Analysis wsj.pm Malicious activity - Interactive analysis ANY.RUN
https://app.any.run/tasks/a7482c6d-5f77-47ce-b1a9-3f981df5d990/
How Lazarus Group laundered $200M from 25+ crypto hacks to fiat … — Investigations By ZachXBT
https://zachxbt.mirror.xyz/B0-UJtxN41cJhpPtKv0v2LZ8u-0PwZ4ecMPEdX4l8vE
MalwareBazaar | 5-8-63-140
https://bazaar.abuse.ch/browse/tag/5-8-63-140/
LSASS rings KsecDD ext. 0 | Penetration Testing - Red Teaming - Purple Teaming - Security Training | Tier Zero Security, New Zealand
https://tierzerosecurity.co.nz/2024/04/29/kexecdd.html
Just a moment...
https://thedfirreport.com/2024/04/29/from-icedid-to-dagon-locker-ransomware-in-29-days/
Office of Public Affairs | Former NSA Employee Sentenced to Over 21 Years in Prison for Attempted Espionage | United States Department of Justice
https://www.justice.gov/opa/pr/former-nsa-employee-sentenced-over-21-years-prison-attempted-espionage
HackerOne | Report #2442008 - Attachment disclosure via summary report | HackerOne
https://hackerone.com/reports/2442008
Agenda | OffensiveCon
https://www.offensivecon.org/agenda/
Sandbox Escape Vulnerabilities in Judge0 Expose Systems to Complete Takeover
https://thehackernews.com/2024/04/sandbox-escape-vulnerabilities-in.html
New R Programming Vulnerability Exposes Projects to Supply Chain Attacks
https://thehackernews.com/2024/04/new-r-programming-vulnerability-exposes.html
US Post Office phishing sites get as much traffic as the real one
https://www.bleepingcomputer.com/news/security/us-post-office-phishing-sites-get-as-much-traffic-as-the-real-one/
Embed A Malicious Executable in a Normal PDF or EXE | by Sam Rothlisberger | Medium
https://medium.com/@sam.rothlisberger/embed-a-malicious-executable-in-a-normal-pdf-or-exe-81ee5339707e
DC32 - ICS Village - Call for Papers
https://docs.google.com/forms/d/e/1FAIpQLSefcoGfrPbegXEQpu1Diq1veRy3o69dH5M4KO5-vDo3_tyQSA/viewform
Collection Agency FBCS Says Data Breach Exposed Nearly 2 million People - SecurityWeek
https://www.securityweek.com/2-million-impacted-by-data-breach-at-debt-collector-fbcs/
pilvar on X: "This Friday, I'm presenting a novel technique as part of my talk "Secret web hacking knowledge - CTF authors hate these simple tricks". I've made a challenge about it, will you be able to pop an alert on https://t.co/1LHy2jHDOK ? The whole source code is in the screens below :) https://t.co/eKCg9sMG5K" / X
https://twitter.com/pilvar222/status/1782593915192795204
London Drugs pharmacy chain closes stores after cyberattack
https://www.bleepingcomputer.com/news/security/london-drugs-pharmacy-chain-closes-stores-after-cyberattack/
Okta Warns of Credential Stuffing Attacks Using Tor, Residential Proxies - SecurityWeek
https://www.securityweek.com/okta-warns-of-credential-stuffing-attacks-using-tor-residential-proxies/
Microsoft fixes bug behind incorrect BitLocker encryption errors
https://www.bleepingcomputer.com/news/microsoft/microsoft-fixes-bug-behind-incorrect-bitlocker-encryption-errors/
FCC Fines Major U.S. Wireless Carriers for Selling Customer Location Data – Krebs on Security
https://krebsonsecurity.com/2024/04/fcc-fines-major-u-s-wireless-carriers-for-selling-customer-location-data/
A Trip Down Memory Lane | Zavier
https://gatari.dev/posts/a-trip-down-memory-lane/
Kaiser health insurance leaked patient data to advertisers | Malwarebytes
https://www.malwarebytes.com/blog/news/2024/04/kaiser-health-insurance-leaked-patient-data-to-advertisers
Analysis of the xz-utils backdoor code | by Knownsec 404 team | Apr, 2024 | Medium
https://medium.com/@knownsec404team/analysis-of-the-xz-utils-backdoor-code-d2d5316ac43f
China-Linked 'Muddling Meerkat' Hijacks DNS to Map Internet on Global Scale
https://thehackernews.com/2024/04/china-linked-muddling-meerkat-hijacks.html
Cyber-Partisans hacktivists claim to have breached Belarus KGB
https://securityaffairs.com/162504/hacktivism/cyber-partisans-breached-belarus-kgb.html
FCC fines carriers $200 million for illegally sharing user location
https://www.bleepingcomputer.com/news/technology/fcc-fines-carriers-200-million-for-illegally-sharing-user-location/
ViriBack C2 Tracker
https://tracker.viriback.com/index.php?q=Matanbuchus
FBCS data breach impacted 2M individuals
https://securityaffairs.com/162514/cyber-crime/fbcs-data-breach.html
From Water to Wine: An Analysis of WINELOADER | Splunk
https://www.splunk.com/en_us/blog/security/wineloader-analysis.html
Russia Clones Wikipedia, Censors It, Bans Original
https://www.404media.co/russia-clones-wikipedia-censors-it-bans-original/
The Los Angeles County Department of Health Services disclosed a data breach
https://securityaffairs.com/162494/data-breach/los-angeles-county-department-of-health-services-data-breach.html
Smart gadgets: Tougher rules for sellers of internet-enabled devices in the UK
https://www.bbc.co.uk/news/business-68917837
It’s Me, Hi, I’m the APT: The Rise of Ecrime to Nation-State Levels — SLEUTHCON
https://www.sleuthcon.com/its-me-hi-im-the-apt
'Admin' and '12345' banned from being used as passwords in UK crackdown on cyber attacks | Science & Tech News | Sky News
https://news.sky.com/story/admin-and-12345-banned-from-being-used-as-passwords-in-uk-crackdown-on-cyber-attacks-13125565