Forwarded from UNDERCODE NEWS (Copyright & Fact Checker)
Understanding Cookie Types and Their Functions
https://undercodenews.com/understanding-cookie-types-and-their-functions/
@Undercode_News
https://undercodenews.com/understanding-cookie-types-and-their-functions/
@Undercode_News
Forwarded from UNDERCODE NEWS (Copyright & Fact Checker)
π Shein's Indian Comeback: Conditional on Data Localization and Reliance Partnership
https://undercodenews.com/sheins-indian-comeback-conditional-on-data-localization-and-reliance-partnership/
@Undercode_News
https://undercodenews.com/sheins-indian-comeback-conditional-on-data-localization-and-reliance-partnership/
@Undercode_News
Forwarded from UNDERCODE NEWS (Copyright & Fact Checker)
Japanese Auto Giants, Honda and #Nissan, Eye Potential Merger to Take on EV Frontrunners
https://undercodenews.com/japanese-auto-giants-honda-and-nissan-eye-potential-merger-to-take-on-ev-frontrunners/
@Undercode_News
https://undercodenews.com/japanese-auto-giants-honda-and-nissan-eye-potential-merger-to-take-on-ev-frontrunners/
@Undercode_News
UNDERCODE NEWS
Japanese Auto Giants, Honda and Nissan, Eye Potential Merger to Take on EV Frontrunners - UNDERCODE NEWS
Undercode News was founded in order to provide the most useful information in the world of hacking and technology. Staffed 24/24 hours, seven days a week by a dedicated team in undercode around the world, so it can provide an environment of information andβ¦
Forwarded from UNDERCODE TESTING
π¦Detection of teams convoC2 Mainly used by Red Teamers recent days.
Basically it causes out bound requests to C2 Server, exfiltrates command outputs from Adaptive Cards images URLs and inserting data into hidden span tags in Microsoft teams conservations.
The fact that the victim only sends http queries to Microsoft servers and the antivirus doesn't examine MS teams log files and in absence of direct connection between the victim and attacker in this case its very difficult to detect.
Here is the custom KQL to Detect.
CloudAppEvents
| where Timestamp > ago(1h)
| where Application contains "Microsoft Teams"
| where ActionType contains "AppInstalled"
| where parse_json(RawEventData)["AddOnName"] == 'Workflows'
Ref: Kintali Sai Dinesh
@UndercodeCommunity
β β β Uππ»βΊπ«Δπ¬πβ β β β
Basically it causes out bound requests to C2 Server, exfiltrates command outputs from Adaptive Cards images URLs and inserting data into hidden span tags in Microsoft teams conservations.
The fact that the victim only sends http queries to Microsoft servers and the antivirus doesn't examine MS teams log files and in absence of direct connection between the victim and attacker in this case its very difficult to detect.
Here is the custom KQL to Detect.
CloudAppEvents
| where Timestamp > ago(1h)
| where Application contains "Microsoft Teams"
| where ActionType contains "AppInstalled"
| where parse_json(RawEventData)["AddOnName"] == 'Workflows'
Ref: Kintali Sai Dinesh
@UndercodeCommunity
β β β Uππ»βΊπ«Δπ¬πβ β β β
Forwarded from Exploiting Crew (Pr1vAt3)
π¦18 Must-Have Free Tools for Cybersecurity Enthusiasts π‘οΈ
As a cybersecurity professional, staying ahead of the curve requires constant learning and hands-on practice. The good news? You donβt need to break the bank to access industry-leading tools. Here's a curated list of 18 free cybersecurity tools to elevate your skillsβwhether you're a beginner or a seasoned expert!
π΅ 1. Kali Linux
The ultimate penetration testing operating system for ethical hackers.
π΅ 2. Wireshark
A network protocol analyzer that lets you capture and inspect data in real time.
π΅ 3. Burp Suite Community Edition
Perfect for web application security testing and vulnerability assessments.
