10/02
10/03
10/04
13 Posts

Project Zero: Effective Fuzzing: A Dav1d Case Study

https://googleprojectzero.blogspot.com/2024/10/effective-fuzzing-dav1d-case-study.html
Project Zero: Effective Fuzzing: A Dav1d Case Study
9 Posts

CSP Bypass Search

http://cspbypass.com
CSP Bypass Search
7 Posts

Release v0.9.0 · VirusTotal/yara-x · GitHub

https://github.com/VirusTotal/yara-x/releases/tag/v0.9.0
Release v0.9.0 · VirusTotal/yara-x · GitHub
5 Posts

GitHub - googleprojectzero/SockFuzzer

https://github.com/googleprojectzero/SockFuzzer
GitHub - googleprojectzero/SockFuzzer
4 Posts

FIN7 hackers launch deepfake nude “generator” sites to spread malware

https://www.bleepingcomputer.com/news/security/fin7-hackers-launch-deepfake-nude-generator-sites-to-spread-malware/
FIN7 hackers launch deepfake nude “generator” sites to spread malware
4 Posts

Microsoft and DOJ disrupt Russian FSB hackers' attack infrastructure

https://www.bleepingcomputer.com/news/security/microsoft-and-doj-seize-spear-phishing-domains-used-by-star-blizzard-russian-hackers/
Microsoft and DOJ disrupt Russian FSB hackers' attack infrastructure
3 Posts

Fraudsters imprisoned for scamming Apple out of 6,000 iPhones

https://www.bleepingcomputer.com/news/security/fraudsters-imprisoned-for-scamming-apple-out-of-6-000-iphones/
Fraudsters imprisoned for scamming Apple out of 6,000 iPhones
3 Posts

Unauthenticated SSRF (CVE-2024-41570) on Havoc C2 teamserver via spoofed demon agent //

https://blog.chebuya.com/posts/server-side-request-forgery-on-havoc-c2/
Unauthenticated SSRF (CVE-2024-41570) on Havoc C2 teamserver via spoofed demon agent //
3 Posts

LOLESXi

https://lolesxi-project.github.io/LOLESXi/
LOLESXi
3 Posts

MalwareBazaar | FLARC

https://bazaar.abuse.ch/browse/tag/FLARC/
MalwareBazaar | FLARC
3 Posts

Infostealer Malware Bypasses Google Chrome App-Bound Encryption | SpyCloud Labs

https://spycloud.com/blog/infostealers-bypass-new-chrome-security-feature/
Infostealer Malware Bypasses Google Chrome App-Bound Encryption | SpyCloud Labs
3 Posts

Analysis whyareyouherewho.ru/files/1.cmd Malicious activity - Interactive analysis ANY.RUN

https://app.any.run/tasks/af8d9cb6-ae17-40e1-badd-0afbddaeeb5a
Analysis whyareyouherewho.ru/files/1.cmd Malicious activity - Interactive analysis ANY.RUN
3 Posts

North Korean Hackers Using New VeilShell Backdoor in Stealthy Cyber Attacks

https://thehackernews.com/2024/10/north-korean-hackers-using-new.html
North Korean Hackers Using New VeilShell Backdoor in Stealthy Cyber Attacks
3 Posts

Hunting Vulnerable Kernel Drivers – VMware Security Blog

https://blogs.vmware.com/security/2023/10/hunting-vulnerable-kernel-drivers.html
Hunting Vulnerable Kernel Drivers – VMware Security Blog
3 Posts

LockBit Ransomware and Evil Corp Members Arrested and Sanctioned in Joint Global Effort

https://thehackernews.com/2024/10/lockbit-ransomware-and-evil-corp.html
LockBit Ransomware and Evil Corp Members Arrested and Sanctioned in Joint Global Effort
3 Posts

Over 4,000 Adobe Commerce, Magento shops hacked in CosmicSting attacks

https://www.bleepingcomputer.com/news/security/over-4-000-adobe-commerce-magento-shops-hacked-in-cosmicsting-attacks/
Over 4,000 Adobe Commerce, Magento shops hacked in CosmicSting attacks
3 Posts

DOJ, Microsoft seize more than 100 domains used by the FSB | CyberScoop

https://cyberscoop.com/doj-microsoft-fsb-espionage-star-blizzard/
DOJ, Microsoft seize more than 100 domains used by the FSB | CyberScoop
3 Posts

Google Adds New Pixel Security Features to Block 2G Exploits and Baseband Attacks

https://thehackernews.com/2024/10/android-14-adds-new-security-features.html
Google Adds New Pixel Security Features to Block 2G Exploits and Baseband Attacks
3 Posts

Reversing 'France Identité': the new French digital ID.

https://www.reversemode.com/2023/10/reversing-france-identite-new-french.html
Reversing 'France Identité': the new French digital ID.
3 Posts

INTERPOL Arrests 8 in Major Phishing and Romance Fraud Crackdown in West Africa

https://thehackernews.com/2024/10/interpol-arrests-8-in-major-phishing.html
INTERPOL Arrests 8 in Major Phishing and Romance Fraud Crackdown in West Africa
3 Posts

Not Black Mirror: Meta's smart glasses used to reveal someone's identity just by looking at them | Malwarebytes

https://www.malwarebytes.com/blog/news/2024/10/not-black-mirror-metas-smart-glasses-used-to-reveal-someones-identity-just-by-looking-at-them
Not Black Mirror: Meta's smart glasses used to reveal someone's identity just by looking at them | Malwarebytes
3 Posts

HTTP Parameter Pollution in 2024 ! | by Mahmoud M. Awali | Sep, 2024 | Medium

https://medium.com/@0xAwali/http-parameter-pollution-in-2024-32ec1b810f89
HTTP Parameter Pollution in 2024 ! | by Mahmoud M. Awali | Sep, 2024 | Medium
3 Posts

Cloudflare blocks largest recorded DDoS attack peaking at 3.8Tbps

https://www.bleepingcomputer.com/news/security/cloudflare-blocks-largest-recorded-ddos-attack-peaking-at-38tbps/
Cloudflare blocks largest recorded DDoS attack peaking at 3.8Tbps
3 Posts

Telegram revealed it shared U.S. user data with law enforcement

https://securityaffairs.com/169288/digital-id/telegramshared-u-s-user-data-with-law-enforcement.html
Telegram revealed it shared U.S. user data with law enforcement
3 Posts

Pwn2Own: WAN-to-LAN Exploit Showcase, Part 1 | Claroty

https://claroty.com/team82/research/pwn2own-wan-to-lan-exploit-showcase
Pwn2Own: WAN-to-LAN Exploit Showcase, Part 1 | Claroty
3 Posts

Dutch Police: ‘State actor’ likely behind recent data breach

https://www.bleepingcomputer.com/news/security/dutch-police-state-actor-likely-behind-recent-data-breach/
Dutch Police: ‘State actor’ likely behind recent data breach