Top Security News for October 23, 2023
Ivanti Endpoint Manager Credential Coercion Vulnerabilities Deep-Dive
https://www.reddit.com/r/netsec/comments/1it4l97/ivanti_endpoint_manager_credential_coercion/
Reinventing PowerShell in C/C++
https://www.reddit.com/r/netsec/comments/1it1knv/reinventing_powershell_in_cc/
Credential theft puts sensitive corporate and military networks at risk.
https://thecyberwire.com/newsletters/daily-briefing/14/32
Microsoft is named a Leader in the 2025 Gartner® Magic Quadrant™ for cyber-physical systems protection platforms
https://www.microsoft.com/en-us/security/blog/2025/02/19/microsoft-is-named-a-leader-in-the-2025-gartner-magic-quadrant-for-cyber-physical-systems-protection-platforms/
Achieving RCE in famous Japanese chat tool with an obsolete Electron feature
https://www.reddit.com/r/netsec/comments/1it7p4j/achieving_rce_in_famous_japanese_chat_tool_with/
Hackers Exploit Signal's Linked Devices Feature to Hijack Accounts via Malicious QR Codes
https://thehackernews.com/2025/02/hackers-exploit-signals-linked-devices.html
CyberArk acquires Zilla. Tines secures $125 million in Series C round.
https://thecyberwire.com/newsletters/business-briefing/7/7
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Ivanti Endpoint Manager Credential Coercion Vulnerabilities Deep-Dive
https://www.reddit.com/r/netsec/comments/1it4l97/ivanti_endpoint_manager_credential_coercion/
Reinventing PowerShell in C/C++
https://www.reddit.com/r/netsec/comments/1it1knv/reinventing_powershell_in_cc/
Credential theft puts sensitive corporate and military networks at risk.
https://thecyberwire.com/newsletters/daily-briefing/14/32
Microsoft is named a Leader in the 2025 Gartner® Magic Quadrant™ for cyber-physical systems protection platforms
https://www.microsoft.com/en-us/security/blog/2025/02/19/microsoft-is-named-a-leader-in-the-2025-gartner-magic-quadrant-for-cyber-physical-systems-protection-platforms/
Achieving RCE in famous Japanese chat tool with an obsolete Electron feature
https://www.reddit.com/r/netsec/comments/1it7p4j/achieving_rce_in_famous_japanese_chat_tool_with/
Hackers Exploit Signal's Linked Devices Feature to Hijack Accounts via Malicious QR Codes
https://thehackernews.com/2025/02/hackers-exploit-signals-linked-devices.html
CyberArk acquires Zilla. Tines secures $125 million in Series C round.
https://thecyberwire.com/newsletters/business-briefing/7/7
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: Ivanti Endpoint Manager Credential Coercion Vulnerabilities Deep-Dive
Explore this post and more from the netsec community
Top Security News for February 20, 2025
PCI DSS 4.0 Mandates DMARC By 31st March 2025
https://thehackernews.com/2025/02/pci-dss-40-mandates-dmarc-by-31st-march.html
Cybercriminals Use Eclipse Jarsigner to Deploy XLoader Malware via ZIP Archives
https://thehackernews.com/2025/02/cybercriminals-use-eclipse-jarsigner-to.html
Chinese-Linked Attackers Exploit Check Point Flaw to Deploy ShadowPad and Ransomware
https://thehackernews.com/2025/02/chinese-linked-attackers-exploit-check.html
RANsacked: Over 100 Security Flaws Found in LTE/5G Network Implementations
https://www.reddit.com/r/netsec/comments/1itt6y4/ransacked_over_100_security_flaws_found_in_lte5g/
North Korean Hackers Target Freelance Developers in Job Scam to Deploy Malware
https://thehackernews.com/2025/02/north-korean-hackers-target-freelance.html
The Cat and Mouse Game: Exploiting Statistical Weaknesses in Human Interaction Anti-Evasions
https://research.checkpoint.com/2025/the-cat-and-mouse-game-exploiting-statistical-weaknesses-in-human-interaction-anti-evasions/
Microsoft at Legalweek: Help safeguard your AI future with Microsoft Purview
https://www.microsoft.com/en-us/security/blog/2025/02/20/microsoft-at-legalweek-help-safeguard-your-ai-future-with-microsoft-purview/
CISA and FBI issue advisory on the Ghost ransomware.
https://thecyberwire.com/newsletters/daily-briefing/14/33
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
PCI DSS 4.0 Mandates DMARC By 31st March 2025
https://thehackernews.com/2025/02/pci-dss-40-mandates-dmarc-by-31st-march.html
Cybercriminals Use Eclipse Jarsigner to Deploy XLoader Malware via ZIP Archives
https://thehackernews.com/2025/02/cybercriminals-use-eclipse-jarsigner-to.html
Chinese-Linked Attackers Exploit Check Point Flaw to Deploy ShadowPad and Ransomware
https://thehackernews.com/2025/02/chinese-linked-attackers-exploit-check.html
RANsacked: Over 100 Security Flaws Found in LTE/5G Network Implementations
https://www.reddit.com/r/netsec/comments/1itt6y4/ransacked_over_100_security_flaws_found_in_lte5g/
North Korean Hackers Target Freelance Developers in Job Scam to Deploy Malware
https://thehackernews.com/2025/02/north-korean-hackers-target-freelance.html
The Cat and Mouse Game: Exploiting Statistical Weaknesses in Human Interaction Anti-Evasions
https://research.checkpoint.com/2025/the-cat-and-mouse-game-exploiting-statistical-weaknesses-in-human-interaction-anti-evasions/
Microsoft at Legalweek: Help safeguard your AI future with Microsoft Purview
https://www.microsoft.com/en-us/security/blog/2025/02/20/microsoft-at-legalweek-help-safeguard-your-ai-future-with-microsoft-purview/
CISA and FBI issue advisory on the Ghost ransomware.
