12/10

Cleo Software Actively Being Exploited in the Wild CVE-2024-50623 | Huntress

https://www.huntress.com/blog/threat-advisory-oh-no-cleo-cleo-software-actively-being-exploited-in-the-wild
Cleo Software Actively Being Exploited in the Wild CVE-2024-50623 | Huntress

An offensive Rust encore - hn security

https://security.humanativaspa.it/an-offensive-rust-encore/
An offensive Rust encore - hn security

Hackers Weaponize Visual Studio Code Remote Tunnels for Cyber Espionage

https://thehackernews.com/2024/12/hackers-weaponize-visual-studio-code.html
Hackers Weaponize Visual Studio Code Remote Tunnels for Cyber Espionage

Chinese hackers use Visual Studio Code tunnels for remote access

https://www.bleepingcomputer.com/news/security/chinese-hackers-use-visual-studio-code-tunnels-for-remote-access/
Chinese hackers use Visual Studio Code tunnels for remote access

New Cleo zero-day RCE flaw exploited in data theft attacks

https://www.bleepingcomputer.com/news/security/new-cleo-zero-day-rce-flaw-exploited-in-data-theft-attacks/
New Cleo zero-day RCE flaw exploited in data theft attacks

LDAP Queries for Offensive and Defensive Operations | by EricaZelic | Nov, 2024 | Medium

https://ericazelic.medium.com/ldap-queries-for-offensive-and-defensive-operations-4b035b816814
LDAP Queries for Offensive and Defensive Operations | by EricaZelic | Nov, 2024 | Medium

Advanced Fuzzing With LibAFL - Dominik Maier - Ekoparty 2024 - YouTube

https://youtu.be/FI7C37lz4Rg?si=NsVanXSabkhf9Ugh
Advanced Fuzzing With LibAFL - Dominik Maier - Ekoparty 2024 - YouTube

MalwareBazaar | muddywater

https://bazaar.abuse.ch/browse/tag/muddywater/
MalwareBazaar | muddywater

FTC distributes $72 million in Fortnite refunds from Epic Games

https://www.bleepingcomputer.com/news/legal/ftc-distributes-72-million-in-fortnite-refunds-from-epic-games/
FTC distributes $72 million in Fortnite refunds from Epic Games

Microsoft Rolls Out Default NTLM Relay Attack Mitigations - SecurityWeek

https://www.securityweek.com/microsoft-rolls-out-default-ntlm-relay-attack-mitigations/
Microsoft Rolls Out Default NTLM Relay Attack Mitigations - SecurityWeek

Security Update Guide - Microsoft

https://msft.it/60119yPTS
Security Update Guide - Microsoft

SignalSDR Pro | Crowd Supply

https://crowdsupply.com/signalens/signalsdr-pro
SignalSDR Pro | Crowd Supply

US sanctions Chinese firm for hacking firewalls in ransomware attacks

https://www.bleepingcomputer.com/news/security/us-sanctions-chinese-firm-for-hacking-firewalls-in-ragnarok-ransomware-attacks/
US sanctions Chinese firm for hacking firewalls in ransomware attacks

Microsoft 365 outage takes down Office web apps, admin center

https://www.bleepingcomputer.com/news/microsoft/microsoft-365-outage-takes-down-office-web-apps-admin-center/
Microsoft 365 outage takes down Office web apps, admin center

Fake Recruiters Distribute Banking Trojan via Malicious Apps in Phishing Scam

https://thehackernews.com/2024/12/fake-recruiters-distribute-banking.html
Fake Recruiters Distribute Banking Trojan via Malicious Apps in Phishing Scam

Compromising OpenWrt Supply Chain via Truncated SHA-256 Collision and Command Injection - Flatt Security Research

https://flatt.tech/research/posts/compromising-openwrt-supply-chain-sha256-collision/
Compromising OpenWrt Supply Chain via Truncated SHA-256 Collision and Command Injection - Flatt Security Research

New Zero-Detection Variant of Melofee Backdoor from Winnti Strikes RHEL 7.9

https://blog.xlab.qianxin.com/analysis_of_new_melofee_variant_en/
New Zero-Detection Variant of Melofee Backdoor from Winnti Strikes RHEL 7.9

Radiant links $50 million crypto heist to North Korean hackers

https://www.bleepingcomputer.com/news/security/radiant-links-50-million-crypto-heist-to-north-korean-hackers/
Radiant links $50 million crypto heist to North Korean hackers

MalwareBazaar | SHA256 989448c49aa2cf2e4b4726d866b6852bb3c19d7d6d2f8f2ff867cde7c0769c6f

https://bazaar.abuse.ch/sample/989448c49aa2cf2e4b4726d866b6852bb3c19d7d6d2f8f2ff867cde7c0769c6f/
MalwareBazaar | SHA256 989448c49aa2cf2e4b4726d866b6852bb3c19d7d6d2f8f2ff867cde7c0769c6f