Building an Exploit for FortiGate Vulnerability… | Bishop Fox
https://bishopfox.com/blog/building-exploit-fortigate-vulnerability-cve-2023-27997
OffensiveCon24 :: pretalx
https://cfp.offensivecon.org/offensivecon24/cfp
FTC Bans InMarket for Selling Precise User Location Without Consent
https://thehackernews.com/2024/01/ftc-bans-inmarket-for-selling-precise.html
https://redsiege.com/graphstrike-release
https://redsiege.com/graphstrike-release
Hackers start exploiting critical Atlassian Confluence RCE flaw
https://www.bleepingcomputer.com/news/security/hackers-start-exploiting-critical-atlassian-confluence-rce-flaw/
Apache ActiveMQ Flaw Exploited in New Godzilla Web Shell Attacks
https://thehackernews.com/2024/01/apache-activemq-flaw-exploited-in-new.html
Domain Escalation – Backup Operator – Penetration Testing Lab
https://pentestlab.blog/2024/01/22/domain-escalation-backup-operator/
Forging signed commits on GitHub
https://iter.ca/post/gh-sig-pwn/
Hunt | Home
http://Hunt.io
NS-STEALER Uses Discord Bots to Exfiltrate Your Secrets from Popular Browsers
https://thehackernews.com/2024/01/ns-stealer-uses-discord-bots-to.html
Step-by-Step Guide: Sending Windows Event Logs to Graylog With NXLOG - YouTube
https://youtu.be/a3LbQow7i4Q?si=68cUKHuJ301HzZty
Trezor support site breach exposes personal data of 66,000 customers
https://www.bleepingcomputer.com/news/security/trezor-support-site-breach-exposes-personal-data-of-66-000-customers/
MavenGate Attack Could Let Hackers Hijack Java and Android via Abandoned Libraries
https://thehackernews.com/2024/01/hackers-hijack-popular-java-and-android.html
nuclei-templates/http/cves/2023/CVE-2023-22527.yaml at aba6b4ed2d5ba6a7bba776e10e45e792a8349c3c · projectdiscovery/nuclei-templates · GitHub
https://github.com/projectdiscovery/nuclei-templates/blob/aba6b4ed2d5ba6a7bba776e10e45e792a8349c3c/http/cves/2023/CVE-2023-22527.yaml
Tietoevry ransomware attack causes outages for Swedish firms, cities
https://www.bleepingcomputer.com/news/security/tietoevry-ransomware-attack-causes-outages-for-swedish-firms-cities/
SEC confirms X account was hacked in SIM swapping attack
https://www.bleepingcomputer.com/news/security/sec-confirms-x-account-was-hacked-in-sim-swapping-attack/
VirusTotal - File - 0ee6418c9fdaa4f05749d6d95ca9564d134d6a8a77143e60c7805d0fc71b47c6
https://www.virustotal.com/gui/file/0ee6418c9fdaa4f05749d6d95ca9564d134d6a8a77143e60c7805d0fc71b47c6
Releases · hasherezade/pe-bear
https://github.com/hasherezade/pe-bear/releases/
Yara-Rules/ZharkBot/zharkbot.yar at main · RussianPanda95/Yara-Rules · GitHub
https://github.com/RussianPanda95/Yara-Rules/blob/main/ZharkBot/zharkbot.yar
Distribution of SmokeLoader Targeting Ukrainian Government and Companies - ASEC BLOG
https://asec.ahnlab.com/en/60703/
Experts Reveal Details and PoC on Chrome CVE-2024-0517 RCE Flaw
https://securityonline.info/experts-reveal-details-and-poc-on-chrome-cve-2024-0517-rce-flaw/
VirusTotal - File - 3568a5ff424ee5c5c00c8a3551f78d40050c674009b21de437bcc949faaf1f08
https://www.virustotal.com/gui/file/3568a5ff424ee5c5c00c8a3551f78d40050c674009b21de437bcc949faaf1f08
Chinese Spies Exploited VMware vCenter Server Vulnerability Since 2021 - SecurityWeek
https://www.securityweek.com/chinese-spies-exploited-vmware-vcenter-server-vulnerability-since-2021/