π΅ 4. Gophish
An open-source phishing toolkit for creating realistic phishing campaigns.
π΅ 5. Aircrack-ng
Specializes in cracking WEP/WPA Wi-Fi passwords.
π΅ 6. Have I Been Pwned?
Check if your email or accounts have been compromised in data breaches.
π΅ 7. Metasploit Framework
A penetration testing powerhouse for exploiting vulnerabilities.
π΅ 8. Nikto
Scans web servers for dangerous files, outdated software, and misconfigurations.
π΅ 9. HackTheBox
An interactive training platform to sharpen your hacking skills.
π΅ 10. pfSense
A firewall and router solution for network protection.
π΅ 11. CyberChef
A versatile tool for analyzing, encrypting, and decoding data.
π΅ 12. Ghidra
An open-source reverse engineering tool by the NSA.
π΅ 13. Deshashed
Enhance email security by detecting exposed credentials.
π΅ 14. OpenVAS
A comprehensive vulnerability scanner for systems and networks.
π΅ 15. OSSEC
Monitor and prevent intrusions in your environment with this HIDS tool.
π΅ 16. SQLmap
Automatically detect and exploit SQL injection vulnerabilities.
π΅ 17. REMnux
Reverse engineering and malware analysis made accessible.
π΅ 18. Zed Attack Proxy (ZAP)
A web application security scanner for discovering vulnerabilities.
π Why Use These Tools?
- Cost-Effective: Free but highly efficient.
- Industry Standard: Frequently used by professionals worldwide.
- Skill Development: Master critical areas like penetration testing, vulnerability analysis, and data protection.
Ref: Arun KL
@UndercodeCommunity
β β β Uππ»βΊπ«Δπ¬πβ β β β
As a cybersecurity professional, staying ahead of the curve requires constant learning and hands-on practice. The good news? You donβt need to break the bank to access industry-leading tools. Here's a curated list of 18 free cybersecurity tools to elevate your skillsβwhether you're a beginner or a seasoned expert!
π΅ 1. Kali Linux
The ultimate penetration testing operating system for ethical hackers.
π΅ 2. Wireshark
A network protocol analyzer that lets you capture and inspect data in real time.
π΅ 3. Burp Suite Community Edition
Perfect for web application security testing and vulnerability assessments.
π΅ 4. Gophish
An open-source phishing toolkit for creating realistic phishing campaigns.
π΅ 5. Aircrack-ng
Specializes in cracking WEP/WPA Wi-Fi passwords.
π΅ 6. Have I Been Pwned?
Check if your email or accounts have been compromised in data breaches.
π΅ 7. Metasploit Framework
A penetration testing powerhouse for exploiting vulnerabilities.
π΅ 8. Nikto
Scans web servers for dangerous files, outdated software, and misconfigurations.
π΅ 9. HackTheBox
An interactive training platform to sharpen your hacking skills.
π΅ 10. pfSense
A firewall and router solution for network protection.
π΅ 11. CyberChef
A versatile tool for analyzing, encrypting, and decoding data.
π΅ 12. Ghidra
An open-source reverse engineering tool by the NSA.
π΅ 13. Deshashed
Enhance email security by detecting exposed credentials.
π΅ 14. OpenVAS
A comprehensive vulnerability scanner for systems and networks.
π΅ 15. OSSEC
Monitor and prevent intrusions in your environment with this HIDS tool.
π΅ 16. SQLmap
Automatically detect and exploit SQL injection vulnerabilities.
π΅ 17. REMnux
Reverse engineering and malware analysis made accessible.
π΅ 18. Zed Attack Proxy (ZAP)
A web application security scanner for discovering vulnerabilities.
π Why Use These Tools?
- Cost-Effective: Free but highly efficient.
- Industry Standard: Frequently used by professionals worldwide.
- Skill Development: Master critical areas like penetration testing, vulnerability analysis, and data protection.
