SEKTOR7 Institute
https://institute.sektor7.net/?coupon=M4S4L-M20DRE
Advanced CyberChef Techniques For Malware Analysis - Detailed Walkthrough and Examples
https://www.embeeresearch.io/advanced-cyberchef-operations-netsupport/
Bad Karma, No Justice: Void Manticore Destructive Activities in Israel - Check Point Research
https://research.checkpoint.com/2024/bad-karma-no-justice-void-manticore-destructive-activities-in-israel/
CVE-2024-4367 - Arbitrary JavaScript execution in PDF.js — Codean Labs
https://codeanlabs.com/blog/research/cve-2024-4367-arbitrary-js-execution-in-pdf-js/
Dora RAT을 이용한 국내 기업 대상 APT 공격 사례 분석 (Andariel 그룹) - ASEC BLOG
https://asec.ahnlab.com/ko/65495/
Critical Fluent Bit flaw impacts all major cloud providers
https://www.bleepingcomputer.com/news/security/critical-fluent-bit-flaw-impacts-all-major-cloud-providers/
Reverse engineering a car key fob signal (Part 1) · 0x44.cc
https://0x44.cc/radio/2024/03/13/reversing-a-car-key-fob-signal.html
American Radio Relay League cyberattack takes Logbook of the World offline
https://www.bleepingcomputer.com/news/security/arrl-cyberattack-takes-logbook-of-the-world-offline/
Foxit PDF Reader Flaw Exploited by Hackers to Deliver Diverse Malware Arsenal
https://thehackernews.com/2024/05/foxit-pdf-reader-flaw-exploited-by.html
Latrodectus Malware Loader Emerges as IcedID's Successor in Phishing Campaigns
https://thehackernews.com/2024/05/latrodectus-malware-loader-emerges-as.html
Iranian MOIS-Linked Hackers Behind Destructive Attacks on Albania and Israel
https://thehackernews.com/2024/05/iranian-mois-linked-hackers-behind.html
GitHub - foundryzero/binder-trace: Binder Trace is a tool for intercepting and parsing Android Binder messages. Think of it as "Wireshark for Binder".
https://github.com/foundryzero/binder-trace
Cyber Criminals Exploit GitHub and FileZilla to Deliver Cocktail Malware
https://thehackernews.com/2024/05/cyber-criminals-exploit-github-and.html
QNAP QTS zero-day in Share feature gets public RCE exploit
https://www.bleepingcomputer.com/news/security/qnap-qts-zero-day-in-share-feature-gets-public-rce-exploit/
CVE-2023-34992: Fortinet FortiSIEM Command Injection Deep-Dive – Horizon3.ai
https://www.horizon3.ai/attack-research/cve-2023-34992-fortinet-fortisiem-command-injection-deep-dive/
GitHub - mandiant/ADFSDump
https://github.com/mandiant/ADFSDump
New BiBi Wiper version also destroys the disk partition table
https://www.bleepingcomputer.com/news/security/new-bibi-wiper-version-also-destroys-the-disk-partition-table/
Critical Git Vulnerability CVE-2024-32002: Researcher Unveils RCE Exploit with PoC
https://securityonline.info/critical-git-vulnerability-cve-2024-32002-researcher-unveils-rce-exploit-with-poc/
Windows 11 Recall AI feature will record everything you do on your PC
https://www.bleepingcomputer.com/news/microsoft/windows-11-recall-ai-feature-will-record-everything-you-do-on-your-pc/
Two students uncovered a flaw that allows to use laundry machines for free
https://securityaffairs.com/163437/hacking/connected-laundry-machines-flaw.html
OmniVision discloses data breach after 2023 ransomware attack
https://www.bleepingcomputer.com/news/security/omnivision-discloses-data-breach-after-2023-ransomware-attack/
Financial institutions ordered to notify customers after a breach, have an incident response plan | Malwarebytes
https://www.malwarebytes.com/blog/news/2024/05/financial-institutions-ordered-to-notify-customers-after-a-breach-have-an-incident-response-plan
Fuzzing Android binaries using AFL++ Frida Mode | by +Ch0pin🕷️ | May, 2024 | Medium
https://valsamaras.medium.com/fuzzing-android-binaries-using-afl-frida-mode-57a49cf2ca43
Frustration grows over Google's AI Overviews feature, how to disable
https://www.bleepingcomputer.com/news/google/frustration-grows-over-googles-ai-overviews-feature-how-to-disable/
Hacking WordPress Sites for up to $10,000! - YouTube
https://youtu.be/bX5ZnNgmegY
2.4 Million Impacted by WebTPA Data Breach - SecurityWeek
https://www.securityweek.com/2-4-million-impacted-by-webtpa-data-breach/
New Windows 11 features strengthen security to address evolving cyberthreat landscape | Microsoft Security Blog
https://www.microsoft.com/en-us/security/blog/2024/05/20/new-windows-11-features-strengthen-security-to-address-evolving-cyberthreat-landscape/
Owner of Incognito dark web drugs market arrested in New York
https://www.bleepingcomputer.com/news/security/owner-of-incognito-dark-web-drugs-market-arrested-in-new-york/
Microsoft Graph Dev Center | APIs and app development
http://graph.microsoft.com
Detecting Compromise of CVE-2024-3400 on Palo Alto Networks GlobalProtect Devices | Volexity
https://www.volexity.com/blog/2024/05/15/detecting-compromise-of-cve-2024-3400-on-palo-alto-networks-globalprotect-devices/
Google Cites 'Monoculture' Risks in Response to CSRB Report on Microsoft - SecurityWeek
https://www.securityweek.com/google-cites-monoculture-risks-in-response-to-csrb-report-on-microsoft/
Akira Ransomware Now Uses APT-Style Tactics to Breach Corporate Networks
https://securityonline.info/akira-ransomware-now-uses-apt-style-tactics-to-breach-corporate-networks/
Grandoreiro Banking Trojan is back and targets banks worldwide
https://securityaffairs.com/163420/malware/grandoreiro-return-after-takedown.html