CSP Bypass Search
http://cspbypass.com
HTB: EvilCUPS | 0xdf hacks stuff
https://0xdf.gitlab.io/2024/10/02/htb-evilcups.html
China-Linked CeranaKeeper Targeting Southeast Asia with Data Exfiltration
https://thehackernews.com/2024/10/china-linked-ceranakeeper-targeting.html
PyPI Repository Found Hosting Fake Crypto Wallet Recovery Tools That Steal User Data
https://thehackernews.com/2024/10/pypi-repository-found-hosting-fake.html
Critical Zimbra RCE flaw exploited to backdoor servers using emails
https://www.bleepingcomputer.com/news/security/critical-zimbra-rce-flaw-actively-exploited-to-take-over-servers/
HTTP Parameter Pollution in 2024 ! | by Mahmoud M. Awali | Sep, 2024 | Medium
https://medium.com/@0xAwali/http-parameter-pollution-in-2024-32ec1b810f89
Fake Job Applications Deliver Dangerous More_eggs Malware to HR Professionals
https://thehackernews.com/2024/10/fake-job-applications-deliver-dangerous.html
After Code Execution, Researchers Show How CUPS Can Be Abused for DDoS Attacks - SecurityWeek
https://www.securityweek.com/after-code-execution-researchers-show-how-cups-can-be-abused-for-ddos-attacks/
Record-Breaking DDoS Attack Peaked at 3.8 Tbps, 2.14 Billion Pps - SecurityWeek
https://www.securityweek.com/record-breaking-ddos-attack-peaked-at-3-8-tbps-2-14-billion-pps/
How machine learning helps us hunt threats | Securelist
https://securelist.com/machine-learning-in-threat-hunting/114016/
Microsoft Office 2024 now available for Windows and macOS users
https://www.bleepingcomputer.com/news/microsoft/microsoft-office-2024-now-available-for-windows-and-macos-no-subscription-required/
Zero-Day Breach at Rackspace Sparks Vendor Blame Game - SecurityWeek
https://www.securityweek.com/zero-day-breach-at-rackspace-sparks-vendor-blame-game/
Zoom - VISS Calculator
http://viss.zoom.com
Critical Zimbra Vulnerability Exploited One Day After PoC Release - SecurityWeek
https://www.securityweek.com/critical-zimbra-vulnerability-exploited-one-day-after-poc-release/
Andariel Hacking Group Shifts Focus to Financial Attacks on U.S. Organizations
https://thehackernews.com/2024/10/andariel-hacker-group-shifts-focus-to.html
Police arrested four new individuals linked to the LockBit ransomware operation
https://securityaffairs.com/169225/cyber-crime/new-arrests-linked-to-lockbit-ransomware-group.html
Researchers Sound Alarm on Active Attacks Exploiting Critical Zimbra Postjournal Flaw
https://thehackernews.com/2024/10/researchers-sound-alarm-on-active.html
Rhadamanthys information stealer introduces AI-driven capabilities
https://securityaffairs.com/169253/malware/rhadamanthys-information-stealer-uses-ai.html
Risky Business #191 -- Nuclear weapons security and infosec - Risky Business
https://risky.biz/RB191/
US, Allies Release Guidance on Securing OT Environments - SecurityWeek
https://www.securityweek.com/us-allies-release-guidance-on-securing-ot-environments/
14 New DrayTek routers' flaws impacts over 700,000 devices in 168 countries
https://securityaffairs.com/169267/security/draytek-routers-flaws-impacts-700000-devices.html
Arc browser launches bug bounty program after fixing RCE bug
https://www.bleepingcomputer.com/news/security/arc-browser-launches-bug-bounty-program-after-fixing-rce-bug/
DrayTek fixed critical flaws in over 700,000 exposed routers
https://www.bleepingcomputer.com/news/security/draytek-fixed-critical-flaws-in-over-700-000-exposed-routers/
Alert: Adobe Commerce and Magento Stores Under Attack from CosmicSting Exploit
https://thehackernews.com/2024/10/alert-adobe-commerce-and-magento-stores.html
GitHub - passtheticket/CVE-2024-38200: CVE-2024-38200 - Microsoft Office NTLMv2 Disclosure Vulnerability
https://github.com/passtheticket/CVE-2024-38200