Ref: Arun KL
@UndercodeCommunity
β β β Uππ»βΊπ«Δπ¬πβ β β β
Forwarded from UNDERCODE NEWS (Copyright & Fact Checker)
π± Unleashing Creativity with #Apple's Image Playground
https://undercodenews.com/unleashing-creativity-with-apples-image-playground/
@Undercode_News
https://undercodenews.com/unleashing-creativity-with-apples-image-playground/
@Undercode_News
UNDERCODE NEWS
Unleashing Creativity with Apple's Image Playground - UNDERCODE NEWS
Undercode News was founded in order to provide the most useful information in the world of hacking and technology. Staffed 24/24 hours, seven days a week by a dedicated team in undercode around the world, so it can provide an environment of information andβ¦
Forwarded from UNDERCODE TESTING
π¦π£πΌππ²πΏπ¦π΅π²πΉπΉ π¦π²πΉπ³-π£ππ» ππ²ππ²π°ππΆπΌπ»
The Proofpoint blog outlines a social engineering tactic where threat actors deceive users into copying and pasting malicious PowerShell scripts, causing malware infections. Groups like TA571 use fake error messages to prompt script execution, delivering malware such as DarkGate and NetSupport. Despite needing significant user interaction, the attack's success hinges on sophisticated social engineering. I have developed a custom detection PowerShell Self-Pwn KQL to identify such scenarios and assist SecOps in isolating affected devices.
Ref: Steven Lim
@UndercodeCommunity
β β β Uππ»βΊπ«Δπ¬πβ β β β
The Proofpoint blog outlines a social engineering tactic where threat actors deceive users into copying and pasting malicious PowerShell scripts, causing malware infections. Groups like TA571 use fake error messages to prompt script execution, delivering malware such as DarkGate and NetSupport. Despite needing significant user interaction, the attack's success hinges on sophisticated social engineering. I have developed a custom detection PowerShell Self-Pwn KQL to identify such scenarios and assist SecOps in isolating affected devices.
Ref: Steven Lim
@UndercodeCommunity
β β β Uππ»βΊπ«Δπ¬πβ β β β
Forwarded from UNDERCODE NEWS (Copyright & Fact Checker)
π Unlocking the Future: Schmidt Sciences Launches to Fund Cutting-Edge Research
https://undercodenews.com/unlocking-the-future-schmidt-sciences-launches-to-fund-cutting-edge-research/
@Undercode_News
https://undercodenews.com/unlocking-the-future-schmidt-sciences-launches-to-fund-cutting-edge-research/
@Undercode_News
UNDERCODE NEWS
Unlocking the Future: Schmidt Sciences Launches to Fund Cutting-Edge Research - UNDERCODE NEWS
Undercode News was founded in order to provide the most useful information in the world of hacking and technology. Staffed 24/24 hours, seven days a week by a dedicated team in undercode around the world, so it can provide an environment of information andβ¦
Forwarded from UNDERCODE NEWS (Copyright & Fact Checker)
Unleash Entertainment Anywhere: #Samsung's The Freestyle (2nd Gen) Projector Steals the Show This Holiday Season
https://undercodenews.com/unleash-entertainment-anywhere-samsungs-the-freestyle-2nd-gen-projector-steals-the-show-this-holiday-season/
@Undercode_News
https://undercodenews.com/unleash-entertainment-anywhere-samsungs-the-freestyle-2nd-gen-projector-steals-the-show-this-holiday-season/
@Undercode_News
UNDERCODE NEWS
Unleash Entertainment Anywhere: Samsung's The Freestyle (2nd Gen) Projector Steals the Show This Holiday Season - UNDERCODE NEWS
