Top Security News for 18/06/2023

How to find industrial control devices
https://0x00sec.org/t/how-to-find-industrial-control-devices/35620

Lorna Mahlock: Build bridges. [Combat support]
https://thecyberwire.com/podcasts/career-notes/154/notes

Reverse Engineering: iOS App Extraction & Analysis
https://www.reddit.com/r/netsec/comments/14bt9qe/reverse_engineering_ios_app_extraction_analysis/

From Cryptojacking to DDoS Attacks: Diicot Expands Tactics with Cayosin Botnet
https://thehackernews.com/2023/06/from-cryptojacking-to-ddos-attacks.html

The Week that Was: US Government discloses exploitation of MOVEit instances. An update on CosmicEnergy: it’s "not an immediate threat." AI-generated phishing attacks. A 2021 ransomware attack put a hospital under financial pressure that caused it to close.
https://thecyberwire.com/newsletters/week-that-was/7/23

CISA SBOM standards efforts stymied by confusion, inertia | TechTarget
https://www.reddit.com/r/netsec/comments/14bz3q5/cisa_sbom_standards_efforts_stymied_by_confusion/

Update: zipdump.py Version 0.0.26
https://malware.news/t/update-zipdump-py-version-0-0-26/70585#post_1

Explainer: Dominion vulnerabilities reported by Halderman
https://www.reddit.com/r/netsec/comments/14c6ep9/explainer_dominion_vulnerabilities_reported_by/

Law enforcement shutdown a long-standing DDoS-for-hire service
https://securityaffairs.com/147564/cyber-crime/ddos-for-eye-service-seized.html

harbian-audit v0.7 releases: security audit and hardening for Debian 12
https://www.reddit.com/r/netsec/comments/14boalg/harbianaudit_v07_releases_security_audit_and/


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 19/06/2023

Soft DDOS technique to bypass Play Store security measures
https://www.reddit.com/r/netsec/comments/14baa2t/soft_ddos_technique_to_bypass_play_store_security/

PentestGPT, a gpt-powered penetration testing tool, open source
https://www.reddit.com/r/netsec/comments/14d25yr/pentestgpt_a_gptpowered_penetration_testing_tool/

Brute-Force ZIP Password Cracking with zipdump.py, (Sun, Jun 18th)
https://isc.sans.edu/diary/rss/29948

US govt offers $10 million bounty for info linking Clop ransomware gang to a foreign government.
https://securityaffairs.com/147577/cyber-crime/clop-ransomware-reward.html

Three attacks against geth-based Ethereum clients: "Speculative Denial-of-Service Attacks in Ethereum"
https://www.reddit.com/r/netsec/comments/14che5g/three_attacks_against_gethbased_ethereum_clients/

How to create an hacking lab on apple silicon
https://www.reddit.com/r/netsec/comments/14cim3p/how_to_create_an_hacking_lab_on_apple_silicon/

Microsoft: June Outlook and cloud platform outages were caused by DDoS
https://securityaffairs.com/147605/hacking/microsoft-outages-ddos.html

Need advice on unpacking .dll
https://0x00sec.org/t/need-advice-on-unpacking-dll/35635

CrowdStrike Automates Zero-Day Malware Classification | CrowdStrike
https://www.reddit.com/r/Malware/comments/14cdvyy/crowdstrike_automates_zeroday_malware/

Easiest Way to learn the WinAPI for Malware (Embedding Shellcode)
https://www.reddit.com/r/Malware/comments/14cswu8/easiest_way_to_learn_the_winapi_for_malware/


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 20/06/2023

CISA (noun)
https://thecyberwire.com/podcasts/word-notes/153/notes

Finding the Nirvana of information access control or something like it
https://www.csoonline.com/article/3699397/finding-the-nirvana-of-information-access-control-or-something-like-it.html#tk.rss_all

US dangles $10 million reward for information about Cl0p ransomware gang
https://www.malwarebytes.com/blog/news/2023/06/rewards-up-to-10-million-for-information-about-cl0p-ransomware-operation

A week in security (June 12 - 18)
https://malware.news/t/a-week-in-security-june-12-18/70614#post_1

Expanding horizons—Microsoft Security’s continued commitment to multicloud
https://www.microsoft.com/en-us/security/blog/2023/06/14/expanding-horizons-microsoft-securitys-continued-commitment-to-multicloud/

ISC Stormcast For Tuesday, June 20th, 2023 https://isc.sans.edu/podcastdetail/8544, (Tue, Jun 20th)
https://malware.news/t/isc-stormcast-for-tuesday-june-20th-2023-https-isc-sans-edu-podcastdetail-8544-tue-jun-20th/70617#post_1

