GitHub - SpiralBL0CK/Remote-buffer-overflow-over-wifi_stack-in-wpa_supplicant-binary-in-android-11-platform-samsung-a20e: Remote buffer overflow over wifi_stack in wpa_supplicant binary in android 11, platform:samsung a20e, stock options so like works out of the box
https://github.com/SpiralBL0CK/Remote-buffer-overflow-over-wifi_stack-in-wpa_supplicant-binary-in-android-11-platform-samsung-a20e
20240212_NP_SGDSN_VIGINUM_PORTAL-KOMBAT-NETWORK_ENG_VF.pdf
https://www.sgdsn.gouv.fr/files/files/20240212_NP_SGDSN_VIGINUM_PORTAL-KOMBAT-NETWORK_ENG_VF.pdf
Bank of America warns customers of data breach after vendor hack
https://www.bleepingcomputer.com/news/security/bank-of-america-warns-customers-of-data-breach-after-vendor-hack/
SensePost | Sim hijacking
https://sensepost.com/blog/2022/sim-hijacking/
Ivanti Vulnerability Exploited to Install 'DSLog' Backdoor on 670+ IT Infrastructures
https://thehackernews.com/2024/02/ivanti-vulnerability-exploited-to.html
Glupteba Botnet Evades Detection with Undocumented UEFI Bootkit
https://thehackernews.com/2024/02/glupteba-botnet-evades-detection-with.html
Microsoft February 2024 Patch Tuesday fixes 2 zero-days, 73 flaws
https://www.bleepingcomputer.com/news/microsoft/microsoft-february-2024-patch-tuesday-fixes-2-zero-days-74-flaws/
FCC orders telecom carriers to report PII data breaches within 30 days
https://www.bleepingcomputer.com/news/security/fcc-orders-telecom-carriers-to-report-pii-data-breaches-within-30-days/
PikaBot Resurfaces with Streamlined Code and Deceptive Tactics
https://thehackernews.com/2024/02/pikabot-resurfaces-with-streamlined.html
TrustedSec | Offensive Lab Environments (Without the Suck)
https://trustedsec.com/blog/offensive-lab-environments-without-the-suck
Diving Into Glupteba's UEFI Bootkit
https://unit42.paloaltonetworks.com/glupteba-malware-uefi-bootkit/
Bumblebee malware attacks are back after 4-month break
https://www.bleepingcomputer.com/news/security/bumblebee-malware-attacks-are-back-after-4-month-break/
Hackers steal $290 million in crypto from PlayDapp gaming platform
https://www.bleepingcomputer.com/news/security/hackers-steal-290-million-in-crypto-from-playdapp-gaming-platform/
How to perform a Complete Process Hollowing - Red Team SNCF
https://red-team-sncf.github.io/complete-process-hollowing.html
Sysinternals - Windows Sysinternals | Microsoft Docs
http://sysinternals.com
Special Offer for Asia Pacific Students | SANS Online Training
https://www.sans.org/u/1ulp
Unpack RedLine stealer using dnSpyEx - Part 3 - Securityinbits
https://www.securityinbits.com/malware-analysis/unpack-redline-stealer-using-dnspyex-part-3/
SANS 2024 in Orlando, FL | Cyber Security Training
https://www.sans.org/u/1uvE
Alert: CISA Warns of Active 'Roundcube' Email Attacks - Patch Now
https://thehackernews.com/2024/02/alert-cisa-warns-of-active-roundcube.html
Hackers used new Windows Defender zero-day to drop DarkMe malware
https://www.bleepingcomputer.com/news/security/hackers-used-new-windows-defender-zero-day-to-drop-darkme-malware/
Ransomware Attack Knocks 100 Romanian Hospitals Offline - SecurityWeek
https://www.securityweek.com/ransomware-attack-knocks-100-romanian-hospitals-offline/
Bank of America Customer Data Stolen in Data Breach - SecurityWeek
https://www.securityweek.com/bank-of-america-informing-customers-of-data-breach/
Security Update Guide - Microsoft
https://msft.it/60119yPTS
200,000 Facebook Marketplace user records leaked on hacking forum
https://www.bleepingcomputer.com/news/security/200-000-facebook-marketplace-user-records-leaked-on-hacking-forum/
AIS247: AI Security Essentials for Business Leaders | SANS Institute
https://www.sans.org/u/1ukG
MalwareBazaar | SHA256 dfb857049a7acaa04874ff42bd7539ba6d779a1f59fd49e2f247e7236d244cb9 (Formbook)
https://bazaar.abuse.ch/sample/dfb857049a7acaa04874ff42bd7539ba6d779a1f59fd49e2f247e7236d244cb9/
FBI seizes Warzone RAT infrastructure, arrests malware vendor
https://www.bleepingcomputer.com/news/security/fbi-seizes-warzone-rat-infrastructure-arrests-malware-vendor/
Active Directory Enumeration for Red Teams - MDSec
https://www.mdsec.co.uk/2024/02/active-directory-enumeration-for-red-teams/
Ransomfeed - Third Quarter Report 2023 is out!
