3 ways to get Remote Code Execution in Kafka UI - The GitHub Blog
https://github.blog/2024-07-22-3-ways-to-get-remote-code-execution-in-kafka-ui/
Spain arrests three for using DDoSia hacktivist platform
https://www.bleepingcomputer.com/news/security/spain-arrests-three-for-using-ddosia-hacktivist-platform/
BruCON 2024 Training – BruCON 2024
https://www.brucon.org/2024/brucon-2024-training/
pwnat: Breakthrough NAT Traversal Without Port Forwarding
https://meterpreter.org/pwnat-breakthrough-nat-traversal-without-port-forwarding/
PINEAPPLE and FLUXROOT Hacker Groups Abuse Google Cloud for Credential Phishing
https://thehackernews.com/2024/07/pineapple-and-fluxroot-hacker-groups.html
New Play ransomware Linux version targets VMware ESXi VMs
https://www.bleepingcomputer.com/news/security/new-play-ransomware-linux-version-targets-vmware-esxi-vms/
Kevin Tellier lighting talk - YouTube
https://youtu.be/JTt0kXkw5s8
US sanctions Russian hacktivists who breached water facilities
https://www.bleepingcomputer.com/news/security/us-sanctions-russian-hacktivists-who-breached-water-facilities/
Zeroed.Tech
https://zeroed.tech/blog/viewstate-the-unpatchable-iis-forever-day-being-actively-exploited/
Microsoft releases Windows repair tool to remove CrowdStrike driver
https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-windows-repair-tool-to-remove-crowdstrike-driver/
SocGholish Malware Exploits BOINC Project for Covert Cyberattacks
https://thehackernews.com/2024/07/socgholish-malware-exploits-boinc.html
CrowdStrike Incident Leveraged for Malware Delivery, Phishing, Scams - SecurityWeek
https://www.securityweek.com/crowdstrike-incident-leveraged-for-malware-delivery-phishing-scams/
Police infiltrates, takes down DigitalStress DDoS-for-hire service
https://www.bleepingcomputer.com/news/security/police-infiltrates-takes-down-digitalstress-ddos-for-hire-service/
GitHub - t94j0/adexplorersnapshot-rs
https://github.com/t94j0/adexplorersnapshot-rs
Fake CrowdStrike updates target companies with malware, data wipers
https://www.bleepingcomputer.com/news/security/fake-crowdstrike-updates-target-companies-with-malware-data-wipers/
FIN7 Reboot | Cybercrime Gang Enhances Ops with New EDR Bypasses and Automated Attacks - SentinelOne
https://www.sentinelone.com/labs/fin7-reboot-cybercrime-gang-enhances-ops-with-new-edr-bypasses-and-automated-attacks/
Cursed tapes: Exploiting the EvilVideo vulnerability on Telegram for Android
https://www.welivesecurity.com/en/eset-research/cursed-tapes-exploiting-evilvideo-vulnerability-telegram-android/
Safety Equipment Giant Cadre Holdings Hit by Cyberattack - SecurityWeek
https://www.securityweek.com/safety-equipment-giant-cadre-holdings-hit-by-cyberattack/
Two Members of LockBit Ransomware Group Plead Guilty in US Court - SecurityWeek
https://www.securityweek.com/two-members-of-lockbit-ransomware-group-plead-guilty-in-us-court/
2024 Blue Team Con Call for Volunteers
https://btcon.link/volunteers
The Disclosure Dilemma and Ensuring Defense - YouTube
https://youtu.be/Cuhs4EJqxMw?si=YmHhEYzd8TEkw6X5
Experts Uncover Chinese Cybercrime Network Behind Gambling and Human Trafficking
https://thehackernews.com/2024/07/experts-uncover-chinese-cybercrime.html
Analysis 1fc634f1dd5d330c9806ad478103e05e9ea12767598d492ff2ab0170cc9b2cc4 (MD5: B5C0AB8DCD1B38FFD8D96C572A8B867C) Malicious activity - Interactive analysis ANY.RUN
https://app.any.run/tasks/7662f569-af72-4c37-a1ed-f4ef3d14c0a7
MalwareBazaar | 74-119-195-176
https://bazaar.abuse.ch/browse/tag/74-119-195-176/
New Linux Variant of Play Ransomware Targeting VMware ESXi Systems
https://thehackernews.com/2024/07/new-linux-variant-of-play-ransomware.html
Telegram zero-day allowed sending malicious Android APKs as videos
https://www.bleepingcomputer.com/news/security/telegram-zero-day-camouflaged-malicious-android-apks-as-videos/
Heritage Foundation data breach containing personal data is available online | Malwarebytes
https://www.malwarebytes.com/blog/news/2024/07/heritage-foundation-data-breach-containing-personal-data-is-available-online