https://thecyberwire.com/newsletters/daily-briefing/14/33
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: RANsacked: Over 100 Security Flaws Found in LTE/5G Network Implementations
Posted by dukeofmola - 85 votes and 5 comments
Top Security News for February 21, 2025
AI-Powered Deception is a Menace to Our Societies
https://thehackernews.com/2025/02/ai-powered-deception-is-menace-to-our.html
Webinar: Learn How to Identify High-Risk Identity Gaps and Slash Security Debt in 2025
https://thehackernews.com/2025/02/webinar-learn-how-to-identify-high-risk.html
Cybercriminals Can Now Clone Any Brand’s Site in Minutes Using Darcula PhaaS v3
https://thehackernews.com/2025/02/cybercriminals-can-now-clone-any-brands.html
Apple Removes Advanced Data Protection Tool After UK Government Request
https://www.theguardian.com/technology/2025/feb/21/apple-removes-advanced-data-protection-tool-uk-government
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
AI-Powered Deception is a Menace to Our Societies
https://thehackernews.com/2025/02/ai-powered-deception-is-menace-to-our.html
Webinar: Learn How to Identify High-Risk Identity Gaps and Slash Security Debt in 2025
https://thehackernews.com/2025/02/webinar-learn-how-to-identify-high-risk.html
Cybercriminals Can Now Clone Any Brand’s Site in Minutes Using Darcula PhaaS v3
https://thehackernews.com/2025/02/cybercriminals-can-now-clone-any-brands.html
Apple Removes Advanced Data Protection Tool After UK Government Request
https://www.theguardian.com/technology/2025/feb/21/apple-removes-advanced-data-protection-tool-uk-government
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
the Guardian
Apple removes advanced data protection tool in face of UK government request
Apple says removal of tool after government asked for right to see data will make iCloud users more vulnerable
Top Security News for October 16, 2023
Apple removes iCloud encryption in UK following backdoor demand
https://securityaffairs.com/174500/security/apple-removes-icloud-encryption-in-uk.html
‘The bot asked me four times a day how I was feeling’: is tracking everything actually good for us?
https://www.theguardian.com/lifeandstyle/2025/feb/22/the-bot-asked-me-four-times-a-day-how-i-was-feeling-is-tracking-everything-actually-good-for-us
Lazarus APT stole $1.5B from Bybit, it is the largest cryptocurrency heist ever
https://securityaffairs.com/174514/cyber-crime/lazarus-stole-1-5b-from-bybit-cryptocurrency-heist.html
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Apple removes iCloud encryption in UK following backdoor demand
https://securityaffairs.com/174500/security/apple-removes-icloud-encryption-in-uk.html
‘The bot asked me four times a day how I was feeling’: is tracking everything actually good for us?
https://www.theguardian.com/lifeandstyle/2025/feb/22/the-bot-asked-me-four-times-a-day-how-i-was-feeling-is-tracking-everything-actually-good-for-us
Lazarus APT stole $1.5B from Bybit, it is the largest cryptocurrency heist ever
https://securityaffairs.com/174514/cyber-crime/lazarus-stole-1-5b-from-bybit-cryptocurrency-heist.html
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Security Affairs
Apple removes iCloud encryption in UK following backdoor demand
Apple removed iCloud’s Advanced Data Protection in the UK after the government requested encryption backdoor access.
Top Security News for October 23, 2023
Wireshark 4.4.4 Released
https://isc.sans.edu/diary/31712
Security Affairs newsletter Round 512 by Pierluigi Paganini – INTERNATIONAL EDITION
https://securityaffairs.com/174529/breaking-news/security-affairs-newsletter-round-512-by-pierluigi-paganini-international-edition.html
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 34
https://securityaffairs.com/174534/uncategorized/security-affairs-malware-newsletter-round-34.html
U.S. CISA adds Microsoft Power Pages flaw to its Known Exploited Vulnerabilities catalog
https://securityaffairs.com/174541/hacking/u-s-cisa-adds-microsoft-power-pages-flaw-known-exploited-vulnerabilities-catalog.html
The Bybit Incident: When Research Meets Reality
https://research.checkpoint.com/2025/the-bybit-incident-when-research-meets-reality/
Three questions about Apple, encryption, and the U.K.
https://www.reddit.com/r/netsec/comments/1iwj0vs/three_questions_about_apple_encryption_and_the_uk/
What's new in LKRG? Interview about the project
https://www.reddit.com/r/netsec/comments/1iwl6gg/whats_new_in_lkrg_interview_about_the_project/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Wireshark 4.4.4 Released
https://isc.sans.edu/diary/31712
Security Affairs newsletter Round 512 by Pierluigi Paganini – INTERNATIONAL EDITION
https://securityaffairs.com/174529/breaking-news/security-affairs-newsletter-round-512-by-pierluigi-paganini-international-edition.html
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 34
https://securityaffairs.com/174534/uncategorized/security-affairs-malware-newsletter-round-34.html
U.S. CISA adds Microsoft Power Pages flaw to its Known Exploited Vulnerabilities catalog
https://securityaffairs.com/174541/hacking/u-s-cisa-adds-microsoft-power-pages-flaw-known-exploited-vulnerabilities-catalog.html
The Bybit Incident: When Research Meets Reality
https://research.checkpoint.com/2025/the-bybit-incident-when-research-meets-reality/
Three questions about Apple, encryption, and the U.K.
https://www.reddit.com/r/netsec/comments/1iwj0vs/three_questions_about_apple_encryption_and_the_uk/
What's new in LKRG? Interview about the project
https://www.reddit.com/r/netsec/comments/1iwl6gg/whats_new_in_lkrg_interview_about_the_project/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
SANS Internet Storm Center
Wireshark 4.4.4 Released - SANS Internet Storm Center
Wireshark 4.4.4 Released, Author: Didier Stevens
Top Security News for February 24, 2025
THN Weekly Recap: From $1.5B Crypto Heist to AI Misuse & Apple’s Data Dilemma
https://thehackernews.com/2025/02/thn-weekly-recap-from-15b-crypto-heist.html
Becoming Ransomware Ready: Why Continuous Validation Is Your Best Defense
https://thehackernews.com/2025/02/becoming-ransomware-ready-why.html
Google Cloud KMS Adds Quantum-Safe Digital Signatures to Defend Against Future Threats
https://thehackernews.com/2025/02/google-cloud-kms-adds-quantum-safe.html
Silent Killers: Unmasking a Large-Scale Legacy Driver Exploitation Campaign
https://research.checkpoint.com/2025/large-scale-exploitation-of-legacy-driver/
Over 35,000 Websites Targeted in Full-Page Hijack Linking to a Chinese-Language Gambling Scam
https://www.reddit.com/r/netsec/comments/1ix2csa/over_35000_websites_targeted_in_fullpage_hijack/
Exposing Shadow AI Agents: How We Extracted Financial Data from Billion-Dollar Companies
https://www.reddit.com/r/netsec/comments/1ix3p40/exposing_shadow_ai_agents_how_we_extracted/
