07/25

APT45: North Korea’s Digital Military Machine | Google Cloud Blog

https://cloud.google.com/blog/topics/threat-intelligence/apt45-north-korea-digital-military-machine
APT45: North Korea’s Digital Military Machine | Google Cloud Blog

Anyone can Access Deleted and Private Repository Data on GitHub ◆ Truffle Security Co.

https://trufflesecurity.com/blog/anyone-can-access-deleted-and-private-repo-data-github
Anyone can Access Deleted and Private Repository Data on GitHub ◆ Truffle Security Co.

Project Zero: Injecting Code into Windows Protected Processes using COM - Part 1

https://googleprojectzero.blogspot.com/2018/10/injecting-code-into-windows-protected.html
Project Zero: Injecting Code into Windows Protected Processes using COM - Part 1

A Practical Guide to PrintNightmare in 2024 | itm4n's blog

https://itm4n.github.io/printnightmare-exploitation/
A Practical Guide to PrintNightmare in 2024 | itm4n's blog

NCSC and partners issue warning over North Korean... - NCSC.GOV.UK

https://www.ncsc.gov.uk/news/ncsc-partners-vigilant-dprk-sponsored-cyber-campaign
NCSC and partners issue warning over North Korean... - NCSC.GOV.UK

Over 3,000 GitHub accounts used by malware distribution service

https://www.bleepingcomputer.com/news/security/over-3-000-github-accounts-used-by-malware-distribution-service/
Over 3,000 GitHub accounts used by malware distribution service

Onyx Sleet uses array of malware to gather intelligence for North Korea | Microsoft Security Blog

https://www.microsoft.com/en-us/security/blog/2024/07/25/onyx-sleet-uses-array-of-malware-to-gather-intelligence-for-north-korea/
Onyx Sleet uses array of malware to gather intelligence for North Korea | Microsoft Security Blog

KnowBe4 mistakenly hires North Korean hacker, faces infostealer attack

https://www.bleepingcomputer.com/news/security/knowbe4-mistakenly-hires-north-korean-hacker-faces-infostealer-attack/
KnowBe4 mistakenly hires North Korean hacker, faces infostealer attack

Hacktivist Entity USDoD Claims to Have Leaked CrowdStrike’s Threat Actor List

https://www.crowdstrike.com/blog/hacktivist-usdod-claims-to-have-leaked-threat-actor-list/
Hacktivist Entity USDoD Claims to Have Leaked CrowdStrike’s Threat Actor List

Mid-year Doppelgänger information operations in Europe and the US

https://harfanglab.io/en/insidethelab/doppelganger-operations-europe-us/
Mid-year Doppelgänger information operations in Europe and the US

Stargazers Ghost Network - Check Point Research

https://research.checkpoint.com/2024/stargazers-ghost-network/
Stargazers Ghost Network - Check Point Research

French police push PlugX malware self-destruct payload to clean PCs

https://www.bleepingcomputer.com/news/security/french-police-push-plugx-malware-self-destruct-payload-to-clean-pcs/
French police push PlugX malware self-destruct payload to clean PCs

Google Boosts Chrome Protections Against Malicious Files - SecurityWeek

https://www.securityweek.com/google-boosts-chrome-protections-against-malicious-files/
Google Boosts Chrome Protections Against Malicious Files - SecurityWeek

Verizon Subsidiary Settles With FCC for $16M Over Three Data Breaches - SecurityWeek

https://www.securityweek.com/verizon-subsidiary-settles-with-fcc-for-16m-over-three-data-breaches/
Verizon Subsidiary Settles With FCC for $16M Over Three Data Breaches - SecurityWeek

North Korean Hackers Shift from Cyber Espionage to Ransomware Attacks

https://thehackernews.com/2024/07/north-korean-hackers-shift-from-cyber.html
North Korean Hackers Shift from Cyber Espionage to Ransomware Attacks

Active Directory Enumeration for Red Teams - MDSec

https://www.mdsec.co.uk/2024/02/active-directory-enumeration-for-red-teams/
Active Directory Enumeration for Red Teams - MDSec

Critical Docker Engine Flaw Allows Attackers to Bypass Authorization Plugins

https://thehackernews.com/2024/07/critical-docker-engine-flaw-allows.html
Critical Docker Engine Flaw Allows Attackers to Bypass Authorization Plugins

Meta Removes 63,000 Instagram Accounts Linked to Nigerian Sextortion Scams

https://thehackernews.com/2024/07/meta-removes-63000-instagram-accounts.html
Meta Removes 63,000 Instagram Accounts Linked to Nigerian Sextortion Scams

Double Dipping Cheat Developer Gets Caught Red-Handed

https://www.cyberark.com/resources/threat-research-blog/double-dipping-cheat-developer-gets-caught-red-handed
Double Dipping Cheat Developer Gets Caught Red-Handed

US offers $10M for tips on DPRK hacker linked to Maui ransomware attacks

https://www.bleepingcomputer.com/news/security/us-offers-10m-for-tips-on-dprk-hacker-linked-to-maui-ransomware-attacks/
US offers $10M for tips on DPRK hacker linked to Maui ransomware attacks

Mandiant Shines Spotlight on APT45 Behind North Korea’s Digital Military Machine - SecurityWeek

https://www.securityweek.com/mandiant-shines-spotlight-on-apt45-behind-north-koreas-digital-military-machine/
Mandiant Shines Spotlight on APT45 Behind North Korea’s Digital Military Machine - SecurityWeek

From Windows drivers to a almost fully working EDR // WhiteFlag

https://blog.whiteflag.io/blog/from-windows-drivers-to-a-almost-fully-working-edr/
From Windows drivers to a almost fully working EDR // WhiteFlag

VirusTotal - File - 827366355c6429a7fe12d111e240c5bcec3ed61e717fb84ea8b771672dd1f88e

https://www.virustotal.com/gui/file/827366355c6429a7fe12d111e240c5bcec3ed61e717fb84ea8b771672dd1f88e/detection
VirusTotal - File - 827366355c6429a7fe12d111e240c5bcec3ed61e717fb84ea8b771672dd1f88e

Meta nukes massive Instagram sextortion network of 63,000 accounts

https://www.bleepingcomputer.com/news/security/meta-nukes-massive-instagram-sextortion-network-of-63-000-accounts/
Meta nukes massive Instagram sextortion network of 63,000 accounts

Progress warns of critical RCE bug in Telerik Report Server

https://www.bleepingcomputer.com/news/security/progress-warns-of-critical-rce-bug-in-telerik-report-server/
Progress warns of critical RCE bug in Telerik Report Server

Check Point - Wrong Check Point (CVE-2024-24919)

https://labs.watchtowr.com/check-point-wrong-check-point-cve-2024-24919/
Check Point - Wrong Check Point (CVE-2024-24919)