UK set to ramp up citizen surveillance program
https://malware.news/t/uk-set-to-ramp-up-citizen-surveillance-program/70620#post_1

8 notable entry-level cybersecurity career and skills initiatives in 2023
https://www.csoonline.com/article/3699668/8-notable-entry-level-cybersecurity-career-and-skills-initiatives-in-2023.html#tk.rss_all

EU member states are urged to restrict without delay 5G equipment from risky suppliers
https://securityaffairs.com/147617/laws-and-regulations/eu-restrict-5g-risky-suppliers.html

Hacktivist group Anonymous Sudan a ‘bear in wolf’s clothing’
https://malware.news/t/hacktivist-group-anonymous-sudan-a-bear-in-wolf-s-clothing/70618#post_1


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 21/06/2023

CISO stress levels are out of control
https://malware.news/t/ciso-stress-levels-are-out-of-control/70676#post_1

NEW 'Off The Wall' ONLINE
https://www.2600.com/wall/20-06-2023

Black Cat ransomware group wants $4.5m from Reddit or will leak stolen files
https://www.malwarebytes.com/blog/news/2023/06/black-cat-ransomware-group-wants-4-5m-from-reddit-or-will-leak-stolen-files

RedEyes Group Wiretapping Individuals (APT37)
https://malware.news/t/redeyes-group-wiretapping-individuals-apt37/70678#post_1

Western Digital blocks unpatched My Cloud devices
https://www.csoonline.com/article/3700050/western-digital-blocks-unpatched-my-cloud-devices.html#tk.rss_all

Leaking secrets through caching with Bunny CDN
https://www.reddit.com/r/netsec/comments/14edbp3/leaking_secrets_through_caching_with_bunny_cdn/

Reddit sees bad luck as a BlackCat attack crosses their path. The C2C market is more mystical nowadays. Hacktivist auxiliaries and false flags in the hybrid war.
https://thecyberwire.com/podcasts/daily-podcast/1847/notes

Keep it simple, Scanner
https://portswigger.net/blog/keep-it-simple-scanner

CYBER: Big Tech Wants You to Think AI Will Kill Us All
https://www.vice.com/en_us/article/wxjjay/cyber-big-tech-wants-you-to-think-ai-will-kill-us-all

Two US universities added to Cl0p's target list. The dangers of using public Wi-Fi.
https://thecyberwire.com/podcasts/privacy-briefing/852/notes


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 22/06/2023

Using Threat Intelligence to Counter Ransomware
https://malware.news/t/using-threat-intelligence-to-counter-ransomware/70718#post_1

Targeting Core OPC UA Components
https://www.reddit.com/r/netsec/comments/14f7822/targeting_core_opc_ua_components/

Risky chat applications.
https://thecyberwire.com/podcasts/hacking-humans/248/notes

BrandPost: Reducing Cyber Risks by Upskilling Your Security Talent
https://www.csoonline.com/article/3700648/reducing-cyber-risks-by-upskilling-your-security-talent.html#tk.rss_all

Apple patches exploited zero-days
https://malware.news/t/apple-patches-exploited-zero-days/70719#post_1

Android Malware on the Rise – A case study of AhMyth RAT
https://www.reddit.com/r/netsec/comments/14f8ix2/android_malware_on_the_rise_a_case_study_of/

GitHub Dataset Reveals Millions Potentially Vulnerable to RepoJacking
https://www.reddit.com/r/netsec/comments/14famln/github_dataset_reveals_millions_potentially/

extsyncrequest.com unknown
https://www.reddit.com/r/Malware/comments/14fh6ig/extsyncrequestcom_unknown/

ScarCruft Hackers Exploit Ably Service for Stealthy Wiretapping Attacks
https://thehackernews.com/2023/06/scarcruft-hackers-exploit-ably-service.html

Alert! Hackers Exploiting Critical Vulnerability in VMware's Aria Operations Networks
https://thehackernews.com/2023/06/alert-hackers-exploiting-critical.html


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 23/06/2023

Secfault Security - LibreOffice Arbitrary File Write (CVE-2023-1883)
https://www.reddit.com/r/netsec/comments/14fwsfz/secfault_security_libreoffice_arbitrary_file/

Apple Patches Exploited Vulnerabilities in iOS/iPadOS, macOS, watchOS and Safari, (Thu, Jun 22nd)
https://isc.sans.edu/diary/rss/29972

