Call For Papers — DistrictCon
https://www.districtcon.org/cfp
Booking.com phishing campaign uses sneaky 'ん' character to trick you
https://www.bleepingcomputer.com/news/security/bookingcom-phishing-campaign-uses-sneaky-character-to-trick-you/
Unpacking Binlex with Cerberus: Malware Hunting & Binary Analysis Live! / X
https://x.com/i/broadcasts/1djGXWeMelEKZ
CrossC2 Expanding Cobalt Strike Beacon to Cross-Platform Attacks - JPCERT/CC Eyes | JPCERT Coordination Center official Blog
https://blogs.jpcert.or.jp/en/2025/08/crossc2.html
Akamai's Ryan Barnett on WAFs, Unicode Confusables, and Triage Stories (Ep. 135) - YouTube
https://youtu.be/rr5VvMx4dT0
Threat Bulletin: Fire in the Woods – A New Variant of FireWood - Intezer
https://intezer.com/blog/threat-bulletin-firewood/
Crypto24 ransomware hits large orgs with custom EDR evasion tool
https://www.bleepingcomputer.com/news/security/crypto24-ransomware-hits-large-orgs-with-custom-edr-evasion-tool/
GitHub - NeoMaster831/kurasagi: Windows 11 24H2 Runtime PatchGuard Bypass
https://github.com/NeoMaster831/kurasagi
Canada’s House of Commons investigating data breach after cyberattack
https://www.bleepingcomputer.com/news/security/canadas-house-of-commons-investigating-data-breach-after-cyberattack/
Microsoft fixes Windows 11 24H2 updates failing with 0x80240069 error
https://www.bleepingcomputer.com/news/microsoft/microsoft-fixes-windows-11-24h2-updates-failing-with-0x80240069-error/
Over $300 million in cybercrime crypto seized in anti-fraud effort
https://www.bleepingcomputer.com/news/security/over-300-million-in-cybercrime-crypto-seized-in-anti-fraud-effort/
New downgrade attack can bypass FIDO auth in Microsoft Entra ID
https://www.bleepingcomputer.com/news/security/new-downgrade-attack-can-bypass-fido-auth-in-microsoft-entra-id/
Microsoft fixes Windows Server bug causing cluster, VM issues
https://www.bleepingcomputer.com/news/microsoft/microsoft-fixes-windows-server-bug-causing-cluster-vm-issues/
Don’t Phish-let Me Down: FIDO Authentication Downgrade | Proofpoint US
https://www.proofpoint.com/us/blog/threat-insight/dont-phish-let-me-down-fido-authentication-downgrade
Google Requires Crypto App Licenses in 15 Regions as FBI Warns of $9.9M Scam Losses
https://thehackernews.com/2025/08/google-requires-crypto-app-licenses-in.html
Cobalt Strike Beaconの機能をクロスプラットフォームへと拡張するツール「CrossC2」を使った攻撃 - JPCERT/CC Eyes | JPCERTコーディネーションセンター公式ブログ
https://blogs.jpcert.or.jp/ja/2025/08/crossc2.html
CVE-2025-50154:Zero Click, One NTLM: Patch Bypass
https://cymulate.com/blog/zero-click-one-ntlm-microsoft-security-patch-bypass-cve-2025-50154/
New HTTP/2 'MadeYouReset' Vulnerability Enables Large-Scale DoS Attacks
https://thehackernews.com/2025/08/new-http2-madeyoureset-vulnerability.html
Leak: OpenAI's browser will use ChatGPT Agent to control the browser
https://www.bleepingcomputer.com/news/artificial-intelligence/leak-openais-browser-will-use-chatgpt-agent-to-control-the-browser/
Pro-Russian hackers blamed for water dam sabotage in Norway
https://www.bleepingcomputer.com/news/security/pro-russian-hackers-blamed-for-water-dam-sabotage-in-norway/
PhantomCard: New NFC-driven Android malware emerging in Brazil 🇧🇷
https://www.threatfabric.com/blogs/phantomcard-new-nfc-driven-android-malware-emerging-in-brazil
Proxyware Malware Being Distributed on YouTube Video Download Site - ASEC
https://asec.ahnlab.com/en/89574/