More Brazil Malspam Pushing Astaroth (Guildma) in January 2023 CircleCI Breach -4-2023-security-alert/Twitter Leak -million-twitter-users-email-addresses-allegedly-leaked-online/Slack Source Code Leak -security-updateControl Web Panel Patch CVE-2022-44877 -2022-44877Turla: A Galaxy of Opportunity -galaxy-opportunity
Infostealer Malware with Double Extension Client Side Encryption For GMail -side-encryption-for-gmail-beta.htmlGoogle Releases OSV Scanner -scanner/releases/tag/v1.0.1Samba Security Patches -issues-security-updates-to-patch.htmlZyxel Router Buffer Overflow -consult.com/blog/detail/enemy-within-unauthenticated-buffer-overflows-zyxel-routers/
IDA Pro 7.2 Leaked Update .rar
Log4Shell campaigns are using Nashorn to get reverse shell on victim's machines Attackers Keep Phishing Victms Under Stress Vulnerable SDK components lead to supply chian risks in IoT and OT environments -us/security/blog/2022/11/22/vulnerable-sdk-components-lead-to-supply-chain-risks-in-iot-and-ot-environments/Google Chrome Patches 0-Day -channel-update-for-desktop_24.htmlHacking Smartwatches for Spear Phishing =1380
Extracting "HTTP CONNECT" Requests with Python Windows Kerberos Authentication Breaks After November Updates -kerberos-authentication-breaks-after-november-updates/ -us/windows/release-health/status-windows-11-22h2#2953msgdescCookies for MFA Bypass Gain Traction Among Cyberattackers -intelligence/cookies-mfa-bypass-cyberattackers
Microsoft Patches VMWare Workspace One Updates CVE-2022-31686, CVE-2022-31687, CVE-2022-31688 -2022-0028.htmlCitrix Gateway / Citrix ADC Vulnerabilities CVE-2022-27510 -gateway-and-citrix-adc-security-bulletin-for-cve202227510-cve202227513-and-cve202227516Microsoft Exchange Updates -blog.microsoft.com/2022/09/29/customer-guidance-for-reported-zero-day-vulnerabilities-in-microsoft-exchange-server/ -team-blog/released-november-2022-exchange-server-security-updates/ba-p/3669045
NMAP without NMAP - Port Testing and Scanning with PowerShell +without+NMAP+Port+Testing+and+Scanning+with+PowerShell/29202ConnectWise Recover and R1Soft Server Backup Critical Vulnerability -bulletins/r1soft-and-recover-security-bulletinGoogle Chrome 0-Day Patch -channel-update-for-desktop_27.htmlLODEINFO 2022 Abusing Security Software -tracking-down-lodeinfo-2022-part-i/107742/Spring Security Vulnerability -2022-31692
10 Years Later: Attacker re-discovering old VTiger CRM Vulnerability +Years+Later+Attacker+rediscovering+old+VTiger+CRM+Vulnerability/29098IRS Reports Significant Increase in Texting Scams -reports-significant-increase-in-texting-scams-warns-taxpayers-to-remain-vigilantCloudflare Releases Turnsitle, a user-friendly, privacy-preserving CAPTCHA alternative -private-captcha-alternative/Cisco Patches Chrome 106 Release -channel-update-for-desktop_27.html?m=1
Easy Process Injection within Python +Process+Injection+within+Python/29048Queen Elizabeth Related Phishing Microsoft 365 Auto Updates Apps on Locked or Idle Devices -365-blog/update-under-lock-improved-update-experience-for-microsoft-365/ba-p/3618901
James Webb JPEG With Malware +Webb+JPEG+With+Malware/29010Windows Defender False Positive _defender_chrome_false_positive/Google Chrome 0-Day -channel-update-for-desktop.htmlSharkbot Android Infostealer in Google Play Store -it.com/2022/09/02/sharkbot-is-back-in-google-play/Nmap 7.93 - 25th Anniversary Release -announce/2022/1
A Quick VoIP Experiment +Quick+VoIP+Experiment/28950Apple Patches Two Exploited Vulnerabilities +Patches+Two+Exploited+Vulnerabilities/28952Google Chrome Update -channel-update-for-desktop_16.htmlCisco staystaystay exploit tool =ySgbHClk9HE
A Little DDoS in the Morning +Little+DDoS+In+the+Morning/28900Exposed Twitter API Keys _reports/how-leaked-twitter-api-keys-can-be-used-to-build-a-bot-army/TCL LinkHub Serialization Issues -spotlight-how-misusing.htmlJenkins Plugin Updates -07-27/
7Zip Mark of the Web For Office Files +MoW+For+Office+files/28812/SessionManager Backdoor Seen with IIS -sessionmanager-iis-backdoor/106868/Googe Chrome Stable Channel Update -channel-update-for-desktop_25.html
Odd TCP Fast Open Packets +TCP+Fast+Open+Packets+Anybody+understands+why/28766/DFSCoerce NTLM Relay Attack -us/topic/kb5005413-mitigating-ntlm-relay-attacks-on-active-directory-certificate-services-ad-cs-3612b773-4043-4aa9-b23d-b87910cd3429Windows Emergency Update Fixes Microsoft 365 Issues on ARM Devices -emergency-update-fixes-microsoft-365-issues-on-arm-devices/Safari Vulnerability Analysis -autopsy-on-zombie-in-wild-0-day.htmlInternet Explorer Remnants Still an Issue -threats/internet-explorer-will-likely-remain-an-attacker-target-for-some-time
