data breach exposes data of 8.5 million US patients
https://www.bleepingcomputer.com/news/security/welltok-data-breach-exposes-data-of-85-million-us-patients/
Kansas courts confirm data theft, ransom demand after cyberattack
https://www.bleepingcomputer.com/news/security/kansas-courts-confirm-data-theft-ransom-demand-after-cyberattack/
Kansas Officials Blame 5-Week Disruption of Court System on ‘Sophisticated Foreign Cyberattack’ - SecurityWeek
https://www.securityweek.com/kansas-officials-blame-5-week-disruption-of-court-system-on-sophisticated-foreign-cyberattack/
Open-source Blender project battling DDoS attacks since Saturday
https://www.bleepingcomputer.com/news/security/open-source-blender-project-battling-ddos-attacks-since-saturday/
Microsoft Offers Up to $20,000 for Vulnerabilities in Defender Products - SecurityWeek
https://www.securityweek.com/microsoft-offers-up-to-20000-for-vulnerabilities-in-defender-products/
CISOs can marry security and business success - Help Net Security
https://www.helpnetsecurity.com/2023/11/22/cisos-business-security-goals/
SiegedSec hacktivist group hacked Idaho National Laboratory (INL)
https://securityaffairs.com/154598/hacktivism/siegedsec-hacked-idaho-national-laboratory.html
ETW internals for security research and forensics | Trail of Bits Blog
https://blog.trailofbits.com/2023/11/22/etw-internals-for-security-research-and-forensics/
Thanking the vulnerability research community with NCSC... - NCSC.GOV.UK
https://www.ncsc.gov.uk/blog-post/thanking-vulnerability-research-community-ncsc-challenge-coins
CERT-EU - Critical vulnerability in FortiSIEM
https://www.cert.europa.eu/publications/security-advisories/2023-092/
Windows Hello Fingerprint Authentication Bypassed on Popular Laptops - SecurityWeek
https://www.securityweek.com/windows-hello-fingerprint-authentication-bypassed-on-popular-laptops/
XXE, You Can Depend On Me (OpenCMS CVE-2023-42344 and Friends)
https://labs.watchtowr.com/xxe-you-can-depend-on-me-opencms/