02/12
02/13
02/14
8 Posts

Intune Attack Paths — Part 1

https://posts.specterops.io/intune-attack-paths-part-1-4ad1882c1811
Intune Attack Paths — Part 1
5 Posts

The BadPilot campaign: Seashell Blizzard subgroup conducts multiyear global access operation | Microsoft Security Blog

https://www.microsoft.com/en-us/security/blog/2025/02/12/the-badpilot-campaign-seashell-blizzard-subgroup-conducts-multiyear-global-access-operation/
The BadPilot campaign: Seashell Blizzard subgroup conducts multiyear global access operation | Microsoft Security Blog
5 Posts

0patch Blog: Analysis of a Flaw in Microsoft's Patch for "copy2pwn" (CVE-2024-38213)

https://blog.0patch.com/2025/02/analysis-of-flaw-in-microsofts-patch.html
0patch Blog: Analysis of a Flaw in Microsoft's Patch for "copy2pwn" (CVE-2024-38213)
4 Posts

Dutch Police seizes 127 XHost servers, dismantles bulletproof hoster

https://www.bleepingcomputer.com/news/legal/dutch-police-seizes-127-xhost-servers-dismantles-bulletproof-hoster/
Dutch Police seizes 127 XHost servers, dismantles bulletproof hoster
4 Posts

Chinese espionage tools deployed in RA World ransomware attack

https://www.bleepingcomputer.com/news/security/chinese-espionage-tools-deployed-in-ra-world-ransomware-attack/
Chinese espionage tools deployed in RA World ransomware attack
4 Posts

Curious case of AD CS ESC15 vulnerable instance and its manual exploitation | Start With Linux | Mannu Linux

https://www.mannulinux.org/2025/02/Curious-case-of-AD-CS-ESC15-vulnerable-instance-and-its-manual-exploitation.html
Curious case of AD CS ESC15 vulnerable instance and its manual exploitation | Start With Linux | Mannu Linux
4 Posts

"Jeff", COM-only keylogger | vx-api

https://vx-api.gitbook.io/vx-api/my-projects/jeff-com-only-keylogger
"Jeff", COM-only keylogger | vx-api
3 Posts

China-linked Espionage Tools Used in Ransomware Attacks | Symantec Enterprise Blogs

https://www.security.com/threat-intelligence/chinese-espionage-ransomware
China-linked Espionage Tools Used in Ransomware Attacks | Symantec Enterprise Blogs
3 Posts

Path masquerading: Hide in plain sight

http://zerosalarium.com/2025/01/path-masquerading-hide-in-plain-sight.html
Path masquerading: Hide in plain sight
3 Posts

DeepSeek Exposes Major Cybersecurity Blind Spot - SecurityWeek

https://www.securityweek.com/deepseek-exposes-major-cybersecurity-blind-spot/
DeepSeek Exposes Major Cybersecurity Blind Spot - SecurityWeek
3 Posts

Hacker leaks account data of 12 million Zacks Investment users

https://www.bleepingcomputer.com/news/security/hacker-leaks-account-data-of-12-million-zacks-investment-users/
Hacker leaks account data of 12 million Zacks Investment users
3 Posts

Leaking the email of any YouTube user for $10,000

https://brutecat.com/articles/leaking-youtube-emails
Leaking the email of any YouTube user for $10,000
3 Posts

Unpacking Pyarmor v8+ scripts | cyber.wtf

https://cyber.wtf/2025/02/12/unpacking-pyarmor-v8-scripts/
Unpacking Pyarmor v8+ scripts | cyber.wtf