Tearing Down (Sonic)Walls: Decrypting SonicOSX Firmware
https://bishopfox.com/blog/sonicwall-decrypting-sonicosx-firmware
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
THN Weekly Recap: From $1.5B Crypto Heist to AI Misuse & Apple’s Data Dilemma
https://thehackernews.com/2025/02/thn-weekly-recap-from-15b-crypto-heist.html
Becoming Ransomware Ready: Why Continuous Validation Is Your Best Defense
https://thehackernews.com/2025/02/becoming-ransomware-ready-why.html
Google Cloud KMS Adds Quantum-Safe Digital Signatures to Defend Against Future Threats
https://thehackernews.com/2025/02/google-cloud-kms-adds-quantum-safe.html
Silent Killers: Unmasking a Large-Scale Legacy Driver Exploitation Campaign
https://research.checkpoint.com/2025/large-scale-exploitation-of-legacy-driver/
Over 35,000 Websites Targeted in Full-Page Hijack Linking to a Chinese-Language Gambling Scam
https://www.reddit.com/r/netsec/comments/1ix2csa/over_35000_websites_targeted_in_fullpage_hijack/
Exposing Shadow AI Agents: How We Extracted Financial Data from Billion-Dollar Companies
https://www.reddit.com/r/netsec/comments/1ix3p40/exposing_shadow_ai_agents_how_we_extracted/
Tearing Down (Sonic)Walls: Decrypting SonicOSX Firmware
https://bishopfox.com/blog/sonicwall-decrypting-sonicosx-firmware
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Check Point Research
Silent Killers: Unmasking a Large-Scale Legacy Driver Exploitation Campaign - Check Point Research
Highlights Introduction While the abuse of vulnerable drivers has been around for a while, those that can terminate arbitrary processes have drawn increasing attention in recent years. As Windows security continues to evolve, it has become more challenging…
Top Security News for October 30, 2023
Caller ID Spoofing: The Invisible Threat to Phone Security and How to Combat It
https://www.reddit.com/r/netsec/comments/1ixpnm8/caller_id_spoofing_the_invisible_threat_to_phone/
2,500+ Truesight.sys Driver Variants Exploited to Bypass EDR and Deploy HiddenGh0st RAT
https://thehackernews.com/2025/02/2500-truesightsys-driver-variants.html
5 Active Malware Campaigns in Q1 2025
https://thehackernews.com/2025/02/5-active-malware-campaigns-in-q1-2025.html
GitVenom Malware Steals $456K in Bitcoin Using Fake GitHub Projects to Hijack Wallets
https://thehackernews.com/2025/02/gitvenom-malware-steals-456k-in-bitcoin.html
Streamlining Vulnerability Research with IDA Pro and Rust
https://www.reddit.com/r/netsec/comments/1ixoklw/streamlining_vulnerability_research_with_ida_pro/
PortSwigger and SAP Forge Strategic Partnership to Enhance Enterprise Web Security
https://portswigger.net/blog/portswigger-and-sap-forge-strategic-partnership-to-enhance-enterprise-web-security
Orange Group Confirms Breach After Hacker Posts Alleged Stolen Data
https://www.thecyberwire.com/newsletters/daily-briefing/14/36
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Caller ID Spoofing: The Invisible Threat to Phone Security and How to Combat It
https://www.reddit.com/r/netsec/comments/1ixpnm8/caller_id_spoofing_the_invisible_threat_to_phone/
2,500+ Truesight.sys Driver Variants Exploited to Bypass EDR and Deploy HiddenGh0st RAT
https://thehackernews.com/2025/02/2500-truesightsys-driver-variants.html
5 Active Malware Campaigns in Q1 2025
https://thehackernews.com/2025/02/5-active-malware-campaigns-in-q1-2025.html
GitVenom Malware Steals $456K in Bitcoin Using Fake GitHub Projects to Hijack Wallets
https://thehackernews.com/2025/02/gitvenom-malware-steals-456k-in-bitcoin.html
Streamlining Vulnerability Research with IDA Pro and Rust
https://www.reddit.com/r/netsec/comments/1ixoklw/streamlining_vulnerability_research_with_ida_pro/
PortSwigger and SAP Forge Strategic Partnership to Enhance Enterprise Web Security
https://portswigger.net/blog/portswigger-and-sap-forge-strategic-partnership-to-enhance-enterprise-web-security
Orange Group Confirms Breach After Hacker Posts Alleged Stolen Data
https://www.thecyberwire.com/newsletters/daily-briefing/14/36
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: Caller ID Spoofing: The Invisible Threat to Phone Security and How to Combat It
Posted by s3yfullah - 6 votes and 0 comments
Top Security News for February 25, 2025
The Best Security Is When We All Agree To Keep Everything Secret (Except The Secrets) - NAKIVO Backup & Replication (CVE-2024-48248)
https://www.reddit.com/r/netsec/comments/1iykzuc/the_best_security_is_when_we_all_agree_to_keep/
Malicious PyPI Package "automslc" Enables 104K+ Unauthorized Deezer Music Downloads
https://thehackernews.com/2025/02/malicious-pypi-package-automslc-enables.html
SOC 3.0 - The Evolution of the SOC and How AI is Empowering Human Talent
https://thehackernews.com/2025/02/soc-30-evolution-of-soc-and-how-ai-is.html
New Linux Malware ‘Auto-Color’ Grants Hackers Full Remote Access to Compromised Systems
https://thehackernews.com/2025/02/new-linux-malware-auto-color-grants.html
CERT-UA Warns of UAC-0173 Attacks Deploying DCRat to Compromise Ukrainian Notaries
https://thehackernews.com/2025/02/cert-ua-warns-of-uac-0173-attacks.html
Three Password Cracking Techniques and How to Defend Against Them
https://thehackernews.com/2025/02/three-password-cracking-techniques-and.html
Kubernetes Golden Tickets
https://www.reddit.com/r/netsec/comments/1iyn5m4/kubernetes_golden_tickets/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
The Best Security Is When We All Agree To Keep Everything Secret (Except The Secrets) - NAKIVO Backup & Replication (CVE-2024-48248)
https://www.reddit.com/r/netsec/comments/1iykzuc/the_best_security_is_when_we_all_agree_to_keep/
Malicious PyPI Package "automslc" Enables 104K+ Unauthorized Deezer Music Downloads
https://thehackernews.com/2025/02/malicious-pypi-package-automslc-enables.html
SOC 3.0 - The Evolution of the SOC and How AI is Empowering Human Talent
https://thehackernews.com/2025/02/soc-30-evolution-of-soc-and-how-ai-is.html
New Linux Malware ‘Auto-Color’ Grants Hackers Full Remote Access to Compromised Systems
https://thehackernews.com/2025/02/new-linux-malware-auto-color-grants.html
CERT-UA Warns of UAC-0173 Attacks Deploying DCRat to Compromise Ukrainian Notaries
https://thehackernews.com/2025/02/cert-ua-warns-of-uac-0173-attacks.html
Three Password Cracking Techniques and How to Defend Against Them
https://thehackernews.com/2025/02/three-password-cracking-techniques-and.html
Kubernetes Golden Tickets
https://www.reddit.com/r/netsec/comments/1iyn5m4/kubernetes_golden_tickets/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: The Best Security Is When We All Agree To Keep Everything Secret (Except The Secrets) - NAKIVO…
Explore this post and more from the netsec community
Top Security News for February 21, 2025
Malicious Chrome extensions infected over 3.2 million users worldwide.
