Zen and the Art of Microcode Hacking - Google Bug Hunters
https://bughunters.google.com/blog/5424842357473280/zen-and-the-art-of-microcode-hacking
New Method to Leverage Unsafe Reflection and Deserialisation to RCE on Rails - elttam
https://www.elttam.com/blog/rails-sqlite-gadget-rce/
Detection Studio – by north.sh
https://detection.studio/
Dark Caracal Uses Poco RAT to Target Spanish-Speaking Enterprises in Latin America
https://thehackernews.com/2025/03/dark-caracal-uses-poco-rat-to-target.html
Toronto Zoo shares update on last year's ransomware attack
https://www.bleepingcomputer.com/news/security/toronto-zoo-shares-update-on-last-years-ransomware-attack/
MalwareBazaar | 144-91-92-251
https://bazaar.abuse.ch/browse/tag/144-91-92-251/
JSAC2025 開催レポート~DAY 2~ - JPCERT/CC Eyes | JPCERTコーディネーションセンター公式ブログ
https://blogs.jpcert.or.jp/ja/2025/03/jsac2025day2.html
Vim Users Warned: Crafted TAR Files Could Trigger Code Execution (CVE-2025-27423)
https://securityonline.info/vim-users-warned-crafted-tar-files-could-trigger-code-execution-cve-2025-27423/
Silk Typhoon hackers now target IT supply chains to breach networks
https://www.bleepingcomputer.com/news/security/silk-typhoon-hackers-now-target-it-supply-chains-to-breach-networks/
YouTube warns of AI-generated video of its CEO used in phishing attacks
https://www.bleepingcomputer.com/news/security/youtube-warns-of-ai-generated-video-of-its-ceo-used-in-phishing-attacks/
Silk Typhoon targeting IT supply chain | Microsoft Security Blog
https://www.microsoft.com/en-us/security/blog/2025/03/05/silk-typhoon-targeting-it-supply-chain/
In-store physical Pentest: feedback on a real case study - Hackmosphere
https://www.hackmosphere.fr/in-store-physical-pentest-feedback-on-a-real-case-study/?lang=en
ransomware_map/OCD_WorldWatch_Ransomware-ecosystem-map.pdf at main · cert-orangecyberdefense/ransomware_map · GitHub
https://github.com/cert-orangecyberdefense/ransomware_map/blob/main/OCD_WorldWatch_Ransomware-ecosystem-map.pdf
BadBox malware disrupted on 500K infected Android devices
https://www.bleepingcomputer.com/news/security/badbox-malware-disrupted-on-500k-infected-android-devices/
Trump’s offensive cyber team takes shape - POLITICO
https://www.politico.com/newsletters/weekly-cybersecurity/2025/03/03/trumps-offensive-cyber-team-takes-shape-00206907
Malware Analysis Space: Deobfuscating APT28’s HTA Trojan: A Deep Dive into VBE Techniques & Multi-Layer Obfuscation
https://malwareanalysisspace.blogspot.com/2025/03/deobfuscating-apt28s-hta-trojan-deep.html
US charges Chinese hackers linked to critical infrastructure breaches
https://www.bleepingcomputer.com/news/security/us-charges-chinese-hackers-linked-to-critical-infrastructure-breaches/
China Hackers Behind US Treasury Breach Caught Targeting IT Supply Chain - SecurityWeek
https://www.securityweek.com/china-hackers-behind-us-treasury-breach-caught-targeting-it-supply-chain/
Fake BianLian ransom notes mailed to US CEOs in postal mail scam
https://www.bleepingcomputer.com/news/security/fake-bianlian-ransom-notes-mailed-to-us-ceos-in-postal-mail-scam/
Chinese APT Lotus Panda Targets Governments With New Sagerunex Backdoor Variants
https://thehackernews.com/2025/03/chinese-apt-lotus-panda-targets.html
China-Linked Silk Typhoon Expands Cyber Attacks to IT Supply Chains for Initial Access
https://thehackernews.com/2025/03/china-linked-silk-typhoon-expands-cyber.html
Seven Malicious Go Packages Found Deploying Malware on Linux and macOS Systems
https://thehackernews.com/2025/03/seven-malicious-go-packages-found.html