REcon - Home
https://recon.cx/2024/
GitHub - zodiacon/QuickAsm
https://github.com/zodiacon/QuickAsm
Victory! Ring Announces It Will No Longer Facilitate Police Requests for Footage from Users | Electronic Frontier Foundation
https://www.eff.org/deeplinks/2024/01/ring-announces-it-will-no-longer-facilitate-police-requests-footage-users
NSPX30: A sophisticated AitM-enabled implant evolving since 2005
https://www.welivesecurity.com/en/eset-research/nspx30-sophisticated-aitm-enabled-implant-evolving-since-2005/
HPE: Russian hackers breached its security team’s email accounts
https://www.bleepingcomputer.com/news/security/hpe-russian-hackers-breached-its-security-teams-email-accounts/
China-backed Hackers Hijack Software Updates to Implant "NSPX30" Spyware
https://thehackernews.com/2024/01/china-backed-hackers-hijack-software.html
CVE-2023-40547 - avoid incorrectly trusting HTTP headers · rhboot/shim@0226b56 · GitHub
https://github.com/rhboot/shim/commit/0226b56513b2b8bd5fd281bce77c40c9bf07c66d
Hackers target WordPress database plugin active on 1 million sites
https://www.bleepingcomputer.com/news/security/hackers-target-wordpress-database-plugin-active-on-1-million-sites/
Over 5,300 GitLab servers exposed to zero-click account takeover attacks
https://www.bleepingcomputer.com/news/security/over-5-300-gitlab-servers-exposed-to-zero-click-account-takeover-attacks/
GitHub - RomanRybachek/CVE-2024-20698: Analysis of the vulnerability
https://github.com/RomanRybachek/CVE-2024-20698
New CherryLoader Malware Mimics CherryTree to Deploy PrivEsc Exploits
https://thehackernews.com/2024/01/new-cherryloader-malware-mimics.html
SystemBC Malware's C2 Server Analysis Exposes Payload Delivery Tricks
https://thehackernews.com/2024/01/systembc-malwares-c2-server-analysis.html
Cisco warns of critical RCE flaw in communications software
https://www.bleepingcomputer.com/news/security/cisco-warns-of-critical-rce-flaw-in-communications-software/