https://www.reddit.com/r/netsec/comments/1izcoti/16_malicious_chrome_extensions_infected_over_32/
Space Pirates Targets Russian IT Firms With New LuckyStrike Agent Malware
https://thehackernews.com/2025/02/space-pirates-targets-russian-it-firms.html
New TgToxic Banking Trojan Variant Evolves with Anti-Analysis Upgrades
https://thehackernews.com/2025/02/new-tgtoxic-banking-trojan-variant.html
89% of Enterprise GenAI Usage Is Invisible to Organizations Exposing Critical Security Risks, New Report Reveals
https://thehackernews.com/2025/02/89-of-enterprise-genai-usage-is.html
Modern Approach to Attributing Hacktivist Groups
https://research.checkpoint.com/2025/modern-approach-to-attributing-hacktivist-groups/
Research: Using Stylometry & Topic Modeling to Attribute State-Sponsored Hacktivist Groups
https://www.reddit.com/r/netsec/comments/1izgnfx/research_using_stylometry_topic_modeling_to/
Silver Fox APT Uses Winos 4.0 Malware in Cyber Attacks Against Taiwanese Organizations
https://thehackernews.com/2025/02/silver-fox-apt-uses-winos-40-malware-in.html
FBI attributes $1.5 billion Bybit hack to DPRK hackers.
https://thecyberwire.com/newsletters/daily-briefing/14/3816
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Malicious Chrome extensions infected over 3.2 million users worldwide.
https://www.reddit.com/r/netsec/comments/1izcoti/16_malicious_chrome_extensions_infected_over_32/
Space Pirates Targets Russian IT Firms With New LuckyStrike Agent Malware
https://thehackernews.com/2025/02/space-pirates-targets-russian-it-firms.html
New TgToxic Banking Trojan Variant Evolves with Anti-Analysis Upgrades
https://thehackernews.com/2025/02/new-tgtoxic-banking-trojan-variant.html
89% of Enterprise GenAI Usage Is Invisible to Organizations Exposing Critical Security Risks, New Report Reveals
https://thehackernews.com/2025/02/89-of-enterprise-genai-usage-is.html
Modern Approach to Attributing Hacktivist Groups
https://research.checkpoint.com/2025/modern-approach-to-attributing-hacktivist-groups/
Research: Using Stylometry & Topic Modeling to Attribute State-Sponsored Hacktivist Groups
https://www.reddit.com/r/netsec/comments/1izgnfx/research_using_stylometry_topic_modeling_to/
Silver Fox APT Uses Winos 4.0 Malware in Cyber Attacks Against Taiwanese Organizations
https://thehackernews.com/2025/02/silver-fox-apt-uses-winos-40-malware-in.html
FBI attributes $1.5 billion Bybit hack to DPRK hackers.
https://thecyberwire.com/newsletters/daily-briefing/14/3816
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: 16 Malicious Chrome extensions infected over 3.2 mln users worldwide.
Posted by Incogni_hi - 232 votes and 41 comments
Top Security News for February 2025
Microsoft Exposes LLMjacking Cybercriminals Behind Azure AI Abuse Scheme
https://thehackernews.com/2025/02/microsoft-exposes-llmjacking.html
Cisco Fixed Command Injection and DoS Flaws in Nexus Switches
https://securityaffairs.com/174753/security/cisco-fixed-command-injection-and-dos-flaws-in-nexus-switches.html
Bypass AMSI in 2025
https://www.reddit.com/r/netsec/comments/1j07zpp/bypass_amsi_in_2025/
Behavior Models, Temperature Tweaks, and Safety Battles
https://thecyberwire.com/podcasts/the-faik-files/24/notes
5,000 Phishing PDFs on 260 Domains Distribute Lumma Stealer via Fake CAPTCHAs
https://thehackernews.com/2025/02/5000-phishing-pdfs-on-260-domains.html
RDP: a Double-Edged Sword for IT Teams – Essential Yet Exploitable
https://thehackernews.com/2025/02/rdp-double-edged-sword-for-it-teams.html
Qilin Ransomware Gang Claims Responsibility for Attack Against Lee Enterprises
https://www.reddit.com/r/netsec/comments/1j07zpp/bypass_amsi_in_2025/
Amnesty Finds Cellebrite’s Zero-Day Used to Unlock Serbian Activist’s Android Phone
https://thehackernews.com/2025/02/amnesty-finds-cellebrites-zero-day.html
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Microsoft Exposes LLMjacking Cybercriminals Behind Azure AI Abuse Scheme
https://thehackernews.com/2025/02/microsoft-exposes-llmjacking.html
Cisco Fixed Command Injection and DoS Flaws in Nexus Switches
https://securityaffairs.com/174753/security/cisco-fixed-command-injection-and-dos-flaws-in-nexus-switches.html
Bypass AMSI in 2025
https://www.reddit.com/r/netsec/comments/1j07zpp/bypass_amsi_in_2025/
Behavior Models, Temperature Tweaks, and Safety Battles
https://thecyberwire.com/podcasts/the-faik-files/24/notes
5,000 Phishing PDFs on 260 Domains Distribute Lumma Stealer via Fake CAPTCHAs
https://thehackernews.com/2025/02/5000-phishing-pdfs-on-260-domains.html
RDP: a Double-Edged Sword for IT Teams – Essential Yet Exploitable
https://thehackernews.com/2025/02/rdp-double-edged-sword-for-it-teams.html
Qilin Ransomware Gang Claims Responsibility for Attack Against Lee Enterprises
https://www.reddit.com/r/netsec/comments/1j07zpp/bypass_amsi_in_2025/
Amnesty Finds Cellebrite’s Zero-Day Used to Unlock Serbian Activist’s Android Phone
https://thehackernews.com/2025/02/amnesty-finds-cellebrites-zero-day.html
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Security Affairs
Cisco fixed command injection and DoS flaws in Nexus switches
Cisco addressed command injection and denial-of-service (DoS) vulnerabilities in some models of its Nexus switches.