https://securityaffairs.com/159074/reports/ransomfeed-q3-report-2023-ransomware.html
Microsoft Confirms Windows Exploits Bypassing Security Features - SecurityWeek
https://www.securityweek.com/microsoft-confirms-windows-exploits-bypassing-security-features/
Integris Health says data breach impacts 2.4 million patients
https://www.bleepingcomputer.com/news/security/integris-health-says-data-breach-impacts-24-million-patients/
CISA Warns of Roundcube Webmail Vulnerability Exploitation - SecurityWeek
https://www.securityweek.com/cisa-warns-of-roundcube-webmail-vulnerability-exploitation/
JFK Airport Taxi Hackers Sentenced to Prison - SecurityWeek
https://www.securityweek.com/jfk-airport-taxi-hackers-sentenced-to-prison/
ICS Patch Tuesday: Siemens Addresses 270 Vulnerabilities - SecurityWeek
https://www.securityweek.com/ics-patch-tuesday-siemens-addresses-270-vulnerabilities/
GitHub - danialhalo/SqliSniper: Advanced Time-based Blind SQL Injection fuzzer for HTTP Headers
https://github.com/danialhalo/SqliSniper
Hunter-Killer Malware Tactic Growing: Stealthy, Persistent and Aggressive - SecurityWeek
https://www.securityweek.com/hunter-killer-malware-tactic-growing-stealthy-persistent-and-aggressive/
GreyNoise Community Open Forum VI
https://buff.ly/49fVchA
Ivanti Vulnerability Exploited to Deliver New 'DSLog' Backdoor - SecurityWeek
https://www.securityweek.com/ivanti-vulnerability-exploited-to-deliver-new-dslog-backdoor/
Analysis rooming list.exe (MD5: E45F8DA605A7A6742E1EC14351ED6ED8) Malicious activity - Interactive analysis ANY.RUN
https://app.any.run/tasks/fabbe6dd-0c25-4c3a-90ec-46e829d131ca
CVE-2024-21412: Water Hydra Targets Traders with Microsoft Defender SmartScreen Zero-Day
https://www.trendmicro.com/en_us/research/24/b/cve202421412-water-hydra-targets-traders-with-windows-defender-s.html
Adobe Security Bulletin
https://helpx.adobe.com/security/products/acrobat/apsb24-07.html
DarkGate: Opening Gates for Financially Motivated Threat Actors
https://blog.eclecticiq.com/darkgate-opening-gates-for-financially-motivated-threat-actors
Ongoing Microsoft Azure account hijacking campaign targets executives
https://www.bleepingcomputer.com/news/security/ongoing-microsoft-azure-account-hijacking-campaign-targets-executives/
Bypassing EDRs With EDR-Preloading
https://malwaretech.com/2024/02/bypassing-edrs-with-edr-preload.html
ja4/technical_details/JA4T.md at main · FoxIO-LLC/ja4 · GitHub
https://github.com/FoxIO-LLC/ja4/blob/main/technical_details/JA4T.md