Author Topic: Technical (Read 1363938 times)

Asyn · « **Reply #4170 on:** June 13, 2022, 10:07:01 AM »

Aoqin Dragon | Newly-Discovered Chinese-linked APT Has Been Quietly Spying On Organizations For 10 Years
https://www.sentinelone.com/labs/aoqin-dragon-newly-discovered-chinese-linked-apt-has-been-quietly-spying-on-organizations-for-10-years/

Asyn · « **Reply #4171 on:** June 13, 2022, 01:32:30 PM »

PACMAN - Attacking ARM Pointer Authentication with Speculative Execution
https://pacmanattack.com/
https://pacmanattack.com/paper.pdf

Asyn · « **Reply #4172 on:** June 13, 2022, 03:10:41 PM »

Linux Threat Hunting – ‘Syslogk’ – a kernel rootkit found under development in the wild
https://decoded.avast.io/davidalvarez/linux-threat-hunting-syslogk-a-kernel-rootkit-found-under-development-in-the-wild/

Asyn · « **Reply #4173 on:** June 14, 2022, 09:47:03 AM »

Lyceum .NET DNS Backdoor
https://www.zscaler.com/blogs/security-research/lyceum-net-dns-backdoor

Asyn · « **Reply #4174 on:** June 14, 2022, 01:08:26 PM »

Crypto-Miners Leveraging Atlassian Zero-Day Vulnerability
https://blog.checkpoint.com/2022/06/09/crypto-miners-leveraging-atlassian-zero-day-vulnerability/

Asyn · « **Reply #4175 on:** June 14, 2022, 05:41:56 PM »

WiFi probing exposes smartphone users to tracking, info leaks
https://www.bleepingcomputer.com/news/security/wifi-probing-exposes-smartphone-users-to-tracking-info-leaks/
https://arxiv.org/pdf/2206.03745.pdf

Asyn · « **Reply #4176 on:** June 15, 2022, 09:35:16 AM »

Quote from: Asyn on June 07, 2022, 09:43:47 AM

Quote from: Asyn on June 03, 2022, 12:09:58 PM
Quote from: Asyn on June 02, 2022, 10:31:58 AM
Quote from: Asyn on June 01, 2022, 11:35:29 AM
Quote from: Asyn on June 01, 2022, 10:05:31 AM
Quote from: Asyn on May 31, 2022, 01:17:20 PM
Follina — a Microsoft Office code execution vulnerability
https://doublepulsar.com/follina-a-microsoft-office-code-execution-vulnerability-1a47fce5629e
https://www.bleepingcomputer.com/news/security/new-microsoft-office-zero-day-used-in-attacks-to-execute-powershell/
https://www.huntress.com/blog/microsoft-office-remote-code-execution-follina-msdt-bug
Guidance for CVE-2022-30190 Microsoft Support Diagnostic Tool Vulnerability
https://msrc-blog.microsoft.com/2022/05/30/guidance-for-cve-2022-30190-microsoft-support-diagnostic-tool-vulnerability/
Windows MSDT zero-day vulnerability gets free unofficial patch
https://www.bleepingcomputer.com/news/security/windows-msdt-zero-day-vulnerability-gets-free-unofficial-patch/
Outbreak of Follina in Australia
https://decoded.avast.io/threatintel/outbreak-of-follina-in-australia/
Windows zero-day exploited in US local govt phishing attacks
https://www.bleepingcomputer.com/news/security/windows-zero-day-exploited-in-us-local-govt-phishing-attacks/

Microsoft patches actively exploited Follina Windows zero-day
https://www.bleepingcomputer.com/news/security/microsoft-patches-actively-exploited-follina-windows-zero-day/

Asyn · « **Reply #4177 on:** June 15, 2022, 12:44:20 PM »

The June 2022 Security Update Review
https://www.zerodayinitiative.com/blog/2022/6/14/the-june-2022-security-update-review

Asyn · « **Reply #4178 on:** June 16, 2022, 10:38:47 AM »

Exposing HelloXD Ransomware and x4k
https://unit42.paloaltonetworks.com/helloxd-ransomware/

Asyn · « **Reply #4179 on:** June 16, 2022, 05:41:04 PM »

Researchers Find Bluetooth Signals Can be Fingerprinted to Track Smartphones
https://thehackernews.com/2022/06/researchers-find-bluetooth-signals-can.html
https://jacobsschool.ucsd.edu/news/release/3461
https://cseweb.ucsd.edu/~schulman/docs/oakland22-bletracking.pdf

Asyn · « **Reply #4180 on:** June 16, 2022, 07:15:25 PM »

GALLIUM Expands Targeting Across Telecommunications, Government and Finance Sectors With New PingPull Tool
https://unit42.paloaltonetworks.com/pingpull-gallium/

Asyn · « **Reply #4181 on:** June 17, 2022, 10:02:51 AM »

How SeaFlower 藏海花 installs backdoors in iOS/Android web3 wallets to steal your seed phrase
https://blog.confiant.com/how-seaflower-%E8%97%8F%E6%B5%B7%E8%8A%B1-installs-backdoors-in-ios-android-web3-wallets-to-steal-your-seed-phrase-d25f0ccdffce

Asyn · « **Reply #4182 on:** June 17, 2022, 02:14:54 PM »

Microsoft’s Vulnerability Practices Put Customers At Risk
https://www.linkedin.com/pulse/microsofts-vulnerability-practices-put-customers-risk-amit-yoran/

Asyn · « **Reply #4183 on:** June 17, 2022, 06:09:28 PM »

Hertzbleed Attack
https://www.hertzbleed.com/
https://www.hertzbleed.com/hertzbleed.pdf

Asyn · « **Reply #4184 on:** June 18, 2022, 03:27:17 PM »

Hackers exploit three-year-old Telerik flaws to deploy Cobalt Strike
https://www.bleepingcomputer.com/news/security/hackers-exploit-three-year-old-telerik-flaws-to-deploy-cobalt-strike/

Author Topic: Technical (Read 1363938 times)

Asyn

Re: Technical

Asyn

Re: Technical

Asyn

Re: Technical

Asyn

Re: Technical

Asyn

Re: Technical

Asyn

Re: Technical

Asyn

Re: Technical

Asyn

Re: Technical

Asyn

Re: Technical

Asyn

Re: Technical

Asyn

Re: Technical

Asyn

Re: Technical

Asyn

Re: Technical

Asyn

Re: Technical

Asyn

Re: Technical