Top Security News for October 5, 2023
Bybit $1.5b hack was a Safe Wallet web app JS payload injection
https://www.reddit.com/r/netsec/comments/1j0y8fc/bybit_15b_hack_was_a_safe_wallet_web_app_js/
Microsoft disrupted a global cybercrime ring abusing Azure OpenAI Service
https://securityaffairs.com/174779/cyber-crime/azure-abuse-scheme-individuals-exposed.html
Ransomware gangs exploit a Paragon Partition Manager BioNTdrv.sys driver zero-day
https://securityaffairs.com/174789/cyber-crime/ransomware-gangs-paragon-partition-manager-biontdrv-sys-driver-zero-day-attacks.html
Wallbleed: A Memory Disclosure Vulnerability in the Great Firewall of China
https://www.reddit.com/r/netsec/comments/1j1evli/wallbleed_a_memory_disclosure_vulnerability_in/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Bybit $1.5b hack was a Safe Wallet web app JS payload injection
https://www.reddit.com/r/netsec/comments/1j0y8fc/bybit_15b_hack_was_a_safe_wallet_web_app_js/
Microsoft disrupted a global cybercrime ring abusing Azure OpenAI Service
https://securityaffairs.com/174779/cyber-crime/azure-abuse-scheme-individuals-exposed.html
Ransomware gangs exploit a Paragon Partition Manager BioNTdrv.sys driver zero-day
https://securityaffairs.com/174789/cyber-crime/ransomware-gangs-paragon-partition-manager-biontdrv-sys-driver-zero-day-attacks.html
Wallbleed: A Memory Disclosure Vulnerability in the Great Firewall of China
https://www.reddit.com/r/netsec/comments/1j1evli/wallbleed_a_memory_disclosure_vulnerability_in/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: Bybit $1.5b hack was a Safe Wallet web app JS payload injection
Posted by pzduniak - 156 votes and 9 comments
Top Security News for October 24, 2023
Substack Domain Takeover
https://www.reddit.com/r/netsec/comments/1j1ofqp/substack_domain_takeover/
Substack Domain Takeover
https://www.reddit.com/r/netsec/comments/1j1ofqp/substack_domain_takeover/
Substack Domain Takeover
https://www.reddit.com/r/netsec/comments/1j1ofqp/substack_domain_takeover/
Substack Domain Takeover
https://www.reddit.com/r/netsec/comments/1j1ofqp/substack_domain_takeover/
MitM attack against OpenSSH's VerifyHostKeyDNS-enabled client
https://www.reddit.com/r/netsec/comments/1j1wt6u/mitm_attack_against_opensshs/
MitM attack against OpenSSH's VerifyHostKeyDNS-enabled client
https://www.reddit.com/r/netsec/comments/1j1wt6u/mitm_attack_against_opensshs/
MitM attack against OpenSSH's VerifyHostKeyDNS-enabled client
https://www.reddit.com/r/netsec/comments/1j1wt6u/mitm_attack_against_opensshs/
HUB Security Secures Continued Nasdaq Listing, Marking an Important Milestone
https://www.reddit.com/r/netsec/comments/1j1zypx/hub_security_secures_continued_nasdaq_listing/
Understanding the AI Act and its compliance challenges
https://www.reddit.com/r/netsec/comments/1j2fo1p/understanding_the_ai_act_and_its_compliance/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Substack Domain Takeover
https://www.reddit.com/r/netsec/comments/1j1ofqp/substack_domain_takeover/
Substack Domain Takeover
https://www.reddit.com/r/netsec/comments/1j1ofqp/substack_domain_takeover/
Substack Domain Takeover
https://www.reddit.com/r/netsec/comments/1j1ofqp/substack_domain_takeover/
Substack Domain Takeover
https://www.reddit.com/r/netsec/comments/1j1ofqp/substack_domain_takeover/
MitM attack against OpenSSH's VerifyHostKeyDNS-enabled client
https://www.reddit.com/r/netsec/comments/1j1wt6u/mitm_attack_against_opensshs/
MitM attack against OpenSSH's VerifyHostKeyDNS-enabled client
https://www.reddit.com/r/netsec/comments/1j1wt6u/mitm_attack_against_opensshs/
MitM attack against OpenSSH's VerifyHostKeyDNS-enabled client
https://www.reddit.com/r/netsec/comments/1j1wt6u/mitm_attack_against_opensshs/
HUB Security Secures Continued Nasdaq Listing, Marking an Important Milestone
https://www.reddit.com/r/netsec/comments/1j1zypx/hub_security_secures_continued_nasdaq_listing/
Understanding the AI Act and its compliance challenges
https://www.reddit.com/r/netsec/comments/1j2fo1p/understanding_the_ai_act_and_its_compliance/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: Substack Domain Takeover
Posted by whisperingmime - 0 votes and 0 comments
❤1
Top Security News for Today
Why a push for encryption backdoors is a global security risk
https://www.reddit.com/r/netsec/comments/1j38aru/why_a_push_for_encryption_backdoors_is_a_global/
We Deliberately Exposed AWS Keys on Developer Forums: Attackers Exploited One in 10 Hours
https://www.reddit.com/r/netsec/comments/1j38z5p/we_deliberately_exposed_aws_keys_on_developer/
We Deliberately Exposed AWS Keys on Developer Forums: Attackers Exploited One in 10 Hours
https://www.reddit.com/r/netsec/comments/1j38z5p/we_deliberately_exposed_aws_keys_on_developer/
DISCOUNTED HOTEL DEALS ANNOUNCED FOR HOPE_16
https://www.2600.com/content/discounted-hotel-deals-announced-hope16
Securing generative AI models on Azure AI Foundry
https://www.microsoft.com/en-us/security/blog/2025/03/04/securing-generative-ai-models-on-azure-ai-foundry/
Adaptive Attacks Break Defenses Against Indirect Prompt Injection Attacks on LLM Agents
https://arxiv.org/abs/2503.00061
CRFU: Compressive Representation Forgetting Against Privacy Leakage on Machine Unlearning
https://arxiv.org/abs/2503.00062
ADAGE: Active Defenses Against GNN Extraction
https://arxiv.org/abs/2503.00065
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Why a push for encryption backdoors is a global security risk
https://www.reddit.com/r/netsec/comments/1j38aru/why_a_push_for_encryption_backdoors_is_a_global/
We Deliberately Exposed AWS Keys on Developer Forums: Attackers Exploited One in 10 Hours
https://www.reddit.com/r/netsec/comments/1j38z5p/we_deliberately_exposed_aws_keys_on_developer/
We Deliberately Exposed AWS Keys on Developer Forums: Attackers Exploited One in 10 Hours
https://www.reddit.com/r/netsec/comments/1j38z5p/we_deliberately_exposed_aws_keys_on_developer/
DISCOUNTED HOTEL DEALS ANNOUNCED FOR HOPE_16
https://www.2600.com/content/discounted-hotel-deals-announced-hope16
Securing generative AI models on Azure AI Foundry
https://www.microsoft.com/en-us/security/blog/2025/03/04/securing-generative-ai-models-on-azure-ai-foundry/
Adaptive Attacks Break Defenses Against Indirect Prompt Injection Attacks on LLM Agents
https://arxiv.org/abs/2503.00061
