Critical Forminator plugin flaw impacts over 300k WordPress sites
https://www.bleepingcomputer.com/news/security/critical-forminator-plugin-flaw-impacts-over-300k-wordpress-sites/
CVE-2024-20356: Jailbreaking a Cisco appliance to run DOOM - LRQA Nettitude Labs
https://labs.nettitude.com/blog/cve-2024-20356-jailbreaking-a-cisco-appliance-to-run-doom/
New RedLine Stealer Variant Disguised as Game Cheats Using Lua Bytecode for Stealth
https://thehackernews.com/2024/04/new-redline-stealer-variant-disguised.html
Analysis of VirtualBox CVE-2023-21987 and CVE-2023-21991
https://qriousec.github.io/post/vbox-pwn2own-2023/
GitHub - amalshaji/portr: Open source ngrok alternative designed for teams
https://github.com/amalshaji/portr
Abusing WSUS with MITM to perform ADCS ESC8 attack | Belette Timorée’s blog post
https://j4s0nmo0n.github.io/belettetimoree.github.io/2023-12-01-WSUS-to-ESC8.html
Bypassing EDRs With EDR-Preloading
https://malwaretech.com/2024/02/bypassing-edrs-with-edr-preload.html
Androxgh0st Malware Compromises Servers Worldwide for Botnet Attack
https://www.hackread.com/androxgh0st-malware-servers-botnets-attacks/
2404.08144.pdf
https://arxiv.org/pdf/2404.08144.pdf
CrushFTP warns users to patch exploited zero-day “immediately”
https://www.bleepingcomputer.com/news/security/crushftp-warns-users-to-patch-exploited-zero-day-immediately/
https://www.reddit.com/r/ReverseEngineering/comments/1c9bdmh/black_hat_asia_2024_conference_slides/
https://www.reddit.com/r/ReverseEngineering/comments/1c9bdmh/black_hat_asia_2024_conference_slides/
Week 16 – 2024 – This Week In 4n6
https://thisweekin4n6.com/2024/04/21/week-16-2024/
Interactive Online Malware Analysis Sandbox - ANY.RUN
https://app.any.run/tasks/09f80415-3f8f-4b08-8edc-837ae3625e44