France Fines Yahoo 10 Mn Euros Over Cookie Abuses - SecurityWeek
https://www.securityweek.com/france-fines-yahoo-10-mn-euros-over-cookie-abuses/
North Korean Hackers Weaponize Fake Research to Deliver RokRAT Backdoor
https://thehackernews.com/2024/01/north-korean-hackers-weaponize-fake.html
New NTLM Hash Leak Attacks Target Outlook, Windows Programs - SecurityWeek
https://www.securityweek.com/new-ntlm-hash-leak-attacks-target-outlook-windows-programs/
Coldriver threat group targets high-ranking officials to obtain credentials | Malwarebytes
https://www.malwarebytes.com/blog/news/2024/01/coldriver-threat-group-targets-high-ranking-officials-to-obtain-credentials
Ivanti: VPN appliances vulnerable if pushing configs after mitigation
https://www.bleepingcomputer.com/news/security/ivanti-vpn-appliances-vulnerable-if-pushing-configs-after-mitigation/
LoanDepot Breach: 16.6 Million People Impacted - SecurityWeek
https://www.securityweek.com/loandepot-breach-16-6-million-people-impacted/
Owner of Cybercrime Website BreachForums Sentenced to Supervised Release - SecurityWeek
https://www.securityweek.com/owner-of-cybercrime-website-breachforums-sentenced-to-supervised-release/
Chinese Espionage Group UNC3886 Found Exploiting CVE-2023-34048 Since Late 2021 | Mandiant
https://www.mandiant.com/resources/blog/chinese-vmware-exploitation-since-2021
Brave to end 'Strict' fingerprinting protection as it breaks websites
https://www.bleepingcomputer.com/news/security/brave-to-end-strict-fingerprinting-protection-as-it-breaks-websites/
Google Chrome V8 CVE-2024-0517 Out-of-Bounds Write Code Execution - Exodus Intelligence
https://blog.exodusintel.com/2024/01/19/google-chrome-v8-cve-2024-0517-out-of-bounds-write-code-execution/
[2401.06133] The possibility of making \$138,000 from shredded banknote pieces using computer vision
https://arxiv.org/abs/2401.06133![[2401.06133] The possibility of making \$138,000 from shredded banknote pieces using computer vision](/image/screenshot/6ad3e279027e6c1f3b24b9f72542c428.png)
VirusTotal - File - 82ad9db1b6ccdf6f85bdc034fad8f512547954144f42d6ebae0ef003d9b6e2f2
https://www.virustotal.com/gui/file/82ad9db1b6ccdf6f85bdc034fad8f512547954144f42d6ebae0ef003d9b6e2f2
I Tried 100+ Hacking Tools. These Are The Best! - YouTube
https://youtu.be/4WqymtvuWZQ
Boring Mattress Co.
http://boring.co
usd-2023-0046 | usd HeroLab
https://herolab.usd.de/security-advisories/usd-2023-0046/
Historic data leak reveals 26 billion records: check what's exposed
https://securityaffairs.com/157933/breaking-news/largest-data-leak-ever.html
The DFIR Report on X: "🚨Active Exploitation🚨 ➡️CVE-2023-22527 - Confluence template injection ➡️Executed whoami ➡️Source IP: 45.61.137[.]90 ➡️UA: Opera/9.89.(Windows 95; sv-FI) Presto/2.9.181 Version/12.00 ➡️PCAP, full POST URI and more available in our AllIntel service https://t.co/RXnF6Mx8fB https://t.co/9zmlwuDzcg" / X
https://twitter.com/TheDFIRReport/status/1749066611678466205![The DFIR Report on X: "🚨Active Exploitation🚨 ➡️CVE-2023-22527 - Confluence template injection ➡️Executed whoami ➡️Source IP: 45.61.137[.]90 ➡️UA: Opera/9.89.(Windows 95; sv-FI) Presto/2.9.181 Version/12.00 ➡️PCAP, full POST URI and more available in our AllIntel service https://t.co/RXnF6Mx8fB https://t.co/9zmlwuDzcg" / X](/image/screenshot/a7d9aebfcfe83f1a0516e5683ca01d70.png)