GitHub - edwardzpeng/presentations
https://github.com/edwardzpeng/presentations
Over 16,000 Fortinet devices compromised with symlink backdoor
https://www.bleepingcomputer.com/news/security/over-16-000-fortinet-devices-compromised-with-symlink-backdoor/
GitHub - harishsg993010/damn-vulnerable-MCP-server: Damn Vulnerable MCP Server
https://github.com/harishsg993010/damn-vulnerable-MCP-server
Control Flow Hijacking via Data Pointers | Legacyy
https://www.legacyy.xyz/defenseevasion/windows/2025/04/16/control-flow-hijacking-via-data-pointers.html
Windows NTLM hash leak flaw exploited in phishing attacks on governments
https://www.bleepingcomputer.com/news/security/windows-ntlm-hash-leak-flaw-exploited-in-phishing-attacks-on-governments/
Microsoft: Office 2016 and Office 2019 reach end of support in October
https://www.bleepingcomputer.com/news/microsoft/microsoft-office-2016-and-office-2019-reach-end-of-support-in-october/
Ahold Delhaize confirms data theft after INC ransomware claims attack
https://www.bleepingcomputer.com/news/security/ahold-delhaize-confirms-data-theft-after-inc-ransomware-claims-attack/
Apple Patches Two Actively Exploited iOS Flaws Used in Sophisticated Targeted Attacks
https://thehackernews.com/2025/04/apple-patches-two-actively-exploited.html
GitHub - R00tkitSMM/Pishi: Pishi is a code coverage tool like kcov for macOS.
https://github.com/R00tkitSMM/Pishi/
Call for Papers • BSidesNYC
https://bsidesnyc.org/cfp/
Slow Pisces Targets Developers With Coding Challenges and Introduces New Customized Python Malware
https://unit42.paloaltonetworks.com/slow-pisces-new-custom-malware/
MITRE Hackers' Backdoor Has Targeted Windows for Years - SecurityWeek
https://www.securityweek.com/mitre-hackers-backdoor-has-targeted-windows-for-years/
New Windows Server emergency updates fix container launch issue
https://www.bleepingcomputer.com/news/microsoft/new-windows-server-emergency-updates-fix-container-launch-issue/
Chrome extensions with 6 million installs have hidden tracking code
https://www.bleepingcomputer.com/news/security/chrome-extensions-with-6-million-installs-have-hidden-tracking-code/
Hooking Context Swaps with ETW | Archie’s reversing diary
https://archie-osu.github.io/etw/hooking/2025/04/09/hooking-context-swaps-with-etw.html
CISA warns of increased breach risks following Oracle Cloud leak
https://www.bleepingcomputer.com/news/security/cisa-warns-of-increased-breach-risks-following-oracle-cloud-leak/
State-Sponsored Hackers Weaponize ClickFix Tactic in Targeted Malware Campaigns
https://thehackernews.com/2025/04/state-sponsored-hackers-weaponize.html
soc_chef | Security Operations Chef
https://mr-r3b00t.github.io/soc_chef/
Mustang Panda Targets Myanmar With StarProxy, EDR Bypass, and TONESHELL Updates
https://thehackernews.com/2025/04/mustang-panda-targets-myanmar-with.html
Krebs Exits SentinelOne After Security Clearance Pulled - SecurityWeek
https://www.securityweek.com/krebs-exits-sentinelone-after-security-clearance-pulled/
New Windows Task Scheduler Bugs Let Attackers Bypass UAC and Tamper with Logs
https://thehackernews.com/2025/04/experts-uncover-four-new-privilege.html
Release Autopsy 4.22.1 · sleuthkit/autopsy · GitHub
https://github.com/sleuthkit/autopsy/releases/tag/autopsy-4.22.1
PowerShell for Hackers: Exploitation Essentials | hetmehta.com
https://hetmehta.com/posts/powershell-for-hackers/
Mustang Panda: ToneShell and StarProxy | ThreatLabz
https://www.zscaler.com/blogs/security-research/latest-mustang-panda-arsenal-toneshell-and-starproxy-p1