04/22
04/23
04/24
8 Posts

UnitedHealth confirms it paid ransomware gang to stop data leak

https://www.bleepingcomputer.com/news/security/unitedhealth-confirms-it-paid-ransomware-gang-to-stop-data-leak/
UnitedHealth confirms it paid ransomware gang to stop data leak
5 Posts

German Authorities Issue Arrest Warrants for Three Suspected Chinese Spies

https://thehackernews.com/2024/04/german-authorities-issue-arrest.html
German Authorities Issue Arrest Warrants for Three Suspected Chinese Spies
5 Posts

BlackBerry MDM Has Some Authentication Flaws | Into the Abyss

https://emptynebuli.github.io/tooling/2024/04/22/blackberryMDM.html
BlackBerry MDM Has Some Authentication Flaws | Into the Abyss
5 Posts

Apache Cordova App Harness Targeted in Dependency Confusion Attack

https://thehackernews.com/2024/04/apache-cordova-app-harness-targeted-in.html
Apache Cordova App Harness Targeted in Dependency Confusion Attack
5 Posts

GitHub - airbus-cert/CVE-2024-4040: Scanner for CVE-2024-4040

https://github.com/airbus-cert/CVE-2024-4040
GitHub - airbus-cert/CVE-2024-4040: Scanner for CVE-2024-4040
4 Posts

DPRK hacking groups breach South Korean defense contractors

https://www.bleepingcomputer.com/news/security/dprk-hacking-groups-breach-south-korean-defense-contractors/
DPRK hacking groups breach South Korean defense contractors
4 Posts

Analyzing Forest Blizzard’s custom post-compromise tool for exploiting CVE-2022-38028 to obtain credentials | Microsoft Security Blog

https://www.microsoft.com/en-us/security/blog/2024/04/22/analyzing-forest-blizzards-custom-post-compromise-tool-for-exploiting-cve-2022-38028-to-obtain-credentials/
Analyzing Forest Blizzard’s custom post-compromise tool for exploiting CVE-2022-38028 to obtain credentials | Microsoft Security Blog
4 Posts

Hackers hijack antivirus updates to drop GuptiMiner malware

https://www.bleepingcomputer.com/news/security/hackers-hijack-antivirus-updates-to-drop-guptiminer-malware/
Hackers hijack antivirus updates to drop GuptiMiner malware
3 Posts

Police Chiefs Call for Solutions to Access Encrypted Data in Serious Crime Cases

https://thehackernews.com/2024/04/police-chiefs-call-for-solutions-to.html
Police Chiefs Call for Solutions to Access Encrypted Data in Serious Crime Cases
3 Posts

Russian Cyberspies Deliver 'GooseEgg' Malware to Government Organizations  - SecurityWeek

https://www.securityweek.com/russian-cyberspies-deliver-gooseegg-malware-to-government-organizations/
Russian Cyberspies Deliver 'GooseEgg' Malware to Government Organizations  - SecurityWeek
3 Posts

Grafana backend sql injection affected all version | fdvoid0's blog

https://fdlucifer.github.io/2024/04/22/grafana-sql-injection/
Grafana backend sql injection affected all version | fdvoid0's blog
3 Posts

Sha256 Algorithm Explained

http://sha256algorithm.com
Sha256 Algorithm Explained
3 Posts

MITRE Hacked by State-Sponsored Group via Ivanti Zero-Days - SecurityWeek

https://www.securityweek.com/mitre-hacked-by-state-sponsored-group-via-ivanti-zero-days/
MITRE Hacked by State-Sponsored Group via Ivanti Zero-Days - SecurityWeek
3 Posts

Microsoft DRM Hack Could Allow Movie Downloads From Popular Streaming Services - SecurityWeek

https://www.securityweek.com/microsoft-drm-hacking-could-allow-movie-downloads-from-popular-streaming-services/
Microsoft DRM Hack Could Allow Movie Downloads From Popular Streaming Services - SecurityWeek
3 Posts

Trusted Signing is in Public Preview - Microsoft Community Hub

https://techcommunity.microsoft.com/t5/security-compliance-and-identity/trusted-signing-is-in-public-preview/ba-p/4103457
Trusted Signing is in Public Preview - Microsoft Community Hub
3 Posts

Synlab Italia suspends operations following ransomware attack

https://www.bleepingcomputer.com/news/security/synlab-italia-suspends-operations-following-ransomware-attack/
Synlab Italia suspends operations following ransomware attack
3 Posts

Russia's APT28 Exploited Windows Print Spooler Flaw to Deploy 'GooseEgg' Malware

https://thehackernews.com/2024/04/russias-apt28-exploited-windows-print.html
Russia's APT28 Exploited Windows Print Spooler Flaw to Deploy 'GooseEgg' Malware
3 Posts

UnitedHealth Says Patient Data Exposed in Change Healthcare Cyberattack - SecurityWeek

https://www.securityweek.com/unitedhealth-says-patient-data-exposed-in-change-healthcare-cyberattack/
UnitedHealth Says Patient Data Exposed in Change Healthcare Cyberattack - SecurityWeek
3 Posts

Preventing Ransomware Attacks at Scale

https://hbr.org/2024/04/preventing-ransomware-attacks-at-scale
Preventing Ransomware Attacks at Scale
3 Posts

Abusing WSUS with MITM to perform ADCS ESC8 attack | Belette Timorée’s blog post

https://j4s0nmo0n.github.io/belettetimoree.github.io/2023-12-01-WSUS-to-ESC8.html
Abusing WSUS with MITM to perform ADCS ESC8 attack | Belette Timorée’s blog post
3 Posts

U.S. Imposes Visa Restrictions on 13 Linked to Commercial Spyware Misuse

https://thehackernews.com/2024/04/us-imposes-visa-restrictions-on-13.html
U.S. Imposes Visa Restrictions on 13 Linked to Commercial Spyware Misuse
3 Posts

XSS Playground ! title parameter =

https://hks.ec/XSSPlayground.php?body=%3Cmatae%2Fonscrollend%3Dimport%28%27%2F%2Fhks.ec%27%29+style%3D%22display%3Ablock%3Boverflow%3Aauto%3Bheight%3A100px%3B%22%3E%3Cbr%3E%3Cbr%3E%3Cbr%3E%3Cbr%3E%3Cbr%3E%3Cbr%3E%3Ckuro+id%3Dx+contenteditable+autofocus%3E%3C%2Fkuro%3E
XSS Playground ! title parameter =