APT45: North Korea’s Digital Military Machine | Google Cloud Blog
https://cloud.google.com/blog/topics/threat-intelligence/apt45-north-korea-digital-military-machine
Anyone can Access Deleted and Private Repository Data on GitHub ◆ Truffle Security Co.
https://trufflesecurity.com/blog/anyone-can-access-deleted-and-private-repo-data-github
Project Zero: Injecting Code into Windows Protected Processes using COM - Part 1
https://googleprojectzero.blogspot.com/2018/10/injecting-code-into-windows-protected.html
A Practical Guide to PrintNightmare in 2024 | itm4n's blog
https://itm4n.github.io/printnightmare-exploitation/
NCSC and partners issue warning over North Korean... - NCSC.GOV.UK
https://www.ncsc.gov.uk/news/ncsc-partners-vigilant-dprk-sponsored-cyber-campaign
Over 3,000 GitHub accounts used by malware distribution service
https://www.bleepingcomputer.com/news/security/over-3-000-github-accounts-used-by-malware-distribution-service/
Onyx Sleet uses array of malware to gather intelligence for North Korea | Microsoft Security Blog
https://www.microsoft.com/en-us/security/blog/2024/07/25/onyx-sleet-uses-array-of-malware-to-gather-intelligence-for-north-korea/
KnowBe4 mistakenly hires North Korean hacker, faces infostealer attack
https://www.bleepingcomputer.com/news/security/knowbe4-mistakenly-hires-north-korean-hacker-faces-infostealer-attack/
Hacktivist Entity USDoD Claims to Have Leaked CrowdStrike’s Threat Actor List
https://www.crowdstrike.com/blog/hacktivist-usdod-claims-to-have-leaked-threat-actor-list/
Mid-year Doppelgänger information operations in Europe and the US
https://harfanglab.io/en/insidethelab/doppelganger-operations-europe-us/
Stargazers Ghost Network - Check Point Research
https://research.checkpoint.com/2024/stargazers-ghost-network/
French police push PlugX malware self-destruct payload to clean PCs
https://www.bleepingcomputer.com/news/security/french-police-push-plugx-malware-self-destruct-payload-to-clean-pcs/
Google Boosts Chrome Protections Against Malicious Files - SecurityWeek
https://www.securityweek.com/google-boosts-chrome-protections-against-malicious-files/
Verizon Subsidiary Settles With FCC for $16M Over Three Data Breaches - SecurityWeek
https://www.securityweek.com/verizon-subsidiary-settles-with-fcc-for-16m-over-three-data-breaches/
How a barcode scanner helped fix CrowdStrike mess in a flash • The Register
http://dlvr.it/TB2JJY
North Korean Hackers Shift from Cyber Espionage to Ransomware Attacks
https://thehackernews.com/2024/07/north-korean-hackers-shift-from-cyber.html
Active Directory Enumeration for Red Teams - MDSec
https://www.mdsec.co.uk/2024/02/active-directory-enumeration-for-red-teams/
Critical Docker Engine Flaw Allows Attackers to Bypass Authorization Plugins
https://thehackernews.com/2024/07/critical-docker-engine-flaw-allows.html
Meta Removes 63,000 Instagram Accounts Linked to Nigerian Sextortion Scams
https://thehackernews.com/2024/07/meta-removes-63000-instagram-accounts.html
Double Dipping Cheat Developer Gets Caught Red-Handed
https://www.cyberark.com/resources/threat-research-blog/double-dipping-cheat-developer-gets-caught-red-handed
US offers $10M for tips on DPRK hacker linked to Maui ransomware attacks
https://www.bleepingcomputer.com/news/security/us-offers-10m-for-tips-on-dprk-hacker-linked-to-maui-ransomware-attacks/
Mandiant Shines Spotlight on APT45 Behind North Korea’s Digital Military Machine - SecurityWeek
https://www.securityweek.com/mandiant-shines-spotlight-on-apt45-behind-north-koreas-digital-military-machine/
From Windows drivers to a almost fully working EDR // WhiteFlag
https://blog.whiteflag.io/blog/from-windows-drivers-to-a-almost-fully-working-edr/
VirusTotal - File - 827366355c6429a7fe12d111e240c5bcec3ed61e717fb84ea8b771672dd1f88e
https://www.virustotal.com/gui/file/827366355c6429a7fe12d111e240c5bcec3ed61e717fb84ea8b771672dd1f88e/detection
Meta nukes massive Instagram sextortion network of 63,000 accounts
https://www.bleepingcomputer.com/news/security/meta-nukes-massive-instagram-sextortion-network-of-63-000-accounts/
Progress warns of critical RCE bug in Telerik Report Server
https://www.bleepingcomputer.com/news/security/progress-warns-of-critical-rce-bug-in-telerik-report-server/
XWorm Hidden With Process Hollowing - SANS Internet Storm Center
https://i5c.us/d31112
Condos.com – Great Domains For Sale
http://Condo.com
Check Point - Wrong Check Point (CVE-2024-24919)
https://labs.watchtowr.com/check-point-wrong-check-point-cve-2024-24919/