01/28
01/29
01/30
10 Posts

Buzzing on Christmas Eve: Trigona Ransomware in 3 Hours - The DFIR Report

https://thedfirreport.com/2024/01/29/buzzing-on-christmas-eve-trigona-ransomware-in-3-hours/
Buzzing on Christmas Eve: Trigona Ransomware in 3 Hours - The DFIR Report
8 Posts

2024 SANS SOC Survey

https://survey.sans.org/jfe/form/SV_2cuqQXXCpi4kO7Y
2024 SANS SOC Survey
5 Posts

NSA Admits Secretly Buying Your Internet Browsing Data without Warrants

https://thehackernews.com/2024/01/nsa-admits-secretly-buying-your.html
NSA Admits Secretly Buying Your Internet Browsing Data without Warrants
5 Posts

Malicious PyPI Packages Slip WhiteSnake InfoStealer Malware onto Windows Machines

https://thehackernews.com/2024/01/malicious-pypi-packages-slip-whitesnake.html
Malicious PyPI Packages Slip WhiteSnake InfoStealer Malware onto Windows Machines
5 Posts

Researchers Uncover How Outlook Vulnerability Could Leak Your NTLM Passwords

https://thehackernews.com/2024/01/researchers-uncover-outlook.html
Researchers Uncover How Outlook Vulnerability Could Leak Your NTLM Passwords
5 Posts

Albabat, Kasseika, Kuiper: New Ransomware Gangs Rise with Rust and Golang

https://thehackernews.com/2024/01/albabat-kasseika-kuiper-new-ransomware.html
Albabat, Kasseika, Kuiper: New Ransomware Gangs Rise with Rust and Golang
5 Posts

Ransomware payments drop to record low as victims refuse to pay

https://www.bleepingcomputer.com/news/security/ransomware-payments-drop-to-record-low-as-victims-refuse-to-pay/
Ransomware payments drop to record low as victims refuse to pay
4 Posts

Critical Alert: CVE-2023-6200 Exploits Linux Kernel with Code Execution Risk

https://securityonline.info/critical-alert-cve-2023-6200-exploits-linux-kernel-with-code-execution-risk/
Critical Alert: CVE-2023-6200 Exploits Linux Kernel with Code Execution Risk
4 Posts

DHS employees jailed for stealing data of 200K U.S. govt workers

https://www.bleepingcomputer.com/news/security/dhs-employees-jailed-for-stealing-data-of-200k-us-govt-workers/
DHS employees jailed for stealing data of 200K U.S. govt workers
4 Posts

Office of Public Affairs | One Iranian and Two Canadian Nationals Indicted in Murder-for-Hire Scheme | United States Department of Justice

https://www.justice.gov/opa/pr/one-iranian-and-two-canadian-nationals-indicted-murder-hire-scheme
Office of Public Affairs | One Iranian and Two Canadian Nationals Indicted in Murder-for-Hire Scheme | United States Department of Justice
4 Posts

Data Privacy Week 2024: The Definitive Roundup of Expert Quotes

https://solutionsreview.com/backup-disaster-recovery/data-privacy-week-2024-the-definitive-roundup-of-expert-quotes/
Data Privacy Week 2024: The Definitive Roundup of Expert Quotes
4 Posts

CVE-2024-0517 (Out of Bounds Write in V8)

https://h0meb0dy.me/entry/CVE-2024-0517-Out-of-Bounds-Write-in-V8
CVE-2024-0517 (Out of Bounds Write in V8)
3 Posts

Microsoft says Outlook apps can’t connect to Outlook.com

https://www.bleepingcomputer.com/news/microsoft/microsoft-says-outlook-apps-cant-connect-to-outlookcom/
Microsoft says Outlook apps can’t connect to Outlook.com
3 Posts

Top 10 web hacking techniques of 2023 - PortSwigger

https://portswigger.net/polls/top-10-web-hacking-techniques-2023
Top 10 web hacking techniques of 2023 - PortSwigger
3 Posts

US Aid Office in Colombia Reports Its Facebook Page Was Hacked - SecurityWeek

https://www.securityweek.com/us-aid-office-in-colombia-reports-its-facebook-page-was-hacked/
US Aid Office in Colombia Reports Its Facebook Page Was Hacked - SecurityWeek
3 Posts

AI Companies Will Need to Start Reporting Their Safety Tests to the US Government - SecurityWeek

https://www.securityweek.com/ai-companies-will-need-to-start-reporting-their-safety-tests-to-the-us-government/
AI Companies Will Need to Start Reporting Their Safety Tests to the US Government - SecurityWeek
3 Posts

750m Indian mobile subscribers’ info for sale on dark web • The Register

https://go.theregister.com/feed/www.theregister.com/2024/01/28/asia_tech_news_roundup/
750m Indian mobile subscribers’ info for sale on dark web • The Register
3 Posts

Ivanti Struggling to Hit Zero-Day Patch Release Schedule - SecurityWeek

https://www.securityweek.com/ivanti-struggling-to-hit-zero-day-patch-release-schedule/
Ivanti Struggling to Hit Zero-Day Patch Release Schedule - SecurityWeek
3 Posts

Microsoft Teams hit by second outage in three days

https://www.bleepingcomputer.com/news/microsoft/microsoft-teams-hit-by-second-outage-in-three-days/
Microsoft Teams hit by second outage in three days
3 Posts

FBI: Tech support scams now use couriers to collect victims' money

https://www.bleepingcomputer.com/news/security/fbi-tech-support-scams-now-use-couriers-to-collect-victims-money/
FBI: Tech support scams now use couriers to collect victims' money
3 Posts

Mshta | LOLBAS

https://lolbas-project.github.io/lolbas/Binaries/Mshta/
Mshta | LOLBAS
3 Posts

ZAP – Signing Requests using RSA Keys

https://www.zaproxy.org/blog/2024-01-29-signing-requests-using-rsa-keys/
ZAP – Signing Requests using RSA Keys
3 Posts

Experts detailed Microsoft Outlook flaw that can leak NTLM v2 hashed passwords

https://securityaffairs.com/158287/hacking/microsoft-outlook-bug-leak-ntlm-v2-passwords.html
Experts detailed Microsoft Outlook flaw that can leak NTLM v2 hashed passwords
3 Posts

The malware analyst’s guide to aPLib decompression

https://0xc0decafe.com/malware-analysts-guide-to-aplib-decompression
The malware analyst’s guide to aPLib decompression
3 Posts

45k Jenkins servers exposed to RCE attacks using public exploits

https://www.bleepingcomputer.com/news/security/45k-jenkins-servers-exposed-to-rce-attacks-using-public-exploits/
45k Jenkins servers exposed to RCE attacks using public exploits
3 Posts

Energy giant Schneider Electric hit by Cactus ransomware attack

https://www.bleepingcomputer.com/news/security/energy-giant-schneider-electric-hit-by-cactus-ransomware-attack/
Energy giant Schneider Electric hit by Cactus ransomware attack