NSA and Others Provide Guidance to Counter China State-Sponsored Actors Targeting Critical Infrastructure Organizations > National Security Agency/Central Security Service > Press Release View
https://www.nsa.gov/Press-Room/Press-Releases-Statements/Press-Release-View/Article/4287371/nsa-and-others-provide-guidance-to-counter-china-state-sponsored-actors-targeti/
IT system supplier cyberattack impacts 200 municipalities in Sweden
https://www.bleepingcomputer.com/news/security/it-system-supplier-cyberattack-impacts-200-municipalities-in-sweden/
Exploiting the Synology DiskStation with Null-byte Writes | RET2 Systems Blog
https://blog.ret2.io/2025/04/23/pwn2own-soho-2024-diskstation/
2025 State of the Internet Report: Summary and Conclusions
https://censys.com/blog/2025-state-of-the-internet-report-summary-and-conclusions
What's new in Windows 11, version 24H2 for IT pros | Microsoft Learn
https://learn.microsoft.com/en-us/windows/whats-new/whats-new-windows-11-version-24h2#features-removed-in-windows-11-version-24h2
Interesting Technique to Launch a Shellcode - SANS ISC
https://isc.sans.edu/diary/32238
FreePBX servers hacked via zero-day, emergency fix released
https://www.bleepingcomputer.com/news/security/freepbx-servers-hacked-via-zero-day-emergency-fix-released/
Healthcare Services Group data breach impacts 624,000 people
https://www.bleepingcomputer.com/news/security/healthcare-services-group-data-breach-impacts-624-000-people/
BugBountyHunting.com - A community-curated Resource for Bug Bounty Hunting
http://BugBountyHunting.com
Over 28,000 Citrix devices vulnerable to new exploited RCE flaw
https://www.bleepingcomputer.com/news/security/over-28-200-citrix-instances-vulnerable-to-actively-exploited-rce-bug/
Greg Linares (Laughing Mantis) on X: "As I mentioned last week Insider Threat at the ISP is a very real thing I can confirm that I have seen similar attacks at the mobile provider, ISP, data Center, and cloud provider levels in the last 3 years" / X
https://x.com/Laughing_Mantis/status/1467895649534242826?t=ignlY_3L59ZPfeXLCZZx9Q&s=19
ShadowSilk Hits 35 Organizations in Central Asia and APAC Using Telegram Bots
https://thehackernews.com/2025/08/shadowsilk-hits-36-government-targets.html
Silk Typhoon hackers hijack network captive portals in diplomat attacks
https://www.bleepingcomputer.com/news/security/silk-typhoon-hackers-hijack-network-captive-portals-in-diplomat-attacks/
Belarus-Linked DSLRoot Proxy Network Deploys Hardware in U.S. Residences, Including Military Homes
https://infrawatch.app/blog/dslroot-us-proxy-investigation
Referral Beware, Your Rewards are Mine (Part 1) - Rhino Security Labs
https://rhinosecuritylabs.com/research/referral-beware-your-rewards-are-mine-part-1/
BSidesRDU 2025 - Powered by Eventzilla
https://www.eventzilla.net/e/bsidesrdu-2025-2138649409
China linked Silk Typhoon targeted diplomats by hijacking web traffic
https://securityaffairs.com/181584/security/china-linked-silk-typhoon-targeted-diplomats-by-hijacking-web-traffic.html
Storm-0501 Exploits Entra ID to Exfiltrate and Delete Azure Data in Hybrid Cloud Attacks
https://thehackernews.com/2025/08/storm-0501-exploits-entra-id-to.html