CRFU: Compressive Representation Forgetting Against Privacy Leakage on Machine Unlearning
https://arxiv.org/abs/2503.00062
ADAGE: Active Defenses Against GNN Extraction
https://arxiv.org/abs/2503.00065
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: Why a push for encryption backdoors is a global security risk
Explore this post and more from the netsec community
Top Security News for March 5, 2025
Silk Typhoon targeting IT supply chain
https://www.microsoft.com/en-us/security/blog/2025/03/05/silk-typhoon-targeting-it-supply-chain/
EvilLoader: Yesterday was published PoC for unpatched Vulnerability affecting Telegram for Android
https://www.reddit.com/r/netsec/comments/1j3y1kl/evilloader_yesterday_was_published_poc_for/
EvilLoader: Yesterday was published PoC for unpatched Vulnerability affecting Telegram for Android
https://www.reddit.com/r/netsec/comments/1j3y1kl/evilloader_yesterday_was_published_poc_for/
UDora: A Unified Red Teaming Framework against LLM Agents by Dynamically Hijacking Their Own Reasoning
https://arxiv.org/abs/2503.01908
Datenschutzkonformer LLM-Einsatz: Eine Open-Source-Referenzarchitektur
https://arxiv.org/abs/2503.01915
A Lightweight and Secure Deep Learning Model for Privacy-Preserving Federated Learning in Intelligent Enterprises
https://arxiv.org/abs/2503.02017
Protecting DeFi Platforms against Non-Price Flash Loan Attacks
https://arxiv.org/abs/2503.01944
Advancing Obfuscation Strategies to Counter China's Great Firewall: A Technical and Policy Perspective
https://arxiv.org/abs/2503.02018
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Silk Typhoon targeting IT supply chain
https://www.microsoft.com/en-us/security/blog/2025/03/05/silk-typhoon-targeting-it-supply-chain/
EvilLoader: Yesterday was published PoC for unpatched Vulnerability affecting Telegram for Android
https://www.reddit.com/r/netsec/comments/1j3y1kl/evilloader_yesterday_was_published_poc_for/
EvilLoader: Yesterday was published PoC for unpatched Vulnerability affecting Telegram for Android
https://www.reddit.com/r/netsec/comments/1j3y1kl/evilloader_yesterday_was_published_poc_for/
UDora: A Unified Red Teaming Framework against LLM Agents by Dynamically Hijacking Their Own Reasoning
https://arxiv.org/abs/2503.01908
Datenschutzkonformer LLM-Einsatz: Eine Open-Source-Referenzarchitektur
https://arxiv.org/abs/2503.01915
A Lightweight and Secure Deep Learning Model for Privacy-Preserving Federated Learning in Intelligent Enterprises
https://arxiv.org/abs/2503.02017
Protecting DeFi Platforms against Non-Price Flash Loan Attacks
https://arxiv.org/abs/2503.01944
Advancing Obfuscation Strategies to Counter China's Great Firewall: A Technical and Policy Perspective
https://arxiv.org/abs/2503.02018
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Microsoft News
Silk Typhoon targeting IT supply chain
Silk Typhoon is a Chinese state actor focused on espionage campaigns targeting a wide range of industries in the US and throughout the world. In recent months, Silk Typhoon has shifted to performing IT supply chain attacks to gain access to targets. In this…
Top Security News for October 20, 2023
The Burn Notice, Part 2/5 | How We Uncovered a Critical Vulnerability in a Leading AI Agent Framework
https://www.reddit.com/r/netsec/comments/1j4x1tp/the_burn_notice_part_25_how_we_uncovered_a/
Sleeping Beauty Vulnerability: Bypassing CrowdStrike Falcon With One Simple Trick
https://www.reddit.com/r/netsec/comments/1j4s3as/sleeping_beauty_vulnerability_bypassing/
Malvertising campaign leads to info stealers hosted on GitHub
https://www.microsoft.com/en-us/security/blog/2025/03/06/malvertising-campaign-leads-to-info-stealers-hosted-on-github/
Command Injection - Compressive Guide & Payloads | VeryLazyTech
https://www.reddit.com/r/netsec/comments/1j4yi3f/command_injection_compressive_guide_payloads/
Zen and the Art of Microcode Hacking
https://www.reddit.com/r/netsec/comments/1j4r13c/zen_and_the_art_of_microcode_hacking/
Mind the Gap: Detecting Black-box Adversarial Attacks in the Making through Query Update Analysis
https://arxiv.org/abs/2503.02986
Adopt a PET! An Exploration of PETs, Policy, and Practicalities for Industry in Canada
https://arxiv.org/abs/2503.03027
Network Anomaly Detection for IoT Using Hyperdimensional Computing on NSL-KDD
https://arxiv.org/abs/2503.03031
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
The Burn Notice, Part 2/5 | How We Uncovered a Critical Vulnerability in a Leading AI Agent Framework
https://www.reddit.com/r/netsec/comments/1j4x1tp/the_burn_notice_part_25_how_we_uncovered_a/
Sleeping Beauty Vulnerability: Bypassing CrowdStrike Falcon With One Simple Trick
https://www.reddit.com/r/netsec/comments/1j4s3as/sleeping_beauty_vulnerability_bypassing/
Malvertising campaign leads to info stealers hosted on GitHub
https://www.microsoft.com/en-us/security/blog/2025/03/06/malvertising-campaign-leads-to-info-stealers-hosted-on-github/
Command Injection - Compressive Guide & Payloads | VeryLazyTech
https://www.reddit.com/r/netsec/comments/1j4yi3f/command_injection_compressive_guide_payloads/
Zen and the Art of Microcode Hacking
https://www.reddit.com/r/netsec/comments/1j4r13c/zen_and_the_art_of_microcode_hacking/
Mind the Gap: Detecting Black-box Adversarial Attacks in the Making through Query Update Analysis
https://arxiv.org/abs/2503.02986
Adopt a PET! An Exploration of PETs, Policy, and Practicalities for Industry in Canada
https://arxiv.org/abs/2503.03027
Network Anomaly Detection for IoT Using Hyperdimensional Computing on NSL-KDD
https://arxiv.org/abs/2503.03031
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: The Burn Notice, Part 2/5 | How We Uncovered a Critical Vulnerability in a Leading AI Agent…
Explore this post and more from the netsec community
Top Security News for October 23, 2023
Crxplorer.com is a great free tool for blue team to check overly permissive browser extensions
https://www.reddit.com/r/netsec/comments/1j5me7r/crxplorercom_is_a_great_free_tool_for_blue_team/
Uncovering .NET Malware Obfuscated by Encryption and Virtualization
https://www.reddit.com/r/netsec/comments/1j3y26r/uncovering_net_malware_obfuscated_by_encryption/
Automatically create an operation log of your shell! Supports Linux (Bash/Zsh) and Windows (PowerShell).