Using NMAP to Assess Hosts in Load Balanced Clusters +NMAP+to+Assess+Hosts+in+Load+Balanced+Clusters/28682/Attacker Modifying Libraries Claims "Research" -says-hijacking-libraries-stealing-aws-keys-was-ethical-research/Heroku GitHub Integration Re-Enabled Again -integration-updateSerious security vulnerablity in Tails 5.0 _pollution/index.en.htmlGoogle Chrome Update -channel-update-for-desktop_24.html
Bumblebee Malware from TransferXL URLs +Malware+from+TransferXL+URLs/28664/Microsoft Out-of-Band Update fixes Authentication Issues -us/windows/release-health/status-windows-11-21h2#you-might-see-authentication-failures-on-the-server-or-client-for-servicesSonicwall Patch for SMA 1000 -detail/SNWLID-2022-0010QNAP NAS Deadbolt Ransomware -news/2022/take-immediate-actions-to-secure-qnap-nas-and-update-qts-to-the-latest-available-version380,000 open Kubernetes API Servers -380-000-open-kubernetes-api-servers/Doj Annnounces New Polciy for Charging Cases under the Computer Fraud and Abuse Act -justice-announces-new-policy-charging-cases-under-computer-fraud-and-abuse-act
Finding the Real "Last Patched" Day (Interim Version) +the+Real+Last+Patched+Day+Interim+Version/28610/Fake Windows Updates Install Ransomware -windows-10-updates-infect-you-with-magniber-ransomware/Vulnerablities in Ransomware Heroku Forces Password Reset Cisco Patches Enterprise NFV Infrastructure Software -sa-NFVIS-MUL-7DySRX9Big-IP iControl REST Vulnerability
MITRE ATT&CK v11 +ATTCK+v11+a+small+update+that+can+help+not+just+with+detection+engineering/28590/Microsoft Special Report: Ukraine Linux Privilege Escalation Nimbuspwn -finds-new-elevation-of-privilege-linux-vulnerability-nimbuspwn/npm Package Planting -package-planting
u-boot Password Reset +Linux+Passwords+with+UBoot+Bootloaders/28564/Oracle CPU -alerts/cpuapr2022.htmlMetaMask iCloud Phishing -steal-655k-after-picking-metamask-seed-from-icloud-backup/SMB1 Gone From Windows 11 Home -at-microsoft/smb1-now-disabled-by-default-for-windows-11-home-insiders-builds/ba-p/3289473Lenovo UEFI/BIOS Vulnerability _security/ps500483-lenovo-system-update-privilege-escalation-vulnerability _security/LEN-84943
An Update on CVE-2022-26809 MSRPC Vulnerability - PATCH NOW +Update+on+CVE202226809+MSRPC+Vulnerabliity+PATCH+NOW/28550/Webcast: -2022-26809-ms-rpc-vulnerability-analysis/ _code/status/1514653941304369153Google Chrome 0-Day Patch -channel-update-for-desktop_14.htmlCisco Webex Phones Home Audio Telemetry _mute.pdfGrafana Enterprise Vulnerabilty -enterprise-8.4.6-released-with-high-severity-security-fix/
Spring: It isn't just about Spring4Shell. +It+isnt+just+about+Spring4Shell+Spring+Cloud+Function+Vulnerabilities+are+being+probed+too/28538/Microsoft Windows Autopatch -it-pro-blog/get-current-and-stay-current-with-windows-autopatch/ba-p/3271839More npm protestware Raspberry Pi Update -pi-bullseye-update-april-2022/
Misc Spring4Shell Items -sa-java-spring-rce-Zx9GUc67 _us/research/22/d/cve-2022-22965-analyzing-the-exploitation-of-spring4shell-vulner.html Russian Certificate Authority Update -certificate-authority-for-sanctioned-organizations-645d61af8ac6Conti Source Code Leak Leads to Copycats -use-contis-leaked-ransomware-to-attack-russian-companies/
XLSB Files Because Binary is Stealthier Than XML +Files+Because+Binary+is+Stealthier+Than+XML/28476/Dirty Pipe Container Escape PoC -pipe-container-escape-poc/PHP filter_var Shenanigans _filter_var_shenanigans/OpenBSD slaacd vuln -overflow-in-openbsds-slaacd-via-router-advertisement.htmlGoogle Chrome Update -channel-update-for-desktop_25.html
The More Often Something is Repeated, the More True it Becomes +More+Often+Something+is+Repeated+the+More+True+It+Becomes+Dealing+with+Social+Media/28396/Fortinet Bug -IR-21-028IBM Updates Google Updates -channel-update-for-desktop.htmlConti Ransomware Leak -ransomware-decryptor-trickbot-source-code-leaked/178727/Middle Box DDoS Attacks -middlebox-reflection
Reminder: Decoding TLS Client Hello to Non TLS Servers +Decoding+TLS+Client+Hellos+to+non+TLS+servers/28338/Magento 2 Critical Vulnerability -2-cve-2022-24086BigSur/Catalina Mystery Update -us/HT201222MacOS Monterey Patch and Microsoft Defender -defender-for-endpoint/mde-apparently-blocks-macos-monterey-12-1-12-2-upgrades/m-p/3078793Google Chrome 0-Day Fixed -channel-update-for-desktop_14.htmlMoxa MXview Vulnerabilities and Patch -research-securing-network-management-systems-moxa-mxview/ 2ff7e9595c
Comments