UPS warns customers of phishing attempts after data accessed
https://www.malwarebytes.com/blog/news/2023/06/ups-warns-customers-of-phishing-attempts-after-data-accessed

Hybrid Microsoft network/cloud legacy settings may impact your future security posture
https://www.csoonline.com/article/3700529/hybrid-microsoft-network-cloud-legacy-settings-may-impact-your-future-security-posture.html#tk.rss_all

Word Document with an Online Attached Template, (Fri, Jun 23rd)
https://isc.sans.edu/diary/rss/29976

Callisto - Automated Binary Vulnerability Discovery Tool
https://www.reddit.com/r/netsec/comments/14fvrzh/callisto_automated_binary_vulnerability_discovery/

Reducing your attack surface is more effective than playing patch-a-mole
https://www.malwarebytes.com/blog/news/2023/06/reducing-your-attack-surface-is-more-effective-than-playing-patch-a-mole

6 tips for a cybersecure honeymoon
https://www.malwarebytes.com/blog/personal/2023/06/6-tips-for-a-cybersecure-honeymoon

Need Help Identifying this Malware
https://www.reddit.com/r/Malware/comments/14em9zf/need_help_identifying_this_malware/

Malwarebytes only vendor to win every MRG Effitas award in 2022 & 2023
https://www.malwarebytes.com/blog/business/2023/06/malwarebytes-only-vendor-to-win-every-mrg-effitas-certification-award-in-2022


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 24/06/2023

US, India subjected to phishing attacks with RATs
https://malware.news/t/us-india-subjected-to-phishing-attacks-with-rats/70807#post_1

Fortinet fixes critical RCE flaw in FortiNAC zero-trust product
https://malware.news/t/fortinet-fixes-critical-rce-flaw-in-fortinac-zero-trust-product/70806#post_1

Emergency review of Japan's My Number cards. CalPERS and CalSTRS hit by third-party MOVEit breach. Extortionists threaten to expose plastic surgery photos.
https://thecyberwire.com/newsletters/privacy-briefing/5/120

JavaScript Dropper Delivers Bumblebee And IcedID Malware
https://packetstormsecurity.com/news/view/34748/JavaScript-Dropper-Delivers-Bumblebee-And-IcedID-Malware.html

A brief summary about a SSTI to RCE in Bagisto
https://www.reddit.com/r/netsec/comments/14gvrkp/a_brief_summary_about_a_ssti_to_rce_in_bagisto/

VMware fixed five memory corruption issues in vCenter Server
https://securityaffairs.com/147774/hacking/vmware-vcenter-server-memory-corruption-bugs.html

New Cryptocurrency Mining Campaign Targets Linux Systems and IoT Devices
https://thehackernews.com/2023/06/new-cryptocurrency-mining-campaign.html

The Week that Was: 6.24.23
https://thecyberwire.com/newsletters/week-that-was/7/24

Powerful JavaScript Dropper PindOS Distributes Bumblebee and IcedID Malware
https://thehackernews.com/2023/06/powerful-javascript-dropper-pindos.html

Karen Worstell from VMware discusses technical debt.
https://thecyberwire.com/podcasts/interview-selects/164/notes


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 25/06/2023

Someone is sending mysterious smartwatches to the US Military personnel
https://securityaffairs.com/147788/intelligence/unsolicited-smartwatches-us-army.html

Email Spam with Attachment Modiloader, (Sat, Jun 24th)
https://malware.news/t/email-spam-with-attachment-modiloader-sat-jun-24th/70813#post_1

DFIR Core Principles
https://malware.news/t/dfir-core-principles/70812#post_1

Ukraine at D+485: “We are dying for the Russian people.”
https://thecyberwire.com/stories/bf07fd1eec87497a88e1a7704c42bce6/ukraine-at-d487

Slavik Markovich: Time is of the essence. [CEO]
https://thecyberwire.com/podcasts/career-notes/155/notes

Twitter Hacker Sentenced to 5 Years in Prison for $120,000 Crypto Scam
https://thehackernews.com/2023/06/twitter-hacker-sentenced-to-5-years-in.html

Google pledges $20M for cyber clinic expansion
https://malware.news/t/google-pledges-20m-for-cyber-clinic-expansion/70810#post_1

NYC DOE Hacked.
https://www.reddit.com/r/Malware/comments/14i6eab/nyc_doe_hacked/

Email Spam with Attachment Modiloader, (Sat, Jun 24th)
https://isc.sans.edu/diary/rss/29978

