Apple fixes two new iOS zero-days exploited in attacks on iPhones
https://www.bleepingcomputer.com/news/apple/apple-fixes-two-new-ios-zero-days-exploited-in-attacks-on-iphones/
Hijacking & Spoofing Context Menu Options | mr.d0x
https://mrd0x.com/sentinelone-persistence-via-menu-context/
Office of Public Affairs | Chinese National Residing in California Arrested for Theft of Artificial Intelligence-Related Trade Secrets from Google | United States Department of Justice
https://www.justice.gov/opa/pr/chinese-national-residing-california-arrested-theft-artificial-intelligence-related-trade
NSA shares zero-trust guidance to limit adversaries on the network
https://www.bleepingcomputer.com/news/security/nsa-shares-zero-trust-guidance-to-limit-adversaries-on-the-network/
CVE-2024-27198 and CVE-2024-27199: JetBrains TeamCity Multiple Authentication Bypass Vulnerabilities (FIXED) | Rapid7 Blog
https://www.rapid7.com/blog/post/2024/03/04/etr-cve-2024-27198-and-cve-2024-27199-jetbrains-teamcity-multiple-authentication-bypass-vulnerabilities-fixed/
SANS Security West San Diego 2024 | Cyber Security Training
https://www.sans.org/u/1uXt
Delving into Dalvik: A Look Into DEX Files | Mandiant
https://www.mandiant.com/resources/blog/dalvik-look-into-dex-files
Update your iPhones and iPads now: Apple patches security vulnerabilities in iOS and iPadOS | Malwarebytes
https://www.malwarebytes.com/blog/news/2024/03/update-your-iphones-and-ipads-now-apple-patches-security-vulnerabilities-in-ios-and-ipados
New APT Group 'Lotus Bane' Behind Recent Attacks on Vietnam's Financial Entities
https://thehackernews.com/2024/03/new-apt-group-lotus-bane-behind-recent.html
VMware Patches Critical ESXi Sandbox Escape Flaws - SecurityWeek
https://www.securityweek.com/vmware-patches-critical-esxi-sandbox-escape-flaws/
About the security content of iOS 17.4 and iPadOS 17.4 - Apple Support
https://support.apple.com/en-us/HT214081
Duvel says it has "more than enough" beer after ransomware attack
https://www.bleepingcomputer.com/news/security/duvel-says-it-has-more-than-enough-beer-after-ransomware-attack/
Pikabot Malware Campaign by TA577 - 06.03.24c2 list:https://70.34.223.164: - Pastebin.com
https://pastebin.com/H0zap0mv
Analysis 9923.png (MD5: F6DA6E194C429FE815F7D592688F3009) Malicious activity - Interactive analysis ANY.RUN
https://app.any.run/tasks/23d5e351-6992-4567-a06c-560a5b421500
Hackers impersonate U.S. government agencies in BEC attacks
https://www.bleepingcomputer.com/news/security/hackers-impersonate-us-government-agencies-in-bec-attacks/
Active Directory - Pyt... | HideAndSec
https://hideandsec.sh/books/cheatsheets-82c/page/active-directory-python-edition
HHS Aiding Organizations Hit by Change Healthcare Cyberattack - SecurityWeek
https://www.securityweek.com/hhs-aiding-organizations-hit-by-change-healthcare-cyberattack/
Hackers Exploit Misconfigured YARN, Docker, Confluence, Redis Servers for Crypto Mining
https://thehackernews.com/2024/03/hackers-exploit-misconfigured-yarn.html
American Express Data Breach Exposed Customer Data - SecurityWeek
https://www.securityweek.com/american-express-discloses-data-breach/
Exit Scam: BlackCat Ransomware Group Vanishes After $22 Million Payout
https://thehackernews.com/2024/03/exit-scam-blackcat-ransomware-group.html
LockBit 3.0’s Bungled Comeback Highlights the Undying Risk of Torrent-Based (P2P) Data Leakage
https://securityaffairs.com/160054/cyber-crime/lockbit-3-0s-comeback-torrent-based-p2p-data-leakage.html
Urgent: Apple Issues Critical Updates for Actively Exploited Zero-Day Flaws
https://thehackernews.com/2024/03/urgent-apple-issues-critical-updates.html
Watch out, GhostSec and Stourmous groups jointly conducting ransomware attacks
https://securityaffairs.com/160066/cyber-crime/ghostsec-stourmous-ransomware.html
Hackers abuse QEMU to covertly tunnel network traffic in cyberattacks
https://www.bleepingcomputer.com/news/security/hackers-abuse-qemu-to-covertly-tunnel-network-traffic-in-cyberattacks/
BlackCat Ransomware Group Implodes After Apparent $22M Payment by Change Healthcare – Krebs on Security
https://krebsonsecurity.com/2024/03/blackcat-ransomware-group-implodes-after-apparent-22m-ransom-payment-by-change-healthcare/
GitHub - bojanisc/quicmap: quicmap is a simple yet quic (!) QUIC protocol scanner
https://github.com/bojanisc/quicmap
Analysing Windows Malware on Apple Mac M1/M2 ( Windows 11 ARM ) - Part I
https://int0xcc.svbtle.com/apple-m2-or-windows-arm-for-malware-analysis
Hacked WordPress sites use visitors' browsers to hack other sites
https://www.bleepingcomputer.com/news/security/hacked-wordpress-sites-use-visitors-browsers-to-hack-other-sites/
Hackers target Docker, Hadoop, Redis, Confluence with new Golang malware
https://www.bleepingcomputer.com/news/security/hackers-target-docker-hadoop-redis-confluence-with-new-golang-malware/
Active Directory | HideAndSec
https://hideandsec.sh/books/cheatsheets-82c/page/active-directory
Canada's anti-money laundering agency offline after cyberattack
https://www.bleepingcomputer.com/news/security/canadas-anti-money-laundering-agency-offline-after-cyberattack/
VMware Issues Security Patches for ESXi, Workstation, and Fusion Flaws
https://thehackernews.com/2024/03/vmware-issues-security-patches-for-esxi.html