Custom "Pygmy Goat" malware used in Sophos Firewall hack on govt network
https://www.bleepingcomputer.com/news/security/custom-pygmy-goat-malware-used-in-sophos-firewall-hack-on-govt-network/
Vercel Security Checkpoint
https://redteamrecipe.com/satellite-hacking-demystified
Nokia investigates breach after hacker claims to steal source code
https://www.bleepingcomputer.com/news/security/nokia-investigates-breach-after-hacker-claims-to-steal-source-code/
ncsc-mar-pygmy-goat.pdf
https://www.ncsc.gov.uk/static-assets/documents/malware-analysis-reports/pygmy-goat/ncsc-mar-pygmy-goat.pdf
DocuSign's Envelopes API abused to send realistic fake invoices
https://www.bleepingcomputer.com/news/security/docusigns-envelopes-api-abused-to-send-realistic-fake-invoices/
Chris Rock – Darknet Diaries
https://darknetdiaries.com/episode/151/
Python RAT with a Nice Screensharing Feature - SANS Internet Storm Center
https://isc.sans.edu/diary/31414
VirusTotal - File - c326507c32940259c8d59681a3430dc16f29f9e8b865876323549b0654ebfbae
https://www.virustotal.com/gui/file/c326507c32940259c8d59681a3430dc16f29f9e8b865876323549b0654ebfbae
MystersCat · GitHub
https://github.com/MystersCat
Schneider Electric confirms dev platform breach after hacker steals data
https://www.bleepingcomputer.com/news/security/schneider-electric-confirms-dev-platform-breach-after-hacker-steals-data/
Canadian Suspect Arrested Over Snowflake Data Breach and Extortion Attacks
https://thehackernews.com/2024/11/canadian-suspect-arrested-over.html
Upcoming hardening in PHP
https://dustri.org/b/upcoming-hardening-in-php.html
Canadian authorities arrested alleged Snowflake hacker
https://securityaffairs.com/170587/cyber-crime/canadian-authorities-arrested-snowflake-hacker.html
Interpol disrupts cybercrime activity on 22,000 IP addresses, arrests 41
https://www.bleepingcomputer.com/news/security/interpol-disrupts-cybercrime-activity-on-22-000-ip-addresses-arrests-41/
Windows Server 2025 Security Book | Microsoft Community Hub
https://techcommunity.microsoft.com/t5/security-compliance-and-identity/windows-server-2025-security-book/ba-p/4283981
North Korean remote workers landing jobs in the West | ThreatLabz
https://www.zscaler.com/blogs/security-research/pyongyang-your-payroll-rise-north-korean-remote-workers-west
Malware Campaign Uses Ethereum Smart Contracts to Control npm Typosquat Packages
https://thehackernews.com/2024/11/malware-campaign-uses-ethereum-smart.html
FBI Seeks Public Help to Identify Chinese Hackers Behind Global Cyber Intrusions
https://thehackernews.com/2024/11/fbi-seeks-public-help-to-identify.html
Cloudy With a Chance of RATs: Unveiling APT36 and the Evolution of ElizaRAT - Check Point Research
https://research.checkpoint.com/2024/the-evolution-of-transparent-tribes-new-malware/
Nighthawk 0.3.3 Sneak Peak : Memory Hiding on Vimeo
https://vimeo.com/1026296790
Detecting Microsoft Entra ID Primary Refresh Token Abuse with Next-Gen SIEM
https://www.crowdstrike.com/en-us/blog/detecting-microsoft-entra-id-primary-refresh-token-abuse-next-gen-siem/
APT-C-08(蔓灵花)组织:多元攻击载体大揭秘
https://mp.weixin.qq.com/s/pvm0QUAMS0U5dIge1ImcCQ
US warns of last-minute Iranian and Russian election influence ops
https://www.bleepingcomputer.com/news/security/us-warns-of-last-minute-iranian-and-russian-election-influence-ops/
FBI Statement on Inauthentic Use of Bureau Name, Insignia in Promoting False Election-Related Narratives — FBI
https://www.fbi.gov/news/press-releases/fbi-statement-on-inauthentic-use-of-bureau-name-and-insignia