U.S. Cybersecurity Agency Adds 6 Flaws to Known Exploited Vulnerabilities Catalog
https://thehackernews.com/2023/06/us-cybersecurity-agency-adds-6-flaws-to.html


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 26/06/2023

Cybersecurity Is a Social, Policy, and Wicked Problem
https://taosecurity.blogspot.com/2023/06/cybersecurity-is-social-policy-and.html

Security Affairs newsletter Round 425 by Pierluigi Paganini – International edition
https://securityaffairs.com/147797/breaking-news/security-affairs-newsletter-round-425-by-pierluigi-paganini-international-edition.html

Ukraine at D+486: The march on Moscow is over.
https://thecyberwire.com/stories/8de9e9d7525146818e428fcc90c3f1fe/ukraine-at-d486

BSides Athens 2023 Wrap-Up
https://blog.rootshell.be/2023/06/25/bsides-athens-2023-wrap-up/

Bejtlich Skills and Interest Radar from July 2005
https://taosecurity.blogspot.com/2023/06/bejtlich-skills-and-interest-radar-from.html

Five ways to get the board to think more seriously about OT security
https://malware.news/t/five-ways-to-get-the-board-to-think-more-seriously-about-ot-security/70817#post_1

ISC StormCast for Monday, June 26th, 2023
https://isc.sans.edu/podcastdetail/8550

My Last Email with W. Richard Stevens
https://taosecurity.blogspot.com/2023/06/my-last-email-with-w-richard-stevens.html

HWL Ebsworth hack: sensitive information from dozens of government agencies may be compromised
https://www.theguardian.com/australia-news/2023/jun/26/hwl-ebsworth-hack-sensitive-information-from-dozens-of-government-agencies-may-be-compromised

Core Writing Word and Page Counts
https://taosecurity.blogspot.com/2023/06/core-writing-word-and-page-counts.html


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 27/06/2023

How CISOs can balance the risks and benefits of AI
https://www.csoonline.com/article/3700152/the-challenge-of-balancing-risks-and-benefits-of-ai-for-cisos.html#tk.rss_all

OpenSSH trojan campaign targets Linux systems and IoT devices
https://www.malwarebytes.com/blog/news/2023/06/openssh-trojan-campaign-targets-linux-systems-and-iot-devices

All About PowerShell Attacks: The No. 1 ATT&CK Technique
https://securityintelligence.com/articles/all-about-powershell-attacks/

2023-06-23 - 30 days of Formbook: Day 19, Friday 2023-06-23 - "P1A4"
https://malware.news/t/2023-06-23-30-days-of-formbook-day-19-friday-2023-06-23-p1a4/70854#post_1

The Importance of Malware Triage, (Tue, Jun 27th)
https://malware.news/t/the-importance-of-malware-triage-tue-jun-27th/70857#post_1

How cybercrime is impacting SMBs in 2023
https://securelist.com/smb-threat-report-2023/110097/

How Generative AI Can Dupe SaaS Authentication Protocols — And Effective Ways To Prevent Other Key AI Risks in SaaS
https://thehackernews.com/2023/06/how-generative-ai-can-dupe-saas.html

9 basic security tips for seniors
https://www.malwarebytes.com/blog/news/2023/06/9-basic-security-tips-for-seniors

The Importance of Malware Triage, (Tue, Jun 27th)
https://isc.sans.edu/diary/rss/29984

BrandPost: What is the key to optimized DevSecOps?
https://www.csoonline.com/article/3700611/what-is-the-key-to-optimized-devsecops.html#tk.rss_all


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 28/06/2023

Mockingjay process injection technique allows EDR bypass
https://securityaffairs.com/147887/hacking/mockingjay-process-injection-technique.html

Why endpoint management is key to securing an AI-powered future
https://www.microsoft.com/en-us/security/blog/2023/06/26/why-endpoint-management-is-key-to-securing-an-ai-powered-future/

New Mockingjay Process Injection Technique Could Let Malware Evade Detection
https://thehackernews.com/2023/06/new-mockingjay-process-injection.html

Time and Expectations
https://dale-peterson.com/2023/06/27/time-and-expectations/?utm_source=rss&utm_medium=rss&utm_campaign=time-and-expectations

Securing the Store of the Future & Intel Briefing
https://thecyberwire.com/podcasts/rh-isac/30/notes

ISC StormCast for Wednesday, June 28th, 2023
https://isc.sans.edu/podcastdetail/8554

