New Russia-affiliated actor Void Blizzard targets critical sectors for espionage | Microsoft Security Blog
https://www.microsoft.com/en-us/security/blog/2025/05/27/new-russia-affiliated-actor-void-blizzard-targets-critical-sectors-for-espionage/
Adidas warns of data breach after customer service provider hack
https://www.bleepingcomputer.com/news/security/adidas-warns-of-data-breach-after-customer-service-provider-hack/
Dissecting the macOS 'AppleProcessHub' Stealer: Technical Analysis of a Multi-Stage Attack
https://www.kandji.io/blog/macos-appleprocesshub-stealer
Release v2.1.16 · CravateRouge/bloodyAD · GitHub
https://github.com/CravateRouge/bloodyAD/releases/tag/v2.1.16
Russian Hackers Breach 20+ NGOs Using Evilginx Phishing via Fake Microsoft Entra Pages
https://thehackernews.com/2025/05/russian-hackers-breach-20-ngos-using.html
Russian Laundry Bear cyberspies linked to Dutch Police hack
https://www.bleepingcomputer.com/news/security/russian-void-blizzard-cyberspies-linked-to-dutch-police-breach/
Russia-Linked Hackers Target Tajikistan Government with Weaponized Word Documents
https://thehackernews.com/2025/05/russia-linked-hackers-target-tajikistan.html
Employees Searching Payroll Portals on Google Tricked Into Sending Paychecks to Hackers
https://thehackernews.com/2025/05/employees-searching-payroll-portals-on.html
China-linked ‘Silk Typhoon’ hackers accessed Commvault cloud environments, person familiar says - Nextgov/FCW
https://www.nextgov.com/cybersecurity/2025/05/china-linked-silk-typhoon-hackers-accessed-commvault-cloud-environments-person-familiar-says/405579/
Windows Server emergency update fixes Hyper-V VM freezes, restart issues
https://www.bleepingcomputer.com/news/microsoft/windows-server-emergency-update-fixes-hyper-v-vm-freezes-restart-issues/
Windows Kernel Exploitation for Red Team Operators - YouTube
https://www.youtube.com/watch?v=uKLkNpSCa4o
Office of Public Affairs | Iranian Man Pleaded Guilty to Role in Robbinhood Ransomware | United States Department of Justice
https://www.justice.gov/opa/pr/iranian-man-pleaded-guilty-role-robbinhood-ransomware
MalwareBazaar | Katz-Stealer-Loader-May25
https://bazaar.abuse.ch/browse/tag/Katz-Stealer-Loader-May25/
GitHub MCP Exploited: Accessing private repositories via MCP
https://invariantlabs.ai/blog/mcp-github-vulnerability
New Self-Spreading Malware Infects Docker Containers to Mine Dero Cryptocurrency
https://thehackernews.com/2025/05/new-self-spreading-malware-infects.html
Hackers Are Calling Your Office: FBI Alerts Law Firms to Luna Moth's Stealth Phishing Campaign
https://thehackernews.com/2025/05/hackers-are-calling-your-office-fbi.html
Adidas says customer data stolen in cyber attack
https://www.bbc.com/news/articles/c071m82v80po
PayPal | Report #622122 - DoS on PayPal via web cache poisoning | HackerOne
https://hackerone.com/reports/622122
Shopify | Report #1096609 - https://themes.shopify.com::: Host header web cache poisoning lead to DoS | HackerOne
https://hackerone.com/reports/1096609
MATLAB dev confirms ransomware attack behind service outage
https://www.bleepingcomputer.com/news/security/mathworks-blames-ransomware-attack-for-ongoing-outages/
VirusTotal - Sign in
https://www.virustotal.com/gui/file/6969eac8c01c9aa277f6b4176edc305aa26f8889c6e94edf419f85fc8a74bc4d/content
Firefox Security Response to pwn2own 2025 - Mozilla Security Blog
https://blog.mozilla.org/security/2025/05/17/firefox-security-response-to-pwn2own-2025/
Earth Lamia Develops Custom Arsenal to Target Multiple Industries | Trend Micro (US)
https://www.trendmicro.com/en_us/research/25/e/earth-lamia.html
Azure AD introduction for red teamers
https://www.synacktiv.com/en/publications/azure-ad-introduction-for-red-teamers
[Cracking Windows Kernel with HEVD] Chapter 0: Where do I start?
https://mdanilor.github.io/posts/hevd-0/![[Cracking Windows Kernel with HEVD] Chapter 0: Where do I start?](/image/screenshot/33b8b0f2b5b6444ed4feac257967bd94.webp)