US oil giant Halliburton confirms cyberattack behind systems shutdown
https://www.bleepingcomputer.com/news/security/us-oil-giant-halliburton-confirms-cyberattack-behind-systems-shutdown/
Russian laundering millions for Lazarus hackers arrested in Argentina
https://www.bleepingcomputer.com/news/legal/russian-laundering-millions-for-lazarus-hackers-arrested-in-argentina/
China-Nexus Threat Group ‘Velvet Ant’ Exploits Zero-Day on Cisco Nexus Switches
https://www.sygnia.co/blog/china-threat-group-velvet-ant-cisco-zero-day/
Intercepting Mobile Application Traffic with Caido and Frida · Brown Fine Security
https://brownfinesecurity.com/blog/intercepting-mobile-traffic-with-caido-and-frida/
C++ Unwind Exception Metadata: A Hidden Reverse Engineering Bonanza — Möbius Strip Reverse Engineering
http://www.msreverseengineering.com/blog/2024/8/20/c-unwind-metadata-1
AppDomainManager Injectionを悪用したマルウェアによる攻撃について | NTTセキュリティテクニカルブログ
https://jp.security.ntt/tech_blog/appdomainmanager-injection
Hackers now use AppDomain Injection to drop CobaltStrike beacons
https://www.bleepingcomputer.com/news/security/hackers-now-use-appdomain-injection-to-drop-cobaltstrike-beacons/
Hackers are exploiting critical bug in LiteSpeed Cache plugin
https://www.bleepingcomputer.com/news/security/hackers-are-exploiting-critical-bug-in-litespeed-cache-plugin/
Oil Giant Halliburton Confirms Cyber Incident, Details Scarce - SecurityWeek
https://www.securityweek.com/oil-giant-halliburton-confirms-cyberattack-details-scarce/
Threat Tracking: Analysis of puNK-003’s Lilith RAT ported to AutoIt Script | by S2W | S2W BLOG | Aug, 2024 | Medium
https://medium.com/s2wblog/threat-tracking-analysis-of-punk-003s-lilith-rat-ported-to-autoit-script-30dd59e68213
FBI Fails to Secure Sensitive Storage Media Destined for Destruction, Audit Reveals - SecurityWeek
https://www.securityweek.com/fbi-exposing-sensitive-data-via-improper-handling-of-storage-devices-audit/
From Windows drivers to a almost fully working EDR // WhiteFlag
https://blog.whiteflag.io/blog/from-windows-drivers-to-a-almost-fully-working-edr/
NTLM Credential Theft in Python Windows Applications – Horizon3.ai
https://www.horizon3.ai/attack-research/disclosures/ntlm-credential-theft-in-python-windows-applications/
Greasy Opal's CAPTCHA solver still serving cybercrime after 16 years
https://www.bleepingcomputer.com/news/security/greasy-opals-captcha-solver-still-serving-cybercrime-after-16-years/
Home – Horizon3.ai
http://Horizon3.ai
Cisco Patches High-Severity Vulnerability Reported by NSA - SecurityWeek
https://www.securityweek.com/cisco-patches-high-severity-vulnerability-reported-by-nsa/
Focus on What Matters Most: Exposure Management and Your Attack Surface
https://thehackernews.com/2024/08/focus-on-what-matters-most-exposure.html
Local Networks Go Global When Domain Names Collide – Krebs on Security
https://krebsonsecurity.com/2024/08/local-networks-go-global-when-domain-names-collide/
New PEAKLIGHT Dropper Deployed in Attacks Targeting Windows with Malicious Movie Downloads
https://thehackernews.com/2024/08/new-peaklight-dropper-deployed-in.html
Exploiting a remote heap overflow with a custom TCP stack
https://www.synacktiv.com/en/publications/exploiting-a-remote-heap-overflow-with-a-custom-tcp-stack
Log in to X / X
https://twitter.com/coolnalu
Latvian Hacker Extradited to U.S. for Role in Karakurt Cybercrime Group
https://thehackernews.com/2024/08/latvian-hacker-extradited-to-us-for.html
Degraded Performance Issue Sparks Concern Among CrowdStrike Customers - SecurityWeek
https://www.securityweek.com/degraded-performance-issue-sparks-concern-among-crowdstrike-customers/
Rust-for-Malware-Development/Malware-Samples/InfoStealer/Stealer at main · Whitecat18/Rust-for-Malware-Development · GitHub
https://github.com/Whitecat18/Rust-for-Malware-Development/tree/main/Malware-Samples/InfoStealer/Stealer
USDoD Hacker Behind $3 Billion SSN Leak Reveals Himself as Brazilian Citizen
https://hackread.com/usdod-hacker-ssn-leak-reveals-brazilian-citizen/
New Qilin Ransomware Attack Uses VPN Credentials, Steals Chrome Data
https://thehackernews.com/2024/08/new-qilin-ransomware-attack-uses-vpn.html
The changing dynamics of ransomware as law enforcement strikes - Help Net Security
https://www.helpnetsecurity.com/2024/08/23/changing-dynamics-of-ransomware/
New macOS Malware "Cthulhu Stealer" Targets Apple Users' Data
https://thehackernews.com/2024/08/new-macos-malware-cthulhu-stealer.html
Russian Member of Karakurt Cyber Extortion Gang Charged in US - SecurityWeek
https://www.securityweek.com/russian-member-of-karakurt-cyber-extortion-gang-charged-in-us/
C++ Unwind Exception Metadata: A Hidden Reverse Engineering Bonanza — Möbius Strip Reverse Engineering
https://www.msreverseengineering.com/blog/2024/8/20/c-unwind-metadata-1
Exploitation Expected for Flaw in Caching Plugin Installed on 5M WordPress Sites - SecurityWeek
https://www.securityweek.com/exploitation-expected-for-flaw-in-caching-plugin-installed-on-5m-wordpress-sites/
corMine 1 and 2 | Ignacio Gutiérrez Gómez
https://nnub.es/blog/en/ctf/corctf/2024/cormine/
The Iranians who hacked Trump's campaign have deep expertise | Reuters
https://www.reuters.com/world/trump-campaigns-iranian-hackers-have-dangerous-history-deep-expertise-2024-08-23/