Survey reveals mass concern over generative AI security risks
https://www.csoonline.com/article/3700613/survey-reveals-mass-concern-over-generative-ai-security-risks.html#tk.rss_all

Siemens Energy, UCLA Latest Confirmed Victims In MOVEit Hack
https://packetstormsecurity.com/news/view/34756/Siemens-Energy-UCLA-Latest-Confirmed-Victims-In-MOVEit-Hack.html

SupremeBot and Mario cross the finish line together
https://www.malwarebytes.com/blog/news/2023/06/supremebot-and-mario-cross-the-finish-line-together

Prominent Cryptocurrency Exchange Infected With Previously Unseen Mac Malware
https://packetstormsecurity.com/news/view/34757/Prominent-Cryptocurrency-Exchange-Infected-With-Previously-Unseen-Mac-Malware.html


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 29/06/2023

Andariel’s silly mistakes and a new malware family
https://securelist.com/lazarus-andariel-mistakes-and-easyrat/110119/

The spy becomes the spied-upon. Genworth Financial suffers third-party data breach. Siemens and UCLA become latest victims of MOVEit bug.
https://thecyberwire.com/podcasts/privacy-briefing/858/notes

8Base Ransomware Spikes in Activity, Threatens U.S. and Brazilian Businesses
https://thehackernews.com/2023/06/8base-ransomware-spikes-in-activity.html

Critical cyber threats persist on federal networks despite recent directives
https://malware.news/t/critical-cyber-threats-persist-on-federal-networks-despite-recent-directives/70936#post_1

Critical SQL Injection Flaws Expose Gentoo Soko to Remote Code Execution
https://thehackernews.com/2023/06/critical-sql-injection-flaws-expose.html

A Software Bill of Materials Helps Secure Your Supply Chain
https://securityintelligence.com/posts/a-software-bill-of-materials-helps-secure-your-supply-chain/

Alert: New Electromagnetic Attacks on Drones Could Let Attackers Take Control
https://thehackernews.com/2023/06/alert-new-electromagnetic-attacks-on.html

Log-in lookout: Verosint CTO details how adaptive identity proofing curbs account fraud
https://malware.news/t/log-in-lookout-verosint-cto-details-how-adaptive-identity-proofing-curbs-account-fraud/70935#post_1

Andariel’s silly mistakes and a new malware family
https://securelist.com/lazarus-andariel-mistakes-and-easyrat/110119/

High-severity Chrome vulnerabilities addressed
https://malware.news/t/high-severity-chrome-vulnerabilities-addressed/70932#post_1


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 30/06/2023

Log Centralization: The End Is Nigh?
https://medium.com/anton-on-security/log-centralization-the-end-is-nigh-b28efaa98379?source=rss----8e8c3ed26c4c---4

Top contenders in Endpoint Security revealed: G2 Summer 2023 results
https://www.malwarebytes.com/blog/business/2023/06/top-contenders-in-endpoint-security-revealed-g2-summer-2023-results

Malware Execution Method Using DNS TXT Record
https://malware.news/t/malware-execution-method-using-dns-txt-record/70981#post_1

2023-06-29 - 30 days of Formbook: Day 25, Thursday 2023-06-29 - "CS94"
https://malware.news/t/2023-06-29-30-days-of-formbook-day-25-thursday-2023-06-29-cs94/70978#post_1

Hacking Auto-GPT and escaping its docker container
https://www.reddit.com/r/netsec/comments/14m6uv9/hacking_autogpt_and_escaping_its_docker_container/

Webcrawlers copying my site
https://0x00sec.org/t/webcrawlers-copying-my-site/35803

New developments in the ransomware threat. Lazarus needs some AI? Charming Kitten spearphishes. Updates from the hybrid war.
https://thecyberwire.com/newsletters/daily-briefing/12/124

ISC Stormcast For Friday, June 30th, 2023 https://isc.sans.edu/podcastdetail/8558, (Fri, Jun 30th)
https://isc.sans.edu/diary/rss/29996

NoMoreCookies: Protection against stealers/rats
https://www.reddit.com/r/netsec/comments/14mmkok/nomorecookies_protection_against_stealersrats/

Discover the Power of OSINT: 350+ Integrated Tools for Passive Online Investigation and Analysis
https://www.reddit.com/r/netsec/comments/14lwi38/discover_the_power_of_osint_350_integrated_tools/


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 01/07/2023

The Week that Was: Vulcan’s Q2 2023 Vulnerability Watch report details notable issues. Russia's hybrid war against Ukraine: lessons learned.
https://thecyberwire.com/newsletters/week-that-was/7/25

