Kelvin Security hacking group leader arrested in Spain
https://www.bleepingcomputer.com/news/security/kelvin-security-hacking-group-leader-arrested-in-spain/
Analysis x5cJrhrsrhdfrhse.OOOOOCCCCCXXXXX (MD5: 259DF394526F5C05D21E776353706201) Malicious activity - Interactive analysis ANY.RUN
https://app.any.run/tasks/ef141de6-b1a7-424b-ae48-1a3582208c54
SpyLoan Scandal: 18 Malicious Loan Apps Defraud Millions of Android Users
https://thehackernews.com/2023/12/spyloan-scandal-18-malicious-loan-apps.html
Toyota warns customers of data breach exposing personal, financial info
https://www.bleepingcomputer.com/news/security/toyota-warns-customers-of-data-breach-exposing-personal-financial-info/
Researchers Unmask Sandman APT's Hidden Link to China-Based KEYPLUG Backdoor
https://thehackernews.com/2023/12/researchers-unmask-sandman-apts-hidden.html
New PoolParty Process Injection Techniques Outsmart Top EDR Solutions
https://thehackernews.com/2023/12/new-poolparty-process-injection.html
TrustedSec Impede
http://impede.ai
Lazarus Group Using Log4j Exploits to Deploy Remote Access Trojans
https://thehackernews.com/2023/12/lazarus-group-using-log4j-exploits-to.html
WordPress 6.4.2 fixed a Remote Code Execution (RCE) flaw
https://securityaffairs.com/155573/security/wordpress-6-4-2-rce.html
Hiding in the Clouds: Abusing Azure DevOps Services to Bypass Microsoft Sentinel Analytic Rules - Black Hat Europe 2023 | Briefings Schedule
https://www.blackhat.com/eu-23/briefings/schedule/index.html#hiding-in-the-clouds-abusing-azure-devops-services-to-bypass-microsoft-sentinel-analytic-rules-35362
Apple emergency updates fix recent zero-days on older iPhones
https://www.bleepingcomputer.com/news/apple/apple-emergency-updates-fix-recent-zero-days-on-older-iphones/
Counter-Strike 2 HTML injection bug exposes players’ IP addresses
https://www.bleepingcomputer.com/news/security/counter-strike-2-html-injection-bug-exposes-players-ip-addresses/
MalwareBazaar | Browse Checking your browser
https://bazaar.abuse.ch/browse/tag/Pikabot/
Craig Rowland - Agentless Linux Security on X: "More anti-forensics on Linux: export HISTFILE=/dev/null export HISTSIZE=0 export HISTFILESIZE=0 These can be seen on any process under /proc/PID/environ with: cat /proc/PID/environ | tr '\0' '\n' What are your favorite anti-forensics on Linux? https://t.co/bQjG2XkVhK" / X
https://twitter.com/CraigHRowland/status/1734258969043181705
Page not found · GitHub · GitHub
https://github.com/NameNami/OTP-Bot
50K WordPress sites exposed to RCE attacks by critical bug in backup plugin
https://www.bleepingcomputer.com/news/security/50k-wordpress-sites-exposed-to-rce-attacks-by-critical-bug-in-backup-plugin/
Apache Patches Critical RCE Vulnerability in Struts 2 - SecurityWeek
https://www.securityweek.com/apache-patches-critical-rce-vulnerability-in-struts-2/
Outside the Comfort Zone: Why a Change in Mindset is Crucial for Better Network Security - SecurityWeek
https://www.securityweek.com/outside-the-comfort-zone-why-a-change-in-mindset-is-crucial-for-better-network-security/
Ghidra Basics - Manual Shellcode Analysis and C2 Extraction
https://embee-research.ghost.io/ghidra-basics-shellcode-analysis/
CISA and ENISA signed a Working Arrangement to enhance cooperation
https://securityaffairs.com/155606/security/cisa-enisa-signed-working-arrangement.html
Introducing wrapwrap: using PHP filters to wrap a file with a prefix and suffix
https://www.ambionics.io/blog/wrapwrap-php-filters-suffix
Cold storage giant Americold discloses data breach after April malware attack
https://www.bleepingcomputer.com/news/security/cold-storage-giant-americold-discloses-data-breach-after-april-malware-attack/
Law Enforcement Reportedly Behind Takedown of BlackCat/Alphv Ransomware Website - SecurityWeek
https://www.securityweek.com/law-enforcement-reportedly-behind-takedown-of-blackcat-alphv-ransomware-website/
China’s cyber intrusions have hit ports and utilities, officials say - The Washington Post
https://www.washingtonpost.com/technology/2023/12/11/china-hacking-hawaii-pacific-taiwan-conflict/
GitHub - GuallaGang508/SMSBotBypass: otp bot
https://github.com/GuallaGang508/SMSBotBypass
Daily Cyber Briefing- Monday 11th December / X
https://twitter.com/i/broadcasts/1djxXNzpDeBGZ
"Amazon got hacked" messages are a false alarm | Malwarebytes
https://www.malwarebytes.com/blog/news/2023/12/amazon-got-hacked-messages-are-a-false-alarm
Cybercriminals continue targeting open remote access products - Help Net Security
https://www.helpnetsecurity.com/2023/12/11/remote-access-malicious-actions/
Lazarus hackers drop new RAT malware using 2-year-old Log4j bug
https://www.bleepingcomputer.com/news/security/lazarus-hackers-drop-new-rat-malware-using-2-year-old-log4j-bug/
Webinar — Psychology of Social Engineering: Decoding the Mind of a Cyber Attacker
https://thehackernews.com/2023/12/webinar-psychology-of-social.html
GitHub - Oriyomi12/otp-bot
https://github.com/Oriyomi12/otp-bot
Top White House Cyber Aide Says Recent Iran Hack on Water System Is Call to Tighten Cybersecurity - SecurityWeek
https://www.securityweek.com/top-white-house-cyber-aide-says-recent-iran-hack-on-water-wystem-is-call-to-tighten-cybersecurity/
CVE-2023-50428: Bitcoin Core Client Vulnerability
https://securityonline.info/cve-2023-50428-bitcoin-core-client-vulnerability/