Dropping a 0 day: Parallels Desktop Repack Root Privilege Escalation – Mickey's Blogs – Exploring the world with my sword of debugger :)
https://jhftss.github.io/Parallels-0-day/
Darcula PhaaS can now auto-generate phishing kits for any brand
https://www.bleepingcomputer.com/news/security/darcula-phaas-can-now-auto-generate-phishing-kits-for-any-brand/
Reversing, Discovering, And Exploiting A TP-Link Router Vulnerability — CVE-2024–54887 | by Joward | Jan, 2025 | InfoSec Write-ups
https://infosecwriteups.com/reversing-discovering-and-exploiting-a-tp-link-router-vulnerability-cve-2024-54887-341552c4b104
DeceptiveDevelopment targets freelance developers
https://www.welivesecurity.com/en/eset-research/deceptivedevelopment-targets-freelance-developers/
A Deep Dive into Brute Ratel C4 payloads – CYBER GEEKS
https://cybergeeks.tech/a-deep-dive-into-brute-ratel-c4-payloads/
DPRK DriverEasy & ChromeUpdate Deep Dive
https://www.kandji.io/blog/drivereasy
Log in to X / X
https://x.com/bhaggs
North Korean Hackers Target Freelance Developers in Job Scam to Deploy Malware
https://thehackernews.com/2025/02/north-korean-hackers-target-freelance.html
Microsoft Patches Actively Exploited Power Pages Privilege Escalation Vulnerability
https://thehackernews.com/2025/02/microsoft-patches-actively-exploited.html
Atlassian Patches Critical Vulnerabilities in Confluence, Crowd - SecurityWeek
https://www.securityweek.com/atlassian-patches-critical-vulnerabilities-in-confluence-crowd/
CISA and FBI: Ghost ransomware breached orgs in 70 countries
https://www.bleepingcomputer.com/news/security/cisa-and-fbi-ghost-ransomware-breached-orgs-in-70-countries/
Chinese APT Tools Found in Ransomware Schemes, Blurring Attribution Lines - SecurityWeek
https://www.securityweek.com/chinese-apt-tools-found-in-ransomware-schemes-blurring-attribution-lines/
Mining Company NioCorp Loses $500,000 in BEC Hack - SecurityWeek
https://www.securityweek.com/mining-company-niocorp-loses-500000-in-bec-hack/
China-Linked Attackers Exploit Check Point Flaw to Deploy ShadowPad and Ransomware
https://thehackernews.com/2025/02/chinese-linked-attackers-exploit-check.html
Analyzing DEEP#DRIVE: North Korean Threat Actors Observed Exploiting Trusted Platforms for Targeted Attacks - Securonix
https://www.securonix.com/blog/analyzing-deepdrive-north-korean-threat-actors-observed-exploiting-trusted-platforms-for-targeted-attacks/
Grok Conversation / X
https://x.com/i/grok/share/guS4McaTZ41WY96unwH0fQCCZ
Cellular Security | Florida Institute for Cybersecurity Research
https://cellularsecurity.org/ransacked
New NailaoLocker ransomware used against EU healthcare orgs
https://www.bleepingcomputer.com/news/security/new-nailaolocker-ransomware-used-against-eu-healthcare-orgs/
Microsoft testing fix for Windows 11 bug breaking SSH connections
https://www.bleepingcomputer.com/news/microsoft/microsoft-testing-fix-for-windows-11-bug-breaking-ssh-connections/
Cybercriminals Use Eclipse Jarsigner to Deploy XLoader Malware via ZIP Archives
https://thehackernews.com/2025/02/cybercriminals-use-eclipse-jarsigner-to.html
Black Basta ransomware gang's internal chat logs leak online
https://www.bleepingcomputer.com/news/security/black-basta-ransomware-gang-s-internal-chat-logs-leak-online/