01/21
01/22
01/23
7 Posts

Building an Exploit for FortiGate Vulnerability… | Bishop Fox

https://bishopfox.com/blog/building-exploit-fortigate-vulnerability-cve-2023-27997
Building an Exploit for FortiGate Vulnerability… | Bishop Fox
6 Posts

OffensiveCon24 :: pretalx

https://cfp.offensivecon.org/offensivecon24/cfp
OffensiveCon24 :: pretalx
5 Posts

FTC Bans InMarket for Selling Precise User Location Without Consent

https://thehackernews.com/2024/01/ftc-bans-inmarket-for-selling-precise.html
FTC Bans InMarket for Selling Precise User Location Without Consent
5 Posts

https://redsiege.com/graphstrike-release

https://redsiege.com/graphstrike-release
5 Posts

Hackers start exploiting critical Atlassian Confluence RCE flaw

https://www.bleepingcomputer.com/news/security/hackers-start-exploiting-critical-atlassian-confluence-rce-flaw/
Hackers start exploiting critical Atlassian Confluence RCE flaw
5 Posts

Apache ActiveMQ Flaw Exploited in New Godzilla Web Shell Attacks

https://thehackernews.com/2024/01/apache-activemq-flaw-exploited-in-new.html
Apache ActiveMQ Flaw Exploited in New Godzilla Web Shell Attacks
4 Posts

Domain Escalation – Backup Operator – Penetration Testing Lab

https://pentestlab.blog/2024/01/22/domain-escalation-backup-operator/
Domain Escalation – Backup Operator – Penetration Testing Lab
4 Posts

Forging signed commits on GitHub

https://iter.ca/post/gh-sig-pwn/
Forging signed commits on GitHub
4 Posts

Hunt | Home

http://Hunt.io
Hunt | Home
4 Posts

NS-STEALER Uses Discord Bots to Exfiltrate Your Secrets from Popular Browsers

https://thehackernews.com/2024/01/ns-stealer-uses-discord-bots-to.html
NS-STEALER Uses Discord Bots to Exfiltrate Your Secrets from Popular Browsers
4 Posts

Trezor support site breach exposes personal data of 66,000 customers

https://www.bleepingcomputer.com/news/security/trezor-support-site-breach-exposes-personal-data-of-66-000-customers/
Trezor support site breach exposes personal data of 66,000 customers
4 Posts

MavenGate Attack Could Let Hackers Hijack Java and Android via Abandoned Libraries

https://thehackernews.com/2024/01/hackers-hijack-popular-java-and-android.html
MavenGate Attack Could Let Hackers Hijack Java and Android via Abandoned Libraries
4 Posts

nuclei-templates/http/cves/2023/CVE-2023-22527.yaml at aba6b4ed2d5ba6a7bba776e10e45e792a8349c3c · projectdiscovery/nuclei-templates · GitHub

https://github.com/projectdiscovery/nuclei-templates/blob/aba6b4ed2d5ba6a7bba776e10e45e792a8349c3c/http/cves/2023/CVE-2023-22527.yaml
nuclei-templates/http/cves/2023/CVE-2023-22527.yaml at aba6b4ed2d5ba6a7bba776e10e45e792a8349c3c · projectdiscovery/nuclei-templates · GitHub
3 Posts

Tietoevry ransomware attack causes outages for Swedish firms, cities

https://www.bleepingcomputer.com/news/security/tietoevry-ransomware-attack-causes-outages-for-swedish-firms-cities/
Tietoevry ransomware attack causes outages for Swedish firms, cities
3 Posts

SEC confirms X account was hacked in SIM swapping attack

https://www.bleepingcomputer.com/news/security/sec-confirms-x-account-was-hacked-in-sim-swapping-attack/
SEC confirms X account was hacked in SIM swapping attack
3 Posts

VirusTotal - File - 0ee6418c9fdaa4f05749d6d95ca9564d134d6a8a77143e60c7805d0fc71b47c6

https://www.virustotal.com/gui/file/0ee6418c9fdaa4f05749d6d95ca9564d134d6a8a77143e60c7805d0fc71b47c6
VirusTotal - File - 0ee6418c9fdaa4f05749d6d95ca9564d134d6a8a77143e60c7805d0fc71b47c6
3 Posts

Releases · hasherezade/pe-bear

https://github.com/hasherezade/pe-bear/releases/
Releases · hasherezade/pe-bear
3 Posts

Yara-Rules/ZharkBot/zharkbot.yar at main · RussianPanda95/Yara-Rules · GitHub

https://github.com/RussianPanda95/Yara-Rules/blob/main/ZharkBot/zharkbot.yar
Yara-Rules/ZharkBot/zharkbot.yar at main · RussianPanda95/Yara-Rules · GitHub
3 Posts

