YARA is dead, long live YARA-X | YARA-X
https://virustotal.github.io/yara-x/blog/yara-is-dead-long-live-yara-x/
Untitled / X
https://twitter.com/i/broadcasts/1djGXNQwBBRxZ
QNAP QTS - QNAPping At The Wheel (CVE-2024-27130 and friends)
https://labs.watchtowr.com/qnap-qts-qnapping-at-the-wheel-cve-2024-27130-and-friends/
Netscaler ADC and Gateway, Version 13.1-50.23 | Bishop Fox
https://bishopfox.com/blog/netscaler-adc-and-gateway-advisory
Chrome bug chain on Viz & v8 (May 2024) - Zero Day Engineering Insights
https://zerodayengineering.com/insights/chrome-viz-v8-wasm.html
Microsoft to start enforcing Azure multi-factor authentication in July
https://www.bleepingcomputer.com/news/microsoft/microsoft-will-start-enforcing-azure-multi-factor-authentication-MFA-in-july-2024/
Log in to Twitter / Twitter
http://X.com
Kinsing Hacker Group Exploits More Flaws to Expand Botnet for Cryptojacking
https://thehackernews.com/2024/05/kinsing-hacker-group-exploits-more.html
CISA Warns of Actively Exploited D-Link Router Vulnerabilities - Patch Now
https://thehackernews.com/2024/05/cisa-warns-of-actively-exploited-d-link.html
SEC: Financial orgs have 30 days to send data breach notifications
https://www.bleepingcomputer.com/news/security/sec-financial-orgs-have-30-days-to-send-data-breach-notifications/
US arrests suspects behind $73M ‘pig butchering’ laundering scheme
https://www.bleepingcomputer.com/news/security/us-arrests-suspects-behind-73m-pig-butchering-laundering-scheme/
Why So Optimized? - Ege Balci - YouTube
https://www.youtube.com/watch?v=Issvbst_89I&list=PLcAhMYXnWf9twDPjT1G3vyIzHxoQ-X8XK&index=7&pp=iAQB
China-Linked Hackers Adopt Two-Stage Infection Tactic to Deploy Deuterbear RAT
https://thehackernews.com/2024/05/china-linked-hackers-adopt-two-stage.html
Kimsuky APT Deploying Linux Backdoor Gomir in South Korean Cyber Attacks
https://thehackernews.com/2024/05/kimsuky-apt-deploying-linux-backdoor.html
Microsoft Quick Assist Tool Abused for Ransomware Delivery - SecurityWeek
https://www.securityweek.com/microsoft-quick-assist-tool-abused-for-ransomware-delivery/
CVE-2021-30551 (Type confusion in V8 in Google Chrome)
https://cwresearchlab.co.kr/entry/CVE-2021-30551-Type-confusion-in-V8-in-Google-Chrome
Microsoft Has Yet to Patch 7 Pwn2Own Zero-Days
https://www.darkreading.com/vulnerabilities-threats/microsoft-has-yet-to-patch-7-pwn2own-zero-days
Phishing Campaign Bypasses MFA to Target Meta Business Accounts, Putting Millions at Risk
https://securityonline.info/phishing-campaign-bypasses-mfa-to-target-meta-business-accounts-putting-millions-at-risk/
Woman Accused of Helping North Korean IT Workers Infiltrate Hundreds of US Firms - SecurityWeek
https://www.securityweek.com/woman-accused-of-helping-north-korean-it-workers-infiltrate-hundreds-of-us-firms/
WebTPA data breach impacts 2.4 million insurance policyholders
https://www.bleepingcomputer.com/news/security/webtpa-data-breach-impacts-24-million-insurance-policyholders/
CISA Warns of Exploited Vulnerabilities in EOL D-Link Products - SecurityWeek
https://www.securityweek.com/cisa-warns-of-exploited-vulnerabilities-in-eol-d-link-products/
User Outcry as Slack Scrapes Customer Data for AI Model Training - SecurityWeek
https://www.securityweek.com/user-outcry-as-slack-scrapes-customer-data-for-ai-model-training/
Talos releases new macOS open-source fuzzer
https://blog.talosintelligence.com/talos-releases-new-macos-fuzzer/
A Former OpenAI Leader Says Safety Has ‘Taken a Backseat to Shiny Products’ at the AI Company - SecurityWeek
https://www.securityweek.com/a-former-openai-leader-says-safety-has-taken-a-backseat-to-shiny-products-at-the-ai-company/
Watch Exclusive Free Video Series 👉 Malware Development Workshop, Part - 3 - YouTube
https://youtu.be/RQlSw2uQpp8?si=tKFjAuOxrxNG_rR8
Norway recommends replacing SSL VPN to prevent breaches
https://www.bleepingcomputer.com/news/security/norway-recommends-replacing-ssl-vpn-to-prevent-breaches/