tandasat.github.io/presentations/SAS2024/SAS2024 - Voyage below the OS.pdf at main · tandasat/tandasat.github.io · GitHub
https://github.com/tandasat/tandasat.github.io/blob/main/presentations/SAS2024/SAS2024%20-%20Voyage%20below%20the%20OS.pdf
Hackers exploit 52 zero-days on the first day of Pwn2Own Ireland
https://www.bleepingcomputer.com/news/security/hackers-exploit-52-zero-days-on-the-first-day-of-pwn2own-ireland/
Concealing payloads in URL credentials | PortSwigger Research
https://portswigger.net/research/concealing-payloads-in-url-credentials
Using Nix to Fuzz Test a PDF Parser (Part One) · mtlynch.io
https://mtlynch.io/nix-fuzz-testing-1/
tandasat.github.io/presentations/SAS2024 at main · tandasat/tandasat.github.io · GitHub
https://github.com/tandasat/tandasat.github.io/tree/main/presentations/SAS2024
SQL Injection Polyglots / nastystereo.com
https://nastystereo.com/security/sqli-polyglots.html
CISA Warns of Active Exploitation of Microsoft SharePoint Vulnerability (CVE-2024-38094)
https://thehackernews.com/2024/10/cisa-warns-of-active-exploitation-of.html
Beyond_Oberon-SAS2024.pdf
https://symbrk.rs/presentations/Beyond_Oberon-SAS2024.pdf
FortiGate admins report active exploitation 0-day. Vendor isn’t talking. - Ars Technica
https://arstechnica.com/security/2024/10/fortinet-stays-mum-on-critical-0-day-reportedly-under-active-exploitation/
Researchers Reveal 'Deceptive Delight' Method to Jailbreak AI Models
https://thehackernews.com/2024/10/researchers-reveal-deceptive-delight.html
Lazarus APT steals cryptocurrency and user data via a decoy MOBA game | Securelist
https://securelist.com/lazarus-apt-steals-crypto-with-a-tank-game/114282/
hack.lu 2024
http://hack.lu
GitHub - symbrkrs/ps5-uart: Interface for interacting with PlayStation 5 EMC and EFC
https://github.com/symbrkrs/ps5-uart
Ransomware Gangs Use LockBit's Fame to Intimidate Victims in Latest Attacks
https://thehackernews.com/2024/10/ransomware-gangs-use-lockbits-fame-to.html
Google to let businesses create curated Chrome Web Stores for extensions
https://www.bleepingcomputer.com/news/google/google-to-let-businesses-create-curated-chrome-web-stores-for-extensions/
TA866 Group Linked to New WarmCookie Malware in Espionage Campaign
https://hackread.com/ta866-group-warmcookie-malware-espionage-campaign/
Windows 11 KB5044380 preview update lets you remap the Copilot key
https://www.bleepingcomputer.com/news/microsoft/windows-11-kb5044380-preview-update-lets-you-remap-the-copilot-key/
The Global Surveillance Free-for-All in Mobile Ad Data – Krebs on Security
https://krebsonsecurity.com/2024/10/the-global-surveillance-free-for-all-in-mobile-ad-data/
Infosec/hacking videos recorded by Cooper (@Ministraitor)
https://administraitor.video/edition/Hack.lu/2024
Lazarus hackers used fake DeFi game to exploit Google Chrome zero-day
https://www.bleepingcomputer.com/news/security/lazarus-hackers-used-fake-defi-game-to-exploit-google-chrome-zero-day/
Fortinet warns of new critical FortiManager flaw used in zero-day attacks
https://www.bleepingcomputer.com/news/security/fortinet-warns-of-new-critical-fortimanager-flaw-used-in-zero-day-attacks/