https://www.reddit.com/r/netsec/comments/1j40l9q/automatically_create_an_operation_log_of_your/
gpt4free - because I ain't got cash and I need synthetic LLM response data dammit.
https://www.reddit.com/r/netsec/comments/1j37kyi/gpt4free_because_i_aint_got_cash_and_i_need/
CRAFT: Characterizing and Root-Causing Fault Injection Threats at Pre-Silicon
https://arxiv.org/abs/2503.03877
Parser Knows Best: Testing DBMS with Coverage-Guided Grammar-Rule Traversal
https://arxiv.org/abs/2503.03893
A Quantum Good Authentication Protocol
https://arxiv.org/abs/2503.03884
Cryptographic Verifiability for Voter Registration Systems
https://arxiv.org/abs/2503.03974
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Crxplorer.com is a great free tool for blue team to check overly permissive browser extensions
https://www.reddit.com/r/netsec/comments/1j5me7r/crxplorercom_is_a_great_free_tool_for_blue_team/
Uncovering .NET Malware Obfuscated by Encryption and Virtualization
https://www.reddit.com/r/netsec/comments/1j3y26r/uncovering_net_malware_obfuscated_by_encryption/
Automatically create an operation log of your shell! Supports Linux (Bash/Zsh) and Windows (PowerShell).
https://www.reddit.com/r/netsec/comments/1j40l9q/automatically_create_an_operation_log_of_your/
gpt4free - because I ain't got cash and I need synthetic LLM response data dammit.
https://www.reddit.com/r/netsec/comments/1j37kyi/gpt4free_because_i_aint_got_cash_and_i_need/
CRAFT: Characterizing and Root-Causing Fault Injection Threats at Pre-Silicon
https://arxiv.org/abs/2503.03877
Parser Knows Best: Testing DBMS with Coverage-Guided Grammar-Rule Traversal
https://arxiv.org/abs/2503.03893
A Quantum Good Authentication Protocol
https://arxiv.org/abs/2503.03884
Cryptographic Verifiability for Voter Registration Systems
https://arxiv.org/abs/2503.03974
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: Crxplorer.com is a great free tool for blue team to check overly permissive browser extensions
Posted by kinso1338 - 0 votes and 0 comments
Top Security News for Today
Reversing Samsung's H-Arx Hypervisor Framework (Part 1)
https://www.reddit.com/r/netsec/comments/1j6gbqj/reversing_samsungs_harx_hypervisor_framework_part/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reversing Samsung's H-Arx Hypervisor Framework (Part 1)
https://www.reddit.com/r/netsec/comments/1j6gbqj/reversing_samsungs_harx_hypervisor_framework_part/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: Reversing Samsung's H-Arx Hypervisor Framework (Part 1)
Explore this post and more from the netsec community
Top Security News for Today
Injecting domain expertise into your AI system
https://www.reddit.com/r/netsec/comments/1j76ap1/injecting_domain_expertise_into_your_ai_system/
Injecting domain expertise into your AI system
https://medium.com/towards-data-science/injecting-domain-expertise-into-your-ai-system-792febff48f0
Watson: A Cognitive Observability Framework for the Reasoning of LLM-Powered Agents
https://arxiv.org/abs/2411.03455
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Injecting domain expertise into your AI system
https://www.reddit.com/r/netsec/comments/1j76ap1/injecting_domain_expertise_into_your_ai_system/
Injecting domain expertise into your AI system
https://medium.com/towards-data-science/injecting-domain-expertise-into-your-ai-system-792febff48f0
Watson: A Cognitive Observability Framework for the Reasoning of LLM-Powered Agents
https://arxiv.org/abs/2411.03455
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: Injecting domain expertise into your AI system
Explore this post and more from the netsec community
Top Security News for Today
SideWinder targets the maritime and nuclear sectors with an updated toolset
https://securelist.com/sidewinder-apt-updates-its-toolset-and-targets-nuclear-sector/115847/
Understanding the Windows Filtering Platform (WFP): A Quick Overview
https://www.tripwire.com/state-of-security/understanding-windows-filtering-platform-wfp-quick-overview
Thousands of WordPress Websites Infected with Malware
https://www.schneier.com/blog/archives/2025/03/thousands-of-wordpress-websites-infected-with-malware.html
FlippyR.AM: Large-Scale Rowhammer Study
https://www.reddit.com/r/netsec/comments/1j7whk7/flippyram_largescale_rowhammer_study/
Blind Eagle: …And Justice for All
https://research.checkpoint.com/2025/blind-eagle-and-justice-for-all/
Azure’s Weakest Link? How API Connections Spill Secrets
https://www.reddit.com/r/netsec/comments/1j7yqj6/azures_weakest_link_how_api_connections_spill/
10th March – Threat Intelligence Report
https://research.checkpoint.com/2025/10th-march-threat-intelligence-report/
HOWTO: build ATF (Trusted Firmware ARM) and OPTEE for RK3588
https://www.reddit.com/r/netsec/comments/1j84rrm/howto_build_atf_trusted_firmware_arm_and_optee/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
SideWinder targets the maritime and nuclear sectors with an updated toolset
https://securelist.com/sidewinder-apt-updates-its-toolset-and-targets-nuclear-sector/115847/
Understanding the Windows Filtering Platform (WFP): A Quick Overview
https://www.tripwire.com/state-of-security/understanding-windows-filtering-platform-wfp-quick-overview
Thousands of WordPress Websites Infected with Malware
https://www.schneier.com/blog/archives/2025/03/thousands-of-wordpress-websites-infected-with-malware.html
FlippyR.AM: Large-Scale Rowhammer Study
https://www.reddit.com/r/netsec/comments/1j7whk7/flippyram_largescale_rowhammer_study/
Blind Eagle: …And Justice for All
https://research.checkpoint.com/2025/blind-eagle-and-justice-for-all/
Azure’s Weakest Link? How API Connections Spill Secrets
https://www.reddit.com/r/netsec/comments/1j7yqj6/azures_weakest_link_how_api_connections_spill/
10th March – Threat Intelligence Report
https://research.checkpoint.com/2025/10th-march-threat-intelligence-report/
