Sophos Firewall vulnerable to critical remote code execution flaw
https://www.bleepingcomputer.com/news/security/sophos-firewall-vulnerable-to-critical-remote-code-execution-flaw/
Krispy Kreme breach, data theft claimed by Play ransomware gang
https://www.bleepingcomputer.com/news/security/krispy-kreme-breach-data-theft-claimed-by-play-ransomware-gang/
Massive live sports piracy ring with 812 million yearly visits taken offline
https://www.bleepingcomputer.com/news/security/massive-live-sports-piracy-ring-with-812-million-yearly-visits-taken-offline/
Romanian Netwalker ransomware affiliate sentenced to 20 years in prison
https://www.bleepingcomputer.com/news/security/romanian-netwalker-ransomware-affiliate-sentenced-to-20-years-in-prison/
I’m Lovin’ It: Exploiting McDonald’s APIs to hijack deliveries and order food for a penny
https://eaton-works.com/2024/12/19/mcdelivery-india-hack/
Lazarus targets nuclear-related organization with new malware | Securelist
https://securelist.com/lazarus-new-malware/115059/
Ascension: Health data of 5.6 million stolen in ransomware attack
https://www.bleepingcomputer.com/news/security/ascension-health-data-of-56-million-stolen-in-ransomware-attack/
[Research] Bypassing Windows Kernel Mitigations: Part1 - Overview (En) - hackyboiz
https://hackyboiz.github.io/2024/12/08/l0ch/bypassing-kernel-mitigation-part1/en/![[Research] Bypassing Windows Kernel Mitigations: Part1 - Overview (En) - hackyboiz](/image/screenshot/00508e52ef2533b08e0582facc7d74b1.webp)
security-research/pocs/linux/kernelctf/CVE-2024-50264_lts_cos/docs/exploit.md at 09335abb6b01ee706a5a5584278ef4c4c1d50bda · google/security-research · GitHub
https://github.com/google/security-research/blob/09335abb6b01ee706a5a5584278ef4c4c1d50bda/pocs/linux/kernelctf/CVE-2024-50264_lts_cos/docs/exploit.md
Malicious Rspack, Vant packages published using stolen NPM tokens
https://www.bleepingcomputer.com/news/security/malicious-rspack-vant-packages-published-using-stolen-npm-tokens/
CISA Adds Critical Flaw in BeyondTrust Software to Exploited Vulnerabilities List
https://thehackernews.com/2024/12/cisa-adds-critical-flaw-in-beyondtrust.html
Deobfuscation of Lumma Stealer | Ryan Weil
https://ryan-weil.github.io/posts/LUMMA-STEALER/
Deep inside TypeConfuseDelegate gadgetchain | by Jang | Dec, 2024 | Medium
https://testbnull.medium.com/deep-inside-typeconfusedelegate-gadgetchain-456915ed646a
Lazarus Group Spotted Targeting Nuclear Engineers with CookiePlus Malware
https://thehackernews.com/2024/12/lazarus-group-spotted-targeting-nuclear.html
Windows Internals Crash Course - YouTube
https://www.youtube.com/watch?v=I_nJltUokE0
US charges Russian-Israeli as suspected LockBit ransomware coder
https://www.bleepingcomputer.com/news/security/us-charges-russian-israeli-as-suspected-lockbit-ransomware-coder/
Learn Modern SOC and D&R Practices Using Autonomic Security Operations (ASO) Principles | by Anton Chuvakin | Anton on Security | Medium
https://medium.com/anton-on-security/learn-modern-soc-and-d-r-practices-using-autonomic-security-operations-aso-principles-88cdd265d504
apple-platform-security-guide.pdf
https://help.apple.com/pdf/security/en_US/apple-platform-security-guide.pdf
wicc-2023-slides.pdf
https://mrexodia.github.io/files/wicc-2023-slides.pdf