Manoj Sharma of Symantec to discuss trends he's hearing about generative AI.
https://thecyberwire.com/podcasts/interview-selects/165/notes

OpenAI faces lawsuit for scraping of internet data. Study shows 25% of kids apps violate COPPA. UoM attack reportedly exposed over one million NHS patients.
https://thecyberwire.com/newsletters/privacy-briefing/5/125

Reversing Citrix Gateway for XSS
https://www.reddit.com/r/netsec/comments/14n28jb/reversing_citrix_gateway_for_xss/

Sandfly Security, (Sat, Jul 1st)
https://malware.news/t/sandfly-security-sat-jul-1st/71013#post_1

Beware: New 'Rustbucket' Malware Variant Targeting macOS Users
https://thehackernews.com/2023/07/beware-new-rustbucket-malware-variant.html

3 Reasons SaaS Security is the Imperative First Step to Ensuring Secure AI Usage
https://thehackernews.com/2023/06/3-reasons-saas-security-is-imperative.html

Sandfly Security, (Sat, Jul 1st)
https://isc.sans.edu/diary/rss/29998

"Free" Evil Dead Rise movie scam lurks in Amazon listings
https://www.malwarebytes.com/blog/news/2023/06/free-evil-dead-rise-movie-scam-lurks-in-amazon-listings

Most fucked up redirect
https://www.reddit.com/r/Malware/comments/14ng7df/most_fucked_up_redirect/


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 03/07/2023

The Fifth Domain - Richard Clarke - BSW Vault
https://malware.news/t/the-fifth-domain-richard-clarke-bsw-vault/71027#post_1

HHS compromised in massive MOVEit hack
https://malware.news/t/hhs-compromised-in-massive-moveit-hack/71025#post_1

New ThirdEye infostealer, SeroXen RAT examined
https://malware.news/t/new-thirdeye-infostealer-seroxen-rat-examined/71021#post_1

Seven ways to prepare for double extortion ransomware
https://malware.news/t/seven-ways-to-prepare-for-double-extortion-ransomware/71026#post_1

DEFC: simple enumeration tool for detect AV/EDR
https://malware.news/t/defc-simple-enumeration-tool-for-detect-av-edr/71028#post_1

Security Affairs newsletter Round 426 by Pierluigi Paganini – International edition
https://securityaffairs.com/148038/breaking-news/security-affairs-newsletter-round-426-by-pierluigi-paganini-international-edition.html

WordPress plugin vulnerability puts user accounts at risk
https://malware.news/t/wordpress-plugin-vulnerability-puts-user-accounts-at-risk/71019#post_1

New C2 framework leveraged by MuddyWater
https://malware.news/t/new-c2-framework-leveraged-by-muddywater/71024#post_1

BlackCat Operators Distributing Ransomware Disguised as WinSCP via Malvertising
https://thehackernews.com/2023/07/blackcat-operators-distributing.html

Fully Undetected shellcode loader featuring EDR killer PoC
https://www.reddit.com/r/netsec/comments/14olph5/fully_undetected_shellcode_loader_featuring_edr/


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 04/07/2023

Evasive Meduza Stealer Targets 19 Password Managers and 76 Crypto Wallets
https://thehackernews.com/2023/07/evasive-meduza-stealer-targets-19.html

A week in security (June 26 - July 2)
https://www.malwarebytes.com/blog/news/2023/07/a-week-in-security-june-26-july-2

SmugX: Chinese APT uses HTML smuggling to target European Ministries and embassies
https://securityaffairs.com/148091/apt/china-linked-apt-html-smuggling-europe.html

Chinese Hackers Use HTML Smuggling to Infiltrate European Ministries with PlugX
https://thehackernews.com/2023/07/chinese-hackers-use-html-smuggling-to.html

Brave browser will prevent websites from port scanning visitors
https://www.malwarebytes.com/blog/news/2023/07/brave-browser-will-prevent-websites-from-port-scanning-visitors

2023-07-01 - 30 days of Formbook: Day 27, Saturday 2023-07-01 - "NES8"
https://malware.news/t/2023-07-01-30-days-of-formbook-day-27-saturday-2023-07-01-nes8/71051#post_1

Hiring a Reverse Engineer
https://0x00sec.org/t/hiring-a-reverse-engineer/35864

A week in security (June 26 - July 2)
https://malware.news/t/a-week-in-security-june-26-july-2/71047#post_1