HOWTO: build ATF (Trusted Firmware ARM) and OPTEE for RK3588
https://www.reddit.com/r/netsec/comments/1j84rrm/howto_build_atf_trusted_firmware_arm_and_optee/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Top Security News for Today
DCRat backdoor returns
https://securelist.com/new-wave-of-attacks-with-dcrat-backdoor-distributed-by-maas/115850/
Old medpy Deserialization Vulnerability
https://www.reddit.com/r/netsec/comments/1j8rx3b/old_medpy_deserialization_vulnerability/
R1-Searcher: Incentivizing the Search Capability in LLMs via Reinforcement Learning
https://arxiv.org/abs/2503.05592
MeanCache: User-Centric Semantic Caching for LLM Web Services
https://arxiv.org/abs/2403.02694
Nature-Inspired Population-Based Evolution of Large Language Models
https://arxiv.org/abs/2503.01155
Language Models Enable Simple Systems for Generating Structured Views of Heterogeneous Data Lakes
https://arxiv.org/abs/2304.09433
Npm Run Hack:Me - A Supply Chain Attack Journey
https://www.reddit.com/r/netsec/comments/1j8ugic/npm_run_hackme_a_supply_chain_attack_journey/
Alleged Co-Founder of Garantex Arrested in India
https://krebsonsecurity.com/2025/03/alleged-co-founder-of-garantex-arrested-in-india/
New XCSSET malware adds new obfuscation, persistence techniques to infect Xcode projects
https://www.microsoft.com/en-us/security/blog/2025/03/11/new-xcsset-malware-adds-new-obfuscation-persistence-techniques-to-infect-xcode-projects/
Microsoft Patch Tuesday, March 2025 Security Update Review
https://blog.qualys.com/vulnerabilities-threat-research/2025/03/11/microsoft-patch-tuesday-march-2025-security-update-review
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
DCRat backdoor returns
https://securelist.com/new-wave-of-attacks-with-dcrat-backdoor-distributed-by-maas/115850/
Old medpy Deserialization Vulnerability
https://www.reddit.com/r/netsec/comments/1j8rx3b/old_medpy_deserialization_vulnerability/
R1-Searcher: Incentivizing the Search Capability in LLMs via Reinforcement Learning
https://arxiv.org/abs/2503.05592
MeanCache: User-Centric Semantic Caching for LLM Web Services
https://arxiv.org/abs/2403.02694
Nature-Inspired Population-Based Evolution of Large Language Models
https://arxiv.org/abs/2503.01155
Language Models Enable Simple Systems for Generating Structured Views of Heterogeneous Data Lakes
https://arxiv.org/abs/2304.09433
Npm Run Hack:Me - A Supply Chain Attack Journey
https://www.reddit.com/r/netsec/comments/1j8ugic/npm_run_hackme_a_supply_chain_attack_journey/
Alleged Co-Founder of Garantex Arrested in India
https://krebsonsecurity.com/2025/03/alleged-co-founder-of-garantex-arrested-in-india/
New XCSSET malware adds new obfuscation, persistence techniques to infect Xcode projects
https://www.microsoft.com/en-us/security/blog/2025/03/11/new-xcsset-malware-adds-new-obfuscation-persistence-techniques-to-infect-xcode-projects/
Microsoft Patch Tuesday, March 2025 Security Update Review
https://blog.qualys.com/vulnerabilities-threat-research/2025/03/11/microsoft-patch-tuesday-march-2025-security-update-review
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Securelist
New wave of attacks on gamers with DCRat backdoor
Top Security News for Today
Impossible XXE in PHP
https://www.reddit.com/r/netsec/comments/1j9f0i7/impossible_xxe_in_php/
Analysis of CVE-2025-24813 Apache Tomcat Path Equivalence RCE
https://www.reddit.com/r/netsec/comments/1j9f0ur/analysis_of_cve202524813_apache_tomcat_path/
Cybersecurity Can’t Wait: Modern Enterprises Must Adapt
https://www.tripwire.com/state-of-security/cybersecurity-cant-wait-modern-enterprises-must-adapt
Pre-authentication SQL injection to RCE in GLPI (CVE-2025-24799/CVE-2025-24801)
https://www.reddit.com/r/netsec/comments/1j9hcdw/preauthentication_sql_injection_to_rce_in_glpi/
China, Russia, Iran, and North Korea Intelligence Sharing
https://www.schneier.com/blog/archives/2025/03/china-russia-iran-and-north-korea-intelligence-sharing.html
Behind the Scenes of Burp AI: How we built it, and what's next
https://portswigger.net/blog/behind-the-scenes-of-burp-ai-how-we-built-it-and-whats-next
New Lumma Stealer campaign abuses Reddit threads to drop malware via fake WeTransfer links
https://www.reddit.com/r/netsec/comments/1j9xq07/new_lumma_stealer_campaign_abuses_reddit_threads/
Ruthless Mantis - Modus Operandi
https://www.reddit.com/r/netsec/comments/1j9v0dh/ruthless_mantis_modus_operandi/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Impossible XXE in PHP
https://www.reddit.com/r/netsec/comments/1j9f0i7/impossible_xxe_in_php/
Analysis of CVE-2025-24813 Apache Tomcat Path Equivalence RCE
https://www.reddit.com/r/netsec/comments/1j9f0ur/analysis_of_cve202524813_apache_tomcat_path/
Cybersecurity Can’t Wait: Modern Enterprises Must Adapt
https://www.tripwire.com/state-of-security/cybersecurity-cant-wait-modern-enterprises-must-adapt
Pre-authentication SQL injection to RCE in GLPI (CVE-2025-24799/CVE-2025-24801)
https://www.reddit.com/r/netsec/comments/1j9hcdw/preauthentication_sql_injection_to_rce_in_glpi/
China, Russia, Iran, and North Korea Intelligence Sharing
https://www.schneier.com/blog/archives/2025/03/china-russia-iran-and-north-korea-intelligence-sharing.html
Behind the Scenes of Burp AI: How we built it, and what's next
https://portswigger.net/blog/behind-the-scenes-of-burp-ai-how-we-built-it-and-whats-next
New Lumma Stealer campaign abuses Reddit threads to drop malware via fake WeTransfer links
https://www.reddit.com/r/netsec/comments/1j9xq07/new_lumma_stealer_campaign_abuses_reddit_threads/
Ruthless Mantis - Modus Operandi
https://www.reddit.com/r/netsec/comments/1j9v0dh/ruthless_mantis_modus_operandi/
Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman
Reddit
From the netsec community on Reddit: Impossible XXE in PHP
Posted by Fugitif - 6 votes and 0 comments