Undercode News was founded in order to provide the most useful information in the world of hacking and technology. Staffed 24/24 hours, seven days a week by a dedicated team in undercode around the world, so it can provide an environment of information andβ¦
Forwarded from UNDERCODE NEWS (Copyright & Fact Checker)
Chinese Tech Firm Exposed: Hacking Governments and Activists
https://undercodenews.com/chinese-tech-firm-exposed-hacking-governments-and-activists/
@Undercode_News
https://undercodenews.com/chinese-tech-firm-exposed-hacking-governments-and-activists/
@Undercode_News
UNDERCODE NEWS
Chinese Tech Firm Exposed: Hacking Governments and Activists - UNDERCODE NEWS
Undercode News was founded in order to provide the most useful information in the world of hacking and technology. Staffed 24/24 hours, seven days a week by a dedicated team in undercode around the world, so it can provide an environment of information andβ¦
Forwarded from UNDERCODE NEWS (Copyright & Fact Checker)
π The #AI Bubble and Databricks' 0 Billion Bet
https://undercodenews.com/the-ai-bubble-and-databricks-0-billion-bet/
@Undercode_News
https://undercodenews.com/the-ai-bubble-and-databricks-0-billion-bet/
@Undercode_News
UNDERCODE NEWS
The AI Bubble and Databricks' 0 Billion Bet - UNDERCODE NEWS
Undercode News was founded in order to provide the most useful information in the world of hacking and technology. Staffed 24/24 hours, seven days a week by a dedicated team in undercode around the world, so it can provide an environment of information andβ¦
Forwarded from UNDERCODE NEWS (Copyright & Fact Checker)
The Generative #AI Triathlon: A Multi-faceted Race
https://undercodenews.com/the-generative-ai-triathlon-a-multi-faceted-race/
@Undercode_News
https://undercodenews.com/the-generative-ai-triathlon-a-multi-faceted-race/
@Undercode_News
UNDERCODE NEWS
The Generative AI Triathlon: A Multi-faceted Race - UNDERCODE NEWS
Undercode News was founded in order to provide the most useful information in the world of hacking and technology. Staffed 24/24 hours, seven days a week by a dedicated team in undercode around the world, so it can provide an environment of information andβ¦
Forwarded from UNDERCODE NEWS (Copyright & Fact Checker)
β‘οΈ #Intel Weighs a Bold Move: Splitting Manufacturing from Product Development
https://undercodenews.com/intel-weighs-a-bold-move-splitting-manufacturing-from-product-development/
@Undercode_News
https://undercodenews.com/intel-weighs-a-bold-move-splitting-manufacturing-from-product-development/
@Undercode_News
UNDERCODE NEWS
Intel Weighs a Bold Move: Splitting Manufacturing from Product Development - UNDERCODE NEWS
Undercode News was founded in order to provide the most useful information in the world of hacking and technology. Staffed 24/24 hours, seven days a week by a dedicated team in undercode around the world, so it can provide an environment of information andβ¦
Forwarded from UNDERCODE NEWS (Copyright & Fact Checker)
β οΈ Iranian Hackers Target Critical Infrastructure with New IOCONTROL #Malware
https://undercodenews.com/iranian-hackers-target-critical-infrastructure-with-new-iocontrol-malware/
@Undercode_News
https://undercodenews.com/iranian-hackers-target-critical-infrastructure-with-new-iocontrol-malware/
@Undercode_News
UNDERCODE NEWS
Iranian Hackers Target Critical Infrastructure with New IOCONTROL Malware - UNDERCODE NEWS