Live: Życie po Google, czyli co dalej
https://gynvael.coldwind.pl/?id=769

Of sharks, surveillance, and spied-on emails: This is Section 702, with Matthew Guariglia
https://www.malwarebytes.com/blog/podcast/2023/07/of-sharks-surveillance-and-spied-on-emails


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 05/07/2023

TeamsPhisher: Send phishing messages and attachments to Microsoft Teams users
https://www.reddit.com/r/netsec/comments/14pzz86/teamsphisher_send_phishing_messages_and/

MOVEit attack on Aon exposed data of the staff at the Dublin Airport
https://securityaffairs.com/148152/data-breach/dublin-airport-data-breach.html

Mexico-Based Hacker Targets Global Banks with Android Malware
https://thehackernews.com/2023/07/mexico-based-hacker-targets-global.html

Fake reviewers face big fines
https://www.malwarebytes.com/blog/news/2023/07/fake-reviewers-face-big-fines

How to Achieve AWS Operational Excellence in Your Cloud Workload
https://malware.news/t/how-to-achieve-aws-operational-excellence-in-your-cloud-workload/71057#post_1

Fake reviewers face big fines
https://malware.news/t/fake-reviewers-face-big-fines/71063#post_1

Dell security advisory (AV23-374)
https://malware.news/t/dell-security-advisory-av23-374/71058#post_1

Elderly targeted in car accident scam, kingpin arrested
https://www.malwarebytes.com/blog/news/2023/07/elderly-targeted-in-car-accident-scam-kingpin-arrested

Find GraphQL API vulnerabilities, with Burp Suite Professional
https://portswigger.net/blog/find-graphql-api-vulnerabilities-with-burp-suite-professional

DDoSia Attack Tool Evolves with Encryption, Targeting Multiple Sectors
https://thehackernews.com/2023/07/ddosia-attack-tool-evolves-with.html


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 06/07/2023

ISC Stormcast For Thursday, July 6th, 2023 https://isc.sans.edu/podcastdetail/8560, (Thu, Jul 6th)
https://isc.sans.edu/diary/rss/30004

Four Must-haves to Strengthen Your Endpoint Security
https://malware.news/t/four-must-haves-to-strengthen-your-endpoint-security/71106#post_1

NEW 'Off The Hook' ONLINE
https://www.2600.com/hook/05-07-2023

Chinese cyberespionage described. SEO poisoning. Html smuggling. DDoS alert in the US. Hacktivist auxiliary in Russia's hybrid war.
https://thecyberwire.com/newsletters/daily-briefing/12/126

Actively Exploited ICS Hardware: SolarView Series
https://www.reddit.com/r/netsec/comments/14r5ki9/actively_exploited_ics_hardware_solarview_series/

Microsoft refutes Anonymous Sudan's massive data breach claims
https://malware.news/t/microsoft-refutes-anonymous-sudans-massive-data-breach-claims/71102#post_1

RedEnergy Stealer-as-a-Ransomware Threat Targeting Energy and Telecom Sectors
https://thehackernews.com/2023/07/redenergy-stealer-as-ransomware-threat.html

Extending Burp Suite for fun and profit - The Montoya way - Part 1
https://www.reddit.com/r/netsec/comments/14r66m2/extending_burp_suite_for_fun_and_profit_the/

StackRot (CVE-2023-3269): Linux kernel privilege escalation vulnerability
https://www.reddit.com/r/netsec/comments/14rcfi0/stackrot_cve20233269_linux_kernel_privilege/

0day RCE in open source browsergame
https://0x00sec.org/t/0day-rce-in-open-source-browsergame/35895


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 07/07/2023

Researchers Uncover New Linux Kernel 'StackRot' Privilege Escalation Vulnerability
https://thehackernews.com/2023/07/researchers-uncover-new-linux-kernel.html

Two Stories for "What is CHERI?"
https://www.reddit.com/r/netsec/comments/14s3ibm/two_stories_for_what_is_cheri/

Methods of countering disinformation. False personae with traction. Disinformation in Russia's hybrid war.
https://thecyberwire.com/newsletters/disinformation-briefing/5/27

Iranian Hackers' Sophisticated Malware Targets Windows and macOS Users
https://thehackernews.com/2023/07/iranian-hackers-sophisticated-malware.html

Threads' Instagram 'Trap' Shows Why Facebook Should Have Been Broken Up Years Ago
https://www.vice.com/en_us/article/bvjvb5/threads-instagram-trap-shows-why-facebook-should-have-been-broken-up-years-ago

