GitHub - Maldev-Academy/Christmas
https://github.com/Maldev-Academy/Christmas
Hector Martin: "So some fun stuff was just pre…" - Treehouse Mastodon
https://social.treehouse.systems/@marcan/111655847458820583
Zhuowei Zhang on X: "@oct0xor Is register 0x206140008 in the #iOSTriangulation PPL bypass the gfx-asc's l2c_err_sts? When I read it, it matches the value I get for l2c_err_sts in the "GFX SError" panic log. And 0x206140010/18 matches l2c_err_adr/l2c_err_inf." / X
https://x.com/zhuowei/status/1740504431194722385
1 little known secret of regsvr32.exe, take three | Hexacorn
https://www.hexacorn.com/blog/2023/12/28/1-little-known-secret-of-regsvr32-exe-take-three/
APT_REPORT/group123/20231229_threat_inteligence_report_market.pdf at master · blackorbird/APT_REPORT · GitHub
https://github.com/blackorbird/APT_REPORT/blob/master/group123/20231229_threat_inteligence_report_market.pdf
Albanian Parliament and One Albania Telecom Hit by Cyber Attacks
https://thehackernews.com/2023/12/albanian-parliament-and-one-albania.html
Malware abuses Google OAuth endpoint to ‘revive’ cookies, hijack accounts
https://www.bleepingcomputer.com/news/security/malware-abuses-google-oauth-endpoint-to-revive-cookies-hijack-accounts/
Microsoft Disables MSIX App Installer Protocol Widely Used in Malware Attacks
https://thehackernews.com/2023/12/microsoft-disables-msix-app-installer.html
CERT-UA Uncovers New Malware Wave Distributing OCEANMAP, MASEPIE, STEELHOOK
https://thehackernews.com/2023/12/cert-ua-uncovers-new-malware-wave.html
Russian military hackers target Ukraine with new MASEPIE malware
https://www.bleepingcomputer.com/news/security/russian-military-hackers-target-ukraine-with-new-masepie-malware/
Kimsuky Hackers Deploying AppleSeed, Meterpreter, and TinyNuke in Latest Attacks
https://thehackernews.com/2023/12/kimsuky-hackers-deploying-appleseed.html
Game mod on Steam breached to push password-stealing malware
https://www.bleepingcomputer.com/news/security/game-mod-on-steam-breached-to-push-password-stealing-malware/
aflplusplus-ccc-libafl_emu_(2).pdf
https://fahrplan.events.ccc.de/congress/2023/fahrplan/system/event_attachments/attachments/000/004/435/original/aflplusplus-ccc-libafl_emu_%282%29.pdf
GitHub - horsicq/Detect-It-Easy: Program for determining types of files for Windows, Linux and MacOS.
https://github.com/horsicq/Detect-It-Easy
https://pathonproject.com/zb/?4f05df323ec7e7aa=#GKQ+giAeEFeWOEjPKoCR7HaXImTnocojmdLZGuaQ5go=
https://pathonproject.com/zb/?4f05df323ec7e7aa=#GKQ+giAeEFeWOEjPKoCR7HaXImTnocojmdLZGuaQ5go=
DEF CON 31 - Apples Predicament - NSPredicate Exploitation on macOS and iOS - Austin Emmitt - YouTube
https://www.youtube.com/watch?v=R62sm30G2Jw
CVE-2022-22265: Samsung NPU device driver double free in Android | 0-days In-the-Wild
https://googleprojectzero.github.io/0days-in-the-wild//0day-RCAs/2022/CVE-2022-22265.html
VirusTotal - File - ff35cfed656c0cac5571beae7170a2fec007e75417c1d0c4fd7af4185759ec38
https://www.virustotal.com/gui/file/ff35cfed656c0cac5571beae7170a2fec007e75417c1d0c4fd7af4185759ec38
Europe's Largest Parking App Provider Informs Customers of Data Breach - SecurityWeek
https://www.securityweek.com/europes-largest-parking-app-provider-informs-customers-of-data-breach/
U.S. intelligence officials determined the Chinese spy balloon used a U.S. internet provider to communicate
https://www.nbcnews.com/news/investigations/us-intelligence-officials-determined-chinese-spy-balloon-used-us-inter-rcna131150
Critical Apache OFBiz Vulnerability in Attacker Crosshairs - SecurityWeek
https://www.securityweek.com/critical-apache-ofbiz-vulnerability-in-attacker-crosshairs/
EasyPark discloses data breach that may impact millions of users
https://www.bleepingcomputer.com/news/security/easypark-discloses-data-breach-that-may-impact-millions-of-users/