Experts Reveal Details and PoC on Chrome CVE-2024-0517 RCE Flaw

https://securityonline.info/experts-reveal-details-and-poc-on-chrome-cve-2024-0517-rce-flaw/
Experts Reveal Details and PoC on Chrome CVE-2024-0517 RCE Flaw
3 Posts

VirusTotal - File - 3568a5ff424ee5c5c00c8a3551f78d40050c674009b21de437bcc949faaf1f08

https://www.virustotal.com/gui/file/3568a5ff424ee5c5c00c8a3551f78d40050c674009b21de437bcc949faaf1f08
VirusTotal - File - 3568a5ff424ee5c5c00c8a3551f78d40050c674009b21de437bcc949faaf1f08
3 Posts

Chinese Spies Exploited VMware vCenter Server Vulnerability Since 2021 - SecurityWeek

https://www.securityweek.com/chinese-spies-exploited-vmware-vcenter-server-vulnerability-since-2021/
Chinese Spies Exploited VMware vCenter Server Vulnerability Since 2021 - SecurityWeek
3 Posts

France Fines Yahoo 10 Mn Euros Over Cookie Abuses - SecurityWeek

https://www.securityweek.com/france-fines-yahoo-10-mn-euros-over-cookie-abuses/
France Fines Yahoo 10 Mn Euros Over Cookie Abuses - SecurityWeek
3 Posts

North Korean Hackers Weaponize Fake Research to Deliver RokRAT Backdoor

https://thehackernews.com/2024/01/north-korean-hackers-weaponize-fake.html
North Korean Hackers Weaponize Fake Research to Deliver RokRAT Backdoor
3 Posts

New NTLM Hash Leak Attacks Target Outlook, Windows Programs - SecurityWeek

https://www.securityweek.com/new-ntlm-hash-leak-attacks-target-outlook-windows-programs/
New NTLM Hash Leak Attacks Target Outlook, Windows Programs - SecurityWeek
3 Posts

Coldriver threat group targets high-ranking officials to obtain credentials | Malwarebytes

https://www.malwarebytes.com/blog/news/2024/01/coldriver-threat-group-targets-high-ranking-officials-to-obtain-credentials
Coldriver threat group targets high-ranking officials to obtain credentials | Malwarebytes
3 Posts

Ivanti: VPN appliances vulnerable if pushing configs after mitigation

https://www.bleepingcomputer.com/news/security/ivanti-vpn-appliances-vulnerable-if-pushing-configs-after-mitigation/
Ivanti: VPN appliances vulnerable if pushing configs after mitigation
3 Posts

LoanDepot Breach: 16.6 Million People Impacted - SecurityWeek

https://www.securityweek.com/loandepot-breach-16-6-million-people-impacted/
LoanDepot Breach: 16.6 Million People Impacted - SecurityWeek
3 Posts

Owner of Cybercrime Website BreachForums Sentenced to Supervised Release - SecurityWeek

https://www.securityweek.com/owner-of-cybercrime-website-breachforums-sentenced-to-supervised-release/
Owner of Cybercrime Website BreachForums Sentenced to Supervised Release - SecurityWeek
3 Posts

Chinese Espionage Group UNC3886 Found Exploiting CVE-2023-34048 Since Late 2021 | Mandiant

https://www.mandiant.com/resources/blog/chinese-vmware-exploitation-since-2021
Chinese Espionage Group UNC3886 Found Exploiting CVE-2023-34048 Since Late 2021 | Mandiant
3 Posts

Brave to end 'Strict' fingerprinting protection as it breaks websites

https://www.bleepingcomputer.com/news/security/brave-to-end-strict-fingerprinting-protection-as-it-breaks-websites/
Brave to end 'Strict' fingerprinting protection as it breaks websites
3 Posts

Google Chrome V8 CVE-2024-0517 Out-of-Bounds Write Code Execution - Exodus Intelligence

https://blog.exodusintel.com/2024/01/19/google-chrome-v8-cve-2024-0517-out-of-bounds-write-code-execution/
Google Chrome V8 CVE-2024-0517 Out-of-Bounds Write Code Execution - Exodus Intelligence
3 Posts

VirusTotal - File - 82ad9db1b6ccdf6f85bdc034fad8f512547954144f42d6ebae0ef003d9b6e2f2

https://www.virustotal.com/gui/file/82ad9db1b6ccdf6f85bdc034fad8f512547954144f42d6ebae0ef003d9b6e2f2
VirusTotal - File - 82ad9db1b6ccdf6f85bdc034fad8f512547954144f42d6ebae0ef003d9b6e2f2
3 Posts

Boring Mattress Co.

http://boring.co
Boring Mattress Co.
3 Posts

usd-2023-0046 | usd HeroLab

https://herolab.usd.de/security-advisories/usd-2023-0046/
usd-2023-0046 | usd HeroLab
3 Posts

Historic data leak reveals 26 billion records: check what's exposed

https://securityaffairs.com/157933/breaking-news/largest-data-leak-ever.html
Historic data leak reveals 26 billion records: check what's exposed