Windows Installer arbitrary content manipulation Elevation of Privilege (CVE-2020-0911)
https://www.reddit.com/r/netsec/comments/14saj80/windows_installer_arbitrary_content_manipulation/

Silentbob Campaign: Cloud-Native Environments Under Attack
https://thehackernews.com/2023/07/silentbob-campaign-cloud-native.html

Backdooring NPM Modules via Hijacking S3 Buckets
https://www.reddit.com/r/netsec/comments/14rxqlr/backdooring_npm_modules_via_hijacking_s3_buckets/

Surviving the 800 Gbps Storm: Gain Insights from Gcore's 2023 DDoS Attack Statistics
https://thehackernews.com/2023/07/surviving-800-gbps-storm-gain-insights.html

Beware of the Growing Scourge of Job Recruitment Scams
https://securityintelligence.com/articles/beware-the-growing-scourge-of-job-recruitment-scams/


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 08/07/2023

2023-07-04 - 30 days of Formbook: Day309, Tuesday 2023-07-04 - Formbook "MF6W"
https://malware.news/t/2023-07-04-30-days-of-formbook-day309-tuesday-2023-07-04-formbook-mf6w/71183#post_1

A man has been charged with a cyber attack on the Discovery Bay water treatment facility
https://securityaffairs.com/148258/cyber-crime/discovery-bay-water-treatment-facility-attck.html

Cybersecurity Agencies Sound Alarm on Rising TrueBot Malware Attacks
https://thehackernews.com/2023/07/cybersecurity-agencies-sound-alarm-on.html

More than ChatGPT: Privacy and Confidentiality in the Age of LLMs
https://modernciso.com/2023/06/01/more-than-chatgpt-privacy-and-confidentiality-in-the-age-of-llms/

Close Security Gaps with Continuous Threat Exposure Management
https://thehackernews.com/2023/07/close-security-gaps-with-continuous.html

Mike Hamilton, former CISO from Seattle and CISO of cybersecurity firm, Critical Insight, discusses what you need to know about NIST 2.0.
https://thecyberwire.com/podcasts/interview-selects/166/notes

BlackByte 2.0 Ransomware: Infiltrate, Encrypt, and Extort in Just 5 Days
https://thehackernews.com/2023/07/blackbyte-20-ransomware-infiltrate.html

Joint advisory warns of Truebot. Operation Brainleaches in the supply chain. API key reset at Jumpcloud. More MOVEit vulnerability exploitation.
https://thecyberwire.com/podcasts/daily-podcast/1858/notes

Google Releases Android Patch Update for 3 Actively Exploited Vulnerabilities
https://thehackernews.com/2023/07/google-releases-android-patch-update.html

The Week that Was: LockBit 3.0 claims responsibility for Nagoya ransomware attack. BlackCat and SEO poisoning.
https://thecyberwire.com/newsletters/week-that-was/7/26


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 09/07/2023

Iran-linked APT TA453 targets Windows and macOS systems
https://securityaffairs.com/148275/apt/ta453-malware-windows-macos.html

Which router malware is capable of getting into wifi connected Android phones using vulnurability
https://www.reddit.com/r/Malware/comments/14ucvml/which_router_malware_is_capable_of_getting_into/

Eric Tillman: A creative way into cyber. [Intelligence]
https://thecyberwire.com/podcasts/career-notes/157/notes

Hiding In The Windows Event Log
https://malware.news/t/hiding-in-the-windows-event-log/71187#post_1

Google addressed 3 actively exploited flaws in Android
https://securityaffairs.com/148286/mobile-2/android-actively-exploited-flaws-fixed.html

Over $50M in cyber, CX investments awarded to federal agencies
https://malware.news/t/over-50m-in-cyber-cx-investments-awarded-to-federal-agencies/71185#post_1

Pentest Mapper Burp Suite extension 1.7 is released.
https://www.reddit.com/r/netsec/comments/14u5yhq/pentest_mapper_burp_suite_extension_17_is_released/

Security Affairs newsletter Round 427 by Pierluigi Paganini – International edition
https://securityaffairs.com/148291/breaking-news/security-affairs-newsletter-round-427-by-pierluigi-paganini-international-edition.html

Novel Linux kernel vulnerability exploitable for elevated privileges
https://malware.news/t/novel-linux-kernel-vulnerability-exploitable-for-elevated-privileges/71186#post_1

EasyScan: A Lightweight Web Vulnerability Scanner to Secure Your Website
https://www.reddit.com/r/netsec/comments/14ufxia/easyscan_a_lightweight_web_vulnerability_scanner/


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman