Top 10 web hacking techniques of 2024 | PortSwigger Research
https://portswigger.net/research/top-10-web-hacking-techniques-of-2024
AMD: Microcode Signature Verification Vulnerability · Advisory · google/security-research · GitHub
https://github.com/google/security-research/security/advisories/GHSA-4xq7-4mgh-gp6w
Exploiting Reversing (ER) series: article 04 | macOS/iOS (part 01) – Exploit Reversing
https://exploitreversing.com/2025/02/04/exploiting-reversing-er-series-article-04/
Chinese cyberspies use new SSH backdoor in network device hacks
https://www.bleepingcomputer.com/news/security/chinese-cyberspies-use-new-ssh-backdoor-in-network-device-hacks/
GrubHub data breach impacts customers, drivers, and merchants
https://www.bleepingcomputer.com/news/security/grubhub-data-breach-impacts-customers-drivers-and-merchants/
macOS FlexibleFerret | Further Variants of DPRK Malware Family Unearthed
https://www.sentinelone.com/blog/macos-flexibleferret-further-variants-of-dprk-malware-family-unearthed/
20250204_ddos.pdf
https://www.nisc.go.jp/pdf/news/press/20250204_ddos.pdf
8 Million Requests Later, We Made The SolarWinds Supply Chain Attack Look Amateur
https://labs.watchtowr.com/8-million-requests-later-we-made-the-solarwinds-supply-chain-attack-look-amateur/
Netgear warns users to patch critical WiFi router vulnerabilities
https://www.bleepingcomputer.com/news/security/netgear-warns-users-to-patch-critical-wifi-router-vulnerabilities/
California man steals $50 million using fake investment sites, gets 7 years
https://www.bleepingcomputer.com/news/security/california-man-steals-50-million-using-fake-investment-sites-gets-7-years/
Microsoft Patches Critical Azure AI Face Service Vulnerability with CVSS 9.9 Score
https://thehackernews.com/2025/02/microsoft-patches-critical-azure-ai.html
7-Zip MotW bypass exploited in zero-day attacks against Ukraine
https://www.bleepingcomputer.com/news/security/7-zip-motw-bypass-exploited-in-zero-day-attacks-against-ukraine/
Google Patches 47 Android Security Flaws, Including Actively Exploited CVE-2024-53104
https://thehackernews.com/2025/02/google-patches-47-android-security.html
AMD SEV-SNP Vulnerability Allows Malicious Microcode Injection with Admin Access
https://thehackernews.com/2025/02/amd-sev-snp-vulnerability-allows.html
Privilege Escalation in Active Directory Domain Services: CVE-2025-21293 Exploit Revealed with PoC Code
https://securityonline.info/privilege-escalation-in-active-directory-domain-services-cve-2025-21293-exploit-revealed-with-poc-code/
North Korean Hackers Deploy FERRET Malware via Fake Job Interviews on macOS
https://thehackernews.com/2025/02/north-korean-hackers-deploy-ferret.html
Malicious Go Package Exploits Module Mirror Caching for Persistent Remote Access
https://thehackernews.com/2025/02/malicious-go-package-exploits-module.html
Taiwan Bans DeepSeek AI Over National Security Concerns, Citing Data Leakage Risks
https://thehackernews.com/2025/02/taiwan-bans-deepseek-ai-over-national.html
MalwareBazaar | 154-16-118-168
https://bazaar.abuse.ch/browse/tag/154-16-118-168/
注意喚起 - NISC
https://www.nisc.go.jp/news/press/tyuuikanki.html
K 메신저로 유포된 'APT37' 그룹의 악성 HWP 사례 분석
https://www.genians.co.kr/blog/threat_intelligence/k-messenger