#Amazon Pushes Back Return-to-Office Mandate Due to Space Constraints

https://undercodenews.com/amazon-pushes-back-return-to-office-mandate-due-to-space-constraints/

@Undercode_News

🦑Understanding Modern Cybersecurity Tools: EDR, XDR, SOAR, SIEM, and Integrated Solutions 🚨

Navigating the world of cybersecurity solutions can be complex. Each tool serves a unique purpose, but understanding their differences is crucial for building an effective security strategy. Here's a quick comparison:

✅ EDR (Endpoint Detection and Response): Focuses on endpoint security by detecting/responding to threats on devices like laptops and servers. Great for organizations with endpoint-centric threats.

✅ XDR (Extended Detection and Response): Expands visibility across endpoints, networks, and cloud environments, providing unified threat detection across domains.

✅ SOAR (Security Orchestration, Automation, and Response): Automates and streamlines incident response processes, saving time and improving efficiency.

✅ SIEM (Security Information and Event Management): Offers centralized log management and real-time monitoring for identifying and correlating security events.

✅ Integrated Solution (EDR + XDR + SOAR + SIEM): Combines the strengths of all these tools for holistic threat detection, response, and seamless integration.

Ref: Fadi Kazdar
@UndercodeCommunity
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑𝐃𝐎𝐌 𝐗𝐒𝐒 Testing Method

While "DOM Invader" is not a new feature of Burp, I feel that alot of people don't use it enough (or are not aware of it)

It works by submiting a random string generated by Burp (named "canary") in existing input fields or URL parameters

Then "DOM Invader" will check how your input is processed, providing you with necessary context and sanitization details.

1. Start Burp Browser
2. Turn on the DOM Invader
3. Copy and Paste the canary in the target input field or URL parameter
4. Check the DOM Invader tab for "Interesting sinks"
5. Craft the payload or use the "Exploit" option to automate

Ref: Andrei Agape
@UndercodeCommunity
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

🦑Malwares Detection bypass:

𝑴𝒊𝒔𝒖𝒔𝒊𝒏𝒈 𝑺𝒕𝒓𝒖𝒄𝒕𝒖𝒓𝒆𝒅 𝑬𝒙𝒄𝒆𝒑𝒕𝒊𝒐𝒏 𝑯𝒂𝒏𝒅𝒍𝒆𝒓𝒔 💡

In malware analysis, one common anti-disassembly technique is 𝐒𝐭𝐫𝐮𝐜𝐭𝐮𝐫𝐞𝐝 𝐄𝐱𝐜𝐞𝐩𝐭𝐢𝐨𝐧 𝐇𝐚𝐧𝐝𝐥𝐢𝐧𝐠 (𝐒𝐄𝐇) manipulation.

SEH is a mechanism in Windows for managing exceptions, but it can also be exploited to confuse disassemblers and debuggers. By injecting fake exception records into the SEH chain, attackers can redirect program flow, making it difficult for static analysis tools to follow the actual execution path. This redirection not only complicates reverse engineering but also disrupts debugging processes, forcing tools to misinterpret or skip over key code sections.

Ref: Ait Ichou Mustapha
@UndercodeCommunity
▁ ▂ ▄ U𝕟𝔻Ⓔ𝐫Ć𝔬𝓓ⓔ ▄ ▂ ▁

Level Up Your Free Fire MAX Experience with Exclusive Redeem Codes

https://undercodenews.com/level-up-your-free-fire-max-experience-with-exclusive-redeem-codes/

@Undercode_News

Pocket: Your Affordable #AI Assistant for Recording, Transcribing, and Organizing Conversations

https://undercodenews.com/pocket-your-affordable-ai-assistant-for-recording-transcribing-and-organizing-conversations/

@Undercode_News

⚠️ Understanding Cookie Consent Notices: A Breakdown

https://undercodenews.com/understanding-cookie-consent-notices-a-breakdown/

@Undercode_News

🔒 Interlock #Ransomware Targets City of Noblesville

https://undercodenews.com/interlock-ransomware-targets-city-of-noblesville/

@Undercode_News

⚡️ New #Ransomware Attack: Kairos Targets Australian Physiotherapy Clinic

https://undercodenews.com/new-ransomware-attack-kairos-targets-australian-physiotherapy-clinic/

@Undercode_News

⚡️ New #Ransomware Attack: APT73 Targets Federal Bank of India

https://undercodenews.com/new-ransomware-attack-apt73-targets-federal-bank-of-india/

@Undercode_News

Funksec #Ransomware Targets HostingExpresscommx

https://undercodenews.com/funksec-ransomware-targets-hostingexpresscommx/

@Undercode_News

Akira #Ransomware Targets ProCaps Laboratories

https://undercodenews.com/akira-ransomware-targets-procaps-laboratories/

@Undercode_News

🚨 Critical FortiClient EMS Flaw Exploited for Remote Access

https://undercodenews.com/critical-forticlient-ems-flaw-exploited-for-remote-access/

@Undercode_News

India Extends Deadline for KYC Masking to January 20, 2025

https://undercodenews.com/india-extends-deadline-for-kyc-masking-to-january-20-2025/

@Undercode_News

#Samsung to Ditch 8GB RAM for #Galaxy S25 Series

https://undercodenews.com/samsung-to-ditch-8gb-ram-for-galaxy-s25-series/

@Undercode_News

#Android 16 Developer Preview 2: A Closer Look

https://undercodenews.com/android-16-developer-preview-2-a-closer-look/

@Undercode_News

⚡️ #Samsung’s Display Assistant: A New Level of Display Control

https://undercodenews.com/samsungs-display-assistant-a-new-level-of-display-control/

@Undercode_News

Cars24 CEO Sparks Controversy with Anti-Bengaluru Hiring Post

https://undercodenews.com/cars24-ceo-sparks-controversy-with-anti-bengaluru-hiring-post/

@Undercode_News

🛡️ Sophos Patches Critical Vulnerabilities in Firewall Products

https://undercodenews.com/sophos-patches-critical-vulnerabilities-in-firewall-products/

@Undercode_News