♣️CVE-2022-31199 : NETWRIX AUDITOR ADVISORY SUMMARY
👁Blog : https://bishopfox.com/blog/netwrix-auditor-advisory
♣️CVE-2025-1094 : PostgreSQL SQLi
👁Blog : [Emulation] [Repo2] [3]
⭐️@APTANALYSIS

♣️By Executive Order, We Are Banning Blacklists - Domain-Level RCE in Veeam Backup & Replication (CVE-2025-23120)
👁Blog : https://labs.watchtowr.com/by-executive-order-we-are-banning-blacklists-domain-level-rce-in-veeam-backup-replication-cve-2025-23120/
⭐️@APTANALYSIS

♣️IngressNightmare : Critical Unauthenticated Remote Code Execution Vulnerabilities in Ingress NGINX
✨CVE-2025-1097
👁‍🗨CVE-2025-1098
🔪CVE-2025-24514
😐CVE-2025-1974
🚬Blog : https://www.wiz.io/blog/ingress-nginx-kubernetes-vulnerabilities
⭐️@APTANALYSIS

♣️C2 Redirectors: Advanced Infrastructure for Modern Red Team Operations
👹Blog : https://xbz0n.sh/blog/c2-redirectors
⭐️@APTANALYSIS

♣️Blacklock Ransomware: A Late Holiday Gift with Intrusion into the Threat Actor's Infrastructure
🔥Blog : https://www.resecurity.com/blog/article/blacklock-ransomware-a-late-holiday-gift-with-intrusion-into-the-threat-actors-infrastructure
⭐️@APTANALYSIS

♣️wsrp4echo - 0day Chain Vulnerability
🔥Blog : https://medium.com/@aryanchehreghani/wsrp4echo-0day-chain-vulnerability-fd2c395dc45b
⭐️@APTANALYSIS

♣️Bypassing Windows Defender antivirus in 2025. Using Direct Syscalls and XOR encryption.
🎩Part 1 : https://www.hackmosphere.fr/bypass-windows-defender-antivirus-2025-part-1/
🎩Part 2 :
https://www.hackmosphere.fr/bypass-windows-defender-antivirus-2025-part-2/
⭐️@APTANALYSIS

♣️Operation SyncHole: Lazarus APT goes back to the well
💀Blog : https://securelist.com/operation-synchole-watering-hole-attacks-by-lazarus/116326
⭐️@APTANALYSIS

♣️Russian Infrastructure Plays Crucial Role in North Korean Cybercrime Operations
👼Blog : https://www.trendmicro.com/en_us/research/25/d/russian-infrastructure-north-korean-cybercrime.html
⭐️@APTANALYSIS

♣️Buhtrap Watch Wolf
🪶Download (pdf)
⭐️@APTANALYSIS

♣️Introducing ToyMaker, an initial access broker working in cahoots with double extortion gangs
🤡Blog : https://blog.talosintelligence.com/introducing-toymaker-an-initial-access-broker
⭐️@APTANALYSIS

♣️Triada strikes back
🐱Blog : https://securelist.com/triada-trojan-modules-analysis/116380
⭐️@APTANALYSIS

♣️Contagious Interview (DPRK) Launches a New Campaign Creating Three Front Companies to Deliver a Trio of Malware: BeaverTail, InvisibleFerret, and OtterCookie
🐰Blog : https://www.silentpush.com/blog/contagious-interview-front-companies
⭐️@APTANALYSIS

♣️Earth Kurma APT Campaign Targets Southeast Asian Government, Telecom Sectors
👹Blog : https://www.trendmicro.com/en_us/research/25/d/earth-kurma-apt-campaign.html
⭐️@APTANALYSIS

♣️TheWizards APT group uses SLAAC spoofing to perform adversary-in-the-middle attacks
💀Blog : https://www.welivesecurity.com/en/eset-research/thewizards-apt-group-slaac-spoofing-adversary-in-the-middle-attacks
⭐️@APTANALYSIS

♣️Investigating Iranian Intrusion into Strategic Middle East Critical Infrastructure
🌹PDF  : https://www.fortinet.com/content/dam/fortinet/assets/reports/report-incident-response-middle-east.pdf
⭐️@APTANALYSIS

♣️Venom Spider Uses Server-Side Polymorphism to Weave a Web Around Victims
💀Blog : https://arcticwolf.com/resources/blog/venom-spider-uses-server-side-polymorphism-to-weave-a-web-around-victims
⭐️@APTANALYSIS

♣️Inferno Drainer Reloaded: Deep Dive into the Return of the Most Sophisticated Crypto Drainer
🤩Blog : https://research.checkpoint.com/2025/inferno-drainer-reloaded-deep-dive-into-the-return-of-the-most-sophisticated-crypto-drainer
♣️Retail Under Fire: Inside the DragonForce Ransomware Attacks on Industry Giants
🤩Blog : https://www.picussecurity.com/resource/blog/dragonforce-ransomware-attacks-retail-giants
⭐️@APTANALYSIS

♣️Bit ByBit - emulation of the DPRK's largest cryptocurrency heist
🚬Blog : https://www.elastic.co/security-labs/bit-bybit
⭐️@APTANALYSIS