Suspected cyberattack triggers false emergency alerts across parts of Brazil
A Glimpse into the “Search Your Target” Market for Stolen Credentials
Attackers no longer need to sift through massive credential dumps. They can pay others to do it for them. Flare explores how an emerging underground market searches stolen credential databases for specific companies, domains, and accounts.
Breaking Out of Chrome’s Sandbox: A Native Messaging Backdoor Observed in Italy
A malicious Chrome extension observed in an Italian malspam campaign used Native Messaging to escape the browser sandbox, steal session data and execute remote PowerShell commands on Windows. This analysis explains the infection chain,
its command-and-control channel and the main detection opportu
Rokarolla, il banking trojan Android che punta al controllo totale dello smartphone
Si chiama Rokarolla la nuova famiglia di malware Android che si distingue per le sue avanzate capacità di compromissione e controllo remoto dei dispositivi mobili: progettato per massimizzare la persistenza sul dispositivo compromesso, garantisce agli attaccanti una visibilità completa sulle attività dell’utente. Ecco tutti i dettagli
Sunil Varkey Joins Hexaware Technologies as EVP & CISO
Sunil Varkey has been appointed EVP & CISO at Hexaware Technologies, bringing years of cybersecurity experience across global enterprises.
Data manipulation nei sistemi OT e IoT: il rischio cyber che i CDA non stanno governando
Non tutti gli attacchi cyber bloccano la produzione. La data manipulation può alterare parametri, sensori e informazioni di processo senza generare allarmi immediati, compromettendo qualità, sicurezza e continuità operativa. Un rischio che i consigli di amministrazione non possono più ignorare
NordVPN antivirus, fino al 75% di sconto e 3 mesi extra: tutti i dettagli dell’offerta
NordVPN più antivirus con 3 mesi extra e 75% di sconto: come attivare questa offerta che permette di proteggere i dispositivi a 360 gradi.
A VBScript campaign distributed through WhatsApp deploying RMM software
A Kaspersky researcher analyzes a global malicious campaign that distributes VBS scripts via WhatsApp delivering a UEMS RMM agent through a multi-stage infection chain.
Global Schools Group and FulcrumSec: A Massive Data Breach and the Worldwide Push to Suppress Reporting on It
Fantastic clear-text passwords and where to collect them (Part 1 - Linux)
Technical blog by Stephan Berger (@malmoeb)
http://localhost:1313/course/linux_rootkits/
macOS Extended Attributes: Case Study
Today I Learned - Protected Symlinks
BSides Kent: The Gist of Hundreds of Incident Response Cases
FIRST Technical Colloquium Amsterdam: In-Depth Study of Linux Rootkits
BSides Transylvania: From Zero to a Moderately Skilled MacOS Forensic Analyst
Linux Capabilities Revisited
SecurityFest: Anti-Forensics - You are doing it wrong
x33fcon: From Zero to a Moderately Skilled MacOS Forensic Analyst
Euskalhack: In-Depth Study Of Linux Rootkits
FIRST Conference: Anti-Forensics - You are doing it wrong
Troopers: Anti-Forensics - You are doing it wrong
Hack.lu: Anti-Forensics - You are doing it wrong
Today I learned: binfmt_misc
BSides Chisinau: Congratulations, You're Still Insecure!
BSides Berlin: Inside Mythic: Dissecting a Modern Attack Framework
Dissection of a PHP Backdoor leveraging php-win.exe
FIRST Technical Colloquium Paris: Inside Mythic: Dissecting a Modern Attack Framework
Botconf: Tomb Raider - In Search of the Lost Signatures
Brucon: Anti-Forensics (and Anti-Anti-Forensics) Techniques