04/24
04/25
04/26
6 tweets

ArcaneDoor - New espionage-focused campaign found targeting perimeter network devices

https://blog.talosintelligence.com/arcanedoor-new-espionage-focused-campaign-found-targeting-perimeter-network-devices/
ArcaneDoor - New espionage-focused campaign found targeting perimeter network devices
5 tweets

State-Sponsored Hackers Exploit Two Cisco Zero-Day Vulnerabilities for Espionage

https://thehackernews.com/2024/04/state-sponsored-hackers-exploit-two.html
State-Sponsored Hackers Exploit Two Cisco Zero-Day Vulnerabilities for Espionage
5 tweets

DOJ Arrests Founders of Crypto Mixer Samourai for $2 Billion in Illegal Transactions

https://thehackernews.com/2024/04/doj-arrests-founders-of-crypto-mixer.html
DOJ Arrests Founders of Crypto Mixer Samourai for $2 Billion in Illegal Transactions
5 tweets

ETW-ByeBye: Disabling ETW-TI Without PPL | Legacyy

https://www.legacyy.xyz/defenseevasion/windows/2024/04/24/disabling-etw-ti-without-ppl.html
ETW-ByeBye: Disabling ETW-TI Without PPL | Legacyy
4 tweets

WP Automatic WordPress plugin hit by millions of SQL injection attacks

https://www.bleepingcomputer.com/news/security/wp-automatic-wordpress-plugin-hit-by-millions-of-sql-injection-attacks/
WP Automatic WordPress plugin hit by millions of SQL injection attacks
4 tweets

North Korea's Lazarus Group Deploys New Kaolin RAT via Fake Job Lures

https://thehackernews.com/2024/04/north-koreas-lazarus-group-deploys-new.html
North Korea's Lazarus Group Deploys New Kaolin RAT via Fake Job Lures
4 tweets

Senior Threat Hunter - United Kingdom in United Kingdom | Dragos

https://careers.dragos.com/jobs/2059?lang=en-us
Senior Threat Hunter - United Kingdom in United Kingdom | Dragos
4 tweets

New Brokewell malware takes over Android devices, steals data

https://www.bleepingcomputer.com/news/security/new-brokewell-malware-takes-over-android-devices-steals-data/
New Brokewell malware takes over Android devices, steals data
4 tweets

debugging-slides.pdf

https://bootlin.com/doc/training/debugging/debugging-slides.pdf
debugging-slides.pdf
4 tweets

AWS Cloud Security Config Review using Nuclei Templates

https://blog.projectdiscovery.io/aws-cloud-security-config-review-using-nuclei-templates/
AWS Cloud Security Config Review using Nuclei Templates
3 tweets

FTC Sending $5.6 Million in Refunds to Ring Customers Over Security Failures - SecurityWeek

https://www.securityweek.com/ftc-sending-5-6-million-in-refunds-to-ring-customers-over-security-failures/
FTC Sending $5.6 Million in Refunds to Ring Customers Over Security Failures - SecurityWeek
3 tweets

Coverage Guided Fuzzing - Extending Instrumentation to Hunt Down Bugs Faster! - Include Security Research Blog

https://blog.includesecurity.com/2024/04/coverage-guided-fuzzing-extending-instrumentation/
Coverage Guided Fuzzing - Extending Instrumentation to Hunt Down Bugs Faster! - Include Security Research Blog
3 tweets

Ring agrees to pay $5.6 million after cameras were used to spy on customers | Malwarebytes

https://www.malwarebytes.com/blog/news/2024/04/ring-agrees-to-pay-5-6-million-after-cameras-were-used-to-spy-on-customers
Ring agrees to pay $5.6 million after cameras were used to spy on customers | Malwarebytes
3 tweets

Unplugging PlugX: Sinkholing the PlugX USB worm botnet - Sekoia.io Blog

https://blog.sekoia.io/unplugging-plugx-sinkholing-the-plugx-usb-worm-botnet/
Unplugging PlugX: Sinkholing the PlugX USB worm botnet - Sekoia.io Blog
3 tweets

Over 1,400 CrushFTP servers vulnerable to actively exploited bug

https://www.bleepingcomputer.com/news/security/over-1-400-crushftp-servers-vulnerable-to-actively-exploited-bug/
Over 1,400 CrushFTP servers vulnerable to actively exploited bug
3 tweets

A Practical Guide to PrintNightmare in 2024 | itm4n's blog

https://itm4n.github.io/printnightmare-exploitation/
A Practical Guide to PrintNightmare in 2024 | itm4n's blog
3 tweets

Google Postpones Third-Party Cookie Deprecation Amid U.K. Regulatory Scrutiny

https://thehackernews.com/2024/04/google-postpones-third-party-cookie.html
Google Postpones Third-Party Cookie Deprecation Amid U.K. Regulatory Scrutiny
3 tweets

Reddit down in major outage blocking access to web, mobile apps

https://www.bleepingcomputer.com/news/technology/reddit-down-in-major-outage-blocking-access-to-web-mobile-apps/
Reddit down in major outage blocking access to web, mobile apps
3 tweets

Vulnerabilities Expose Brocade SAN Appliances, Switches to Hacking - SecurityWeek

https://www.securityweek.com/vulnerabilities-expose-brocade-san-appliances-switches-to-hacking/
Vulnerabilities Expose Brocade SAN Appliances, Switches to Hacking - SecurityWeek
3 tweets

CVE-2023-43786 & CVE-2023-43787 Vulns in libX11: All You Need To Know

https://jfrog.com/blog/xorg-libx11-vulns-cve-2023-43786-cve-2023-43787-part-two/
CVE-2023-43786 & CVE-2023-43787 Vulns in libX11: All You Need To Know
3 tweets

Social engineering aspect of the XZ incident | Securelist

https://securelist.com/xz-backdoor-story-part-2-social-engineering/112476/
Social engineering aspect of the XZ incident | Securelist
3 tweets

Baldur

https://baldur.dk/blog/embedded-mitel-exploitation.html
Baldur
3 tweets

CVE-2024-4040 | AttackerKB

https://attackerkb.com/topics/20oYjlmfXa/cve-2024-4040/rapid7-analysis
CVE-2024-4040 | AttackerKB
3 tweets

Ex-NSA hacker and ex-Apple researcher launch startup to protect Apple devices | TechCrunch

https://techcrunch.com/2024/04/25/ex-nsa-ex-apple-researcher-doubleyou/
Ex-NSA hacker and ex-Apple researcher launch startup to protect Apple devices | TechCrunch