WorstFit: Unveiling Hidden Transformers in Windows ANSI! | Orange Tsai
https://blog.orange.tw/posts/2025-01-worstfit-unveiling-hidden-transformers-in-windows-ansi/
Telefónica confirms internal ticketing system breach after data leak
https://www.bleepingcomputer.com/news/security/telefonica-confirms-internal-ticketing-system-breach-after-data-leak/
Docker Desktop blocked on Macs due to false malware alert
https://www.bleepingcomputer.com/news/security/docker-desktop-blocked-on-macs-due-to-false-malware-alert/
Malware Analysis Series (MAS): article 09 | Shellcode – Exploit Reversing
https://exploitreversing.com/2025/01/08/malware-analysis-series-mas-article-09/
Treasury hackers also breached US foreign investments review office
https://www.bleepingcomputer.com/news/security/treasury-hackers-also-breached-us-foreign-investments-review-office/
Google Project Zero Researcher Uncovers Zero-Click Exploit Targeting Samsung Devices
https://thehackernews.com/2025/01/google-project-zero-researcher-uncovers.html
Exploiting SSTI in a Modern Spring Boot Application (3.3.4) / modzero
https://modzero.com/en/blog/spring_boot_ssti/
Proton worldwide outage caused by Kubernetes migration, software change
https://www.bleepingcomputer.com/news/technology/proton-worldwide-outage-caused-by-kubernetes-migration-software-change/
STIIIZY data breach exposes cannabis buyers’ IDs and purchases
https://www.bleepingcomputer.com/news/security/stiiizy-data-breach-exposes-cannabis-buyers-ids-and-purchases/
Proton Mail still down as Proton recovers from worldwide outage
https://www.bleepingcomputer.com/news/technology/proton-mail-still-down-as-proton-recovers-from-worldwide-outage/
AI-Driven Ransomware FunkSec Targets 85 Victims Using Double Extortion Tactics
https://thehackernews.com/2025/01/ai-driven-ransomware-funksec-targets-85.html
Do Secure-By-Design Pledges Come With Stickers? - Ivanti Connect Secure RCE (CVE-2025-0282)
https://labs.watchtowr.com/do-secure-by-design-pledges-come-with-stickers-ivanti-connect-secure-rce-cve-2025-0282/
RE//verse Conference - Schedule
https://re-verse.io/schedule.html
Chinese State-Sponsored RedDelta Targeted Taiwan, Mongolia, and Southeast Asia with Adapted PlugX Infection Chain
https://www.recordedfuture.com/research/reddelta-chinese-state-sponsored-group-targets-mongolia-taiwan-southeast-asia
Microsoft to force install new Outlook on Windows 10 PCs in February
https://www.bleepingcomputer.com/news/microsoft/microsoft-to-force-install-new-outlook-on-windows-10-pcs-in-february/
RedDelta Deploys PlugX Malware to Target Mongolia and Taiwan in Espionage Campaigns
https://thehackernews.com/2025/01/reddelta-deploys-plugx-malware-to.html
New Web3 attack exploits transaction simulations to steal crypto
https://www.bleepingcomputer.com/news/security/new-web3-attack-exploits-transaction-simulations-to-steal-crypto/
US charges operators of cryptomixers linked to ransomware gangs
https://www.bleepingcomputer.com/news/security/us-charges-operators-of-cryptomixers-linked-to-ransomware-gangs/