Hacker Trends
05/02
05/03
05/04
Statistic
10/26 10:26 (UTC)
05/02
05/03
05/04
7 Posts
CFG in Windows 11 24H2
https://
ynwarcs.github.io
/Win11-24H2-CFG
6 Posts
Introducing VDP Compliance—A Free Offering From Bugcrowd | @Bugcrowd
https://
www.bugcrowd.com
/blog/introducing-vdp-compliance-a-free-offering-from-bugcrowd/
6 Posts
Havoc C2 with AV/EDR Bypass Methods in 2024 (Part 1) | by Sam Rothlisberger | Medium
https://
medium.com
/@sam.rothlisberger/havoc-c2-with-av-edr-bypass-methods-in-2024-part-1-733d423fc67b
6 Posts
Havoc C2 with AV/EDR Bypass Methods in 2024 (Part 2) | by Sam Rothlisberger | Medium
https://
medium.com
/@sam.rothlisberger/havoc-c2-with-av-edr-bypass-methods-in-2024-part-2-d3ac83589e3a
5 Posts
Four Critical Vulnerabilities Expose HPE Aruba Devices to RCE Attacks
https://
thehackernews.com
/2024/05/four-critical-vulnerabilities-expose.html
5 Posts
Chaining N-days to Compromise All: Part 5 — VMware Workstation Host-to-Guest Escape | by Theori Vulnerability Research | May, 2024 | Theori BLOG
https://
blog.theori.io
/chaining-n-days-to-compromise-all-part-5-vmware-workstation-host-to-guest-escape-5a1297e431b5
5 Posts
Devfile file write vulnerability in GitLab - GitLab Security Tech Notes
https://
gitlab-com.gitlab.io
/gl-security/security-tech-notes/security-research-tech-notes/devfile/
5 Posts
NSA, FBI Alert on N. Korean Hackers Spoofing Emails from Trusted Sources
https://
thehackernews.com
/2024/05/nsa-fbi-alert-on-n-korean-hackers.html
4 Posts
Read Satya Nadella’s Microsoft memo on putting security first - The Verge
https://
www.theverge.com
/24148033/satya-nadella-microsoft-security-memo
4 Posts
Microsoft rolls out passkey auth for personal Microsoft accounts
https://
www.bleepingcomputer.com
/news/microsoft/microsoft-rolls-out-passkey-auth-for-personal-microsoft-accounts/
4 Posts
Google Announces Passkeys Adopted by Over 400 Million Accounts
https://
thehackernews.com
/2024/05/google-announces-passkeys-adopted-by.html
4 Posts
Hackers Increasingly Abusing Microsoft Graph API for Stealthy Malware Communications
https://
thehackernews.com
/2024/05/hackers-increasingly-abusing-microsoft.html
4 Posts
Dirty stream attack poses billions of Android installs at risk
https://
securityaffairs.com
/162699/hacking/dirty-stream-android-installs-risk.html
4 Posts
How 18-Year-Old Me Discovered a VirtualBox VM Escape Vulnerability | Jonathan Jacobi’s Blog
https://
j0nathanj.github.io
/Dusting-off-the-VM-Escape
3 Posts
Microsoft Warns of 'Dirty Stream' Vulnerability in Popular Android Apps - SecurityWeek
https://
www.securityweek.com
/microsoft-warns-of-dirty-stream-vulnerability-in-popular-android-apps/
3 Posts
NSA warns of North Korean hackers exploiting weak DMARC email policies
https://
www.bleepingcomputer.com
/news/security/nsa-warns-of-north-korean-hackers-exploiting-weak-dmarc-email-policies/
3 Posts
Microsoft Researcher to Unveil 4 OpenVPN Zero-Day Vulnerabilities at Black Hat USA 2024
https://
securityonline.info
/microsoft-researcher-to-unveil-4-openvpn-zero-day-vulnerabilities-at-black-hat-usa-2024/
3 Posts
US Says North Korean Hackers Exploiting Weak DMARC Settings - SecurityWeek
https://
www.securityweek.com
/us-says-north-korean-hackers-exploiting-weak-dmarc-settings/
3 Posts
Uncharmed: Untangling Iran's APT42 Operations | Google Cloud Blog
https://
cloud.google.com
/blog/topics/threat-intelligence/untangling-iran-apt42-operations/
3 Posts
Google rolls back reCaptcha update to fix Firefox issues
https://
www.bleepingcomputer.com
/news/security/google-rolls-back-recaptcha-update-to-fix-firefox-issues/
3 Posts
CEO who sold fake Cisco devices to US military gets 6 years in prison
https://
www.bleepingcomputer.com
/news/security/ceo-who-sold-fake-cisco-devices-to-us-military-gets-6-years-in-prison/
3 Posts
Beating the code review plateaux. In every field, people eventually hit… | by PentesterLab | May, 2024 | PentesterLab
https://
blog.pentesterlab.com
/beating-the-code-review-plateaux-f4c2ec0b46ff
3 Posts
Abusing MS Windows printing for C2 communication
https://
diverto.hr
/en/blog/2024-05-03-MS-Windows-Printing-C2/
3 Posts
Android bug can leak DNS traffic with VPN kill switch enabled
https://
www.bleepingcomputer.com
/news/security/android-bug-can-leak-dns-traffic-with-vpn-kill-switch-enabled/
3 Posts
CVE-2024-4439: Unauthenticated Stored Cross-Site Scripting Vulnerability in WordPress Core
https://
securityonline.info
/cve-2024-4439-unauthenticated-stored-cross-site-scripting-vulnerability-in-wordpress-core/