Undercode News was founded in order to provide the most useful information in the world of hacking and technology. Staffed 24/24 hours, seven days a week by a dedicated team in undercode around the world, so it can provide an environment of information andβ¦
Forwarded from UNDERCODE NEWS (Copyright & Fact Checker)
π± #Samsung to Revolutionize Home Appliances with #AI at CES 2025
https://undercodenews.com/samsung-to-revolutionize-home-appliances-with-ai-at-ces-2025/
@Undercode_News
https://undercodenews.com/samsung-to-revolutionize-home-appliances-with-ai-at-ces-2025/
@Undercode_News
UNDERCODE NEWS
Samsung to Revolutionize Home Appliances with AI at CES 2025 - UNDERCODE NEWS
Undercode News was founded in order to provide the most useful information in the world of hacking and technology. Staffed 24/24 hours, seven days a week by a dedicated team in undercode around the world, so it can provide an environment of information andβ¦
Forwarded from UNDERCODE NEWS (Copyright & Fact Checker)
π¨ Facebook Parent Company Meta Fined β¬251 Million for 2018 #Data Breach
https://undercodenews.com/facebook-parent-company-meta-fined-eur251-million-for-2018-data-breach/
@Undercode_News
https://undercodenews.com/facebook-parent-company-meta-fined-eur251-million-for-2018-data-breach/
@Undercode_News
Forwarded from Exploiting Crew (Pr1vAt3)
π¦Security collection for pro:
β Worm Infection: https://lnkd.in/ez-kq98Y
β Social Engineering: https://lnkd.in/e_FJbxDP
β Information Leakage: https://lnkd.in/eeN8KX8g
β Insider Abuse: https://lnkd.in/ep4p_THk
β Customer Phishing: https://lnkd.in/ekTfY7vz
β Scam: https://lnkd.in/eUHwG3fF
β Trademark infringement: https://lnkd.in/e3P3xfeb
β Phishing: https://lnkd.in/eYTi3RQ8
β Ransomware: https://lnkd.in/eRkctdQn
β Large_scale_compromise: https://lnkd.in/eYFF43b4
β 3rd-party_compromise: https://lnkd.in/e8SAu5MT
β Windows Intrusion: https://lnkd.in/eXCpcx9V
β Unix Linux lntrusionDetection: https://lnkd.in/eHkm6MMe
β DDOS: https://lnkd.in/eQ7zZzVt
β MaliciousNetworkBehaviour: https://lnkd.in/ewVZy2cs
β Website-Defacement: https://lnkd.in/eraNiHcH
β WindowsMalwareDetection: https://lnkd.in/ewEx_C6Y
β Blackmail: https://lnkd.in/eW3zGcPs
β SmartphoneMalware.pdf: https://lnkd.in/ezjyY4G9
Ref: Mohamad Hamadi
@UndercodeCommunity
β β β Uππ»βΊπ«Δπ¬πβ β β β
β Worm Infection: https://lnkd.in/ez-kq98Y
β Social Engineering: https://lnkd.in/e_FJbxDP
β Information Leakage: https://lnkd.in/eeN8KX8g
β Insider Abuse: https://lnkd.in/ep4p_THk
β Customer Phishing: https://lnkd.in/ekTfY7vz
β Scam: https://lnkd.in/eUHwG3fF
β Trademark infringement: https://lnkd.in/e3P3xfeb
β Phishing: https://lnkd.in/eYTi3RQ8
β Ransomware: https://lnkd.in/eRkctdQn
β Large_scale_compromise: https://lnkd.in/eYFF43b4
β 3rd-party_compromise: https://lnkd.in/e8SAu5MT
β Windows Intrusion: https://lnkd.in/eXCpcx9V
β Unix Linux lntrusionDetection: https://lnkd.in/eHkm6MMe
β DDOS: https://lnkd.in/eQ7zZzVt
β MaliciousNetworkBehaviour: https://lnkd.in/ewVZy2cs
β Website-Defacement: https://lnkd.in/eraNiHcH
β WindowsMalwareDetection: https://lnkd.in/ewEx_C6Y
β Blackmail: https://lnkd.in/eW3zGcPs
β SmartphoneMalware.pdf: https://lnkd.in/ezjyY4G9
Ref: Mohamad Hamadi
@UndercodeCommunity
β β β Uππ»βΊπ«Δπ¬πβ β β β
lnkd.in
LinkedIn
This link will take you to a page thatβs not on LinkedIn
Forwarded from UNDERCODE NEWS (UNDERCODER)
We had a hardware issue recently, and it's fixed. πββοΈ