Planned Parenthood confirms cyberattack as RansomHub claims breach
https://www.bleepingcomputer.com/news/security/planned-parenthood-confirms-cyberattack-as-ransomhub-claims-breach/
Veeam warns of critical RCE flaw in Backup & Replication software
https://www.bleepingcomputer.com/news/security/veeam-warns-of-critical-rce-flaw-in-backup-and-replication-software/
Russian GRU Unit Tied to Assassinations Linked to Global Cyber Sabotage and Espionage - SecurityWeek
https://www.securityweek.com/russian-gru-unit-tied-to-assassinations-linked-to-global-cyber-sabotage-and-espionage/
Revisiting the UDRL Part 3: Beacon User Data | Cobalt Strike
https://www.cobaltstrike.com/blog/revisiting-the-udrl-part-3-beacon-user-data
Fake OnlyFans cybercrime tool infects hackers with malware
https://www.bleepingcomputer.com/news/security/fake-onlyfans-cybercrime-tool-infects-hackers-with-malware/
Chaining N-days to Compromise All: Part 2 — Windows Kernel LPE (a.k.a Chrome Sandbox Escape) | by Theori Vulnerability Research | Theori BLOG
https://blog.theori.io/chaining-n-days-to-compromise-all-part-2-windows-kernel-lpe-a-k-a-chrome-sandbox-escape-44cb49d7a4f8
Direct Syscalls: A journey from high to low - RedOps - English
https://redops.at/en/blog/direct-syscalls-a-journey-from-high-to-low
Malware Attackers Using MacroPack to Deliver Havoc, Brute Ratel, and PhantomCore
https://thehackernews.com/2024/09/malware-attackers-using-macropack-to.html
Microchip Technology confirms data was stolen in cyberattack
https://www.bleepingcomputer.com/news/security/microchip-technology-confirms-data-was-stolen-in-cyberattack/
Threat actors using MacroPack to deploy Brute Ratel, Havoc and PhantomCore payloads
https://blog.talosintelligence.com/threat-actors-using-macropack/
Red team tool ‘MacroPack’ abused in attacks to deploy Brute Ratel
https://www.bleepingcomputer.com/news/security/red-team-tool-macropack-abused-in-attacks-to-deploy-brute-ratel/
Chaining N-days to Compromise All: Part 1 — Chrome Renderer RCE | by Theori Vulnerability Research | Mar, 2024 | Theori BLOG
https://blog.theori.io/chaining-n-days-to-compromise-all-part-1-chrome-renderer-rce-1afccf56721b
China's Volt Typhoon hackers cause changes in NSA operations, U.S. digital defenses - Washington Times
https://www.washingtontimes.com/news/2024/sep/4/chinas-volt-typhoon-hackers-cause-changes-in-nsa-o/
Office of Public Affairs | Five Russian GRU Officers and One Civilian Charged for Conspiring to Hack Ukrainian Government | United States Department of Justice
https://www.justice.gov/opa/pr/five-russian-gru-officers-and-one-civilian-charged-conspiring-hack-ukrainian-government
Revival Hijack - PyPI hijack technique exploited in the wild, puts 22K packages at risk | JFrog
https://jfrog.com/blog/revival-hijack-pypi-hijack-technique-exploited-22k-packages-at-risk/
Microchip Technology Confirms Personal Information Stolen in Ransomware Attack - SecurityWeek
https://www.securityweek.com/microchip-technology-confirms-personal-information-stolen-in-ransomware-attack/
Where do Detections come from? | Wirespeed
https://wirespeed.co/posts/where-do-detections-come-from
LiteSpeed Cache bug exposes 6 million WordPress sites to takeover attacks
https://www.bleepingcomputer.com/news/security/litespeed-cache-bug-exposes-6-million-wordpress-sites-to-takeover-attacks/
Two Nigerians Sentenced to Prison in US for BEC Fraud - SecurityWeek
https://www.securityweek.com/two-nigerians-sentenced-to-prison-in-us-for-bec-fraud/
U.S. Seizes 32 Pro-Russian Propaganda Domains in Major Disinformation Crackdown
https://thehackernews.com/2024/09/us-seizes-32-pro-russian-propaganda.html
New malicious web shell from the Tropic Trooper group is found in the Middle East | Securelist
https://securelist.com/new-tropic-trooper-web-shell-infection/113737/
US cracks down on Russian disinformation before 2024 election
https://www.bleepingcomputer.com/news/security/us-cracks-down-on-russian-disinformation-before-2024-election/
New Cross-Platform Malware KTLVdoor Discovered in Attack on Chinese Trading Firm
https://thehackernews.com/2024/09/new-cross-platform-malware-ktlvdoor.html
MalwareBazaar | 0x0-st
https://bazaar.abuse.ch/browse/tag/0x0-st/
Cisco Fixes Two Critical Flaws in Smart Licensing Utility to Prevent Remote Attacks
https://thehackernews.com/2024/09/cisco-fixes-two-critical-flaws-in-smart.html
Is Russian group APT28 behind the cyber attack on the German air traffic control agency (DFS)?
https://securityaffairs.com/168070/apt/apt28-cyber-attack-german-air-traffic-control-agency-dfs.html
Analysis Downloads.7z (MD5: 8E19180FBB0B7C2DE1A7F1810446FC71) Malicious activity - Interactive analysis ANY.RUN
https://app.any.run/tasks/297f7bcd-3070-4381-9168-561ff6f17016
Let’s Get Stacking! (Part 3) – Pavel Yosifovich
https://scorpiosoftware.net/2024/09/05/lets-get-stacking-part-3/
Hackers inject malicious JS in Cisco store to steal credit cards, credentials
https://www.bleepingcomputer.com/news/security/hackers-inject-malicious-js-in-cisco-store-to-steal-credit-cards-credentials/
Apache fixes critical OFBiz remote code execution vulnerability
https://www.bleepingcomputer.com/news/security/apache-fixes-critical-ofbiz-remote-code-execution-vulnerability/
Sensitive Data Intelligence & Security | 1touch.io
http://1Touch.io
Musician charged with $10M streaming royalties fraud using AI and bots
https://www.bleepingcomputer.com/news/security/musician-charged-with-10m-streaming-royalties-fraud-using-ai-and-bots/
DrayTek Vulnerabilities Added to CISA KEV Catalog Exploited in Global Campaign - SecurityWeek
https://www.securityweek.com/draytek-vulnerabilities-added-to-cisa-kev-catalog-exploited-in-global-campaign/
Event Schedule • BSidesNYC
https://bsidesnyc.org/schedule/
Windows Wi-Fi Driver RCE Vulnerability - CVE-2024-30078 - Crowdfense
https://www.crowdfense.com/windows-wi-fi-driver-rce-vulnerability-cve-2024-30078/