🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

🇧🇷 #Brazil is facing a growing number of threats. Our new TAG & Mandiant (part of Google Cloud) analysis delves into the country’s evolving and unique threat landscape. Read now: bit.ly/3KG5PQ0 #Cybersecurity #CyberEspionage #Ransomware

I'm excited to announce that I'm hiring two Detection Engineers for the Mandiant Detection Engineering Team! Come build detections at a global scale for cutting edge threats on an amazing team. Apply here google.com/about/careers/… #DetectionEngineering #Mandiant #Detection

.Volexity analyzes #DISGOMOJI 🔥, Discord-based malware 💀 using emojis for C2. #DISGOMOJI is used by #UTA0137, a suspected Pakistan-based threat actor. Read the full analysis here: volexity.com/blog/2024/06/1… #dfir #threatintel

Free #OSINT regarding EDR deployment for #APT group... #CrowdStrike

Investigations sur 𝑘𝑖𝑙𝑙𝑠𝑤𝑖𝑡𝑐ℎ𝑠 cachés Barbhack par Requiem sur divers matériels, où même boîtier éteint interface réseau reste active... changements avant la livraison de câbles USB indétectables... cas 𝑆𝑜𝑙𝑎𝑟𝑤𝑖𝑛𝑑𝑠 compromis par🇷🇺 remédiation: 19M$, 3CX

[FR] Merci pour vos retours concernant ma conférence sur les supply chains ☺️ Si vous voulez aborder un sujet en particulier n'hésitez pas à venir me parler ! 🖖 Barbhack

MemProcFS now supports console text recovery! Recover text from Cmd and Powershell to Find Evil with MemProcFS super fast memory forensics! github.com/ufrisk/MemProc…

🔍 Struggling to track RMMs? Meet LOLRMM — your one-stop solution for detecting & managing RMMs! 🚨💻 ⚔️ lolrmm.io 🔥 ✨ Benefits of LOLRMM: • 🗂️ Single source for ALL RMMs • ⚡ Optimized for speed across SIEMs (KQL, Splunk, etc.) • 🚫 No more duplicates —

Some personal news: I will be joining Meta's security team (focusing on WhatsApp) starting next week. This is a big life change, I'm also moving to London permanently. I took this opportunity to reflect on the state of threat intel: blog.kwiatkowski.fr/threat-intel-t… LMK if it resonates!

ESET researchers analyse Bootkitty, a UEFI bootkit designed for Linux systems. Bootkitty contains many artifacts suggesting it is more likely a proof of concept than the work of an active threat actor.

.Volexity has developed a new #opensource tool, “HWP Extract”, a lightweight Python library & CLI for interacting with Hangul Word Processor files. It also supports object extraction from password-protected HWP files. Download here: github.com/volexity/hwp-e…   #dfir #threatintel

NSO Group Spies on People on Behalf of Governments schneier.com/blog/archives/…

Today is the 40th anniversary of the #Bhopal Gas Tragedy, the worst industrial accident, which occurred on December 2nd and 3rd, 1984. A reminder of the devastating consequences of negligence and safety failures in industrial settings. amnesty.org/en/latest/news… #BhopalGasTragedy

Once inside, it’s almost impossible to remove intruders without some downtime. They probably know the networks better than legit sysadmins and no one wants to break anything. They’re inside and here to stay.

The Windows Registry Adventure #5: The regf file format googleprojectzero.blogspot.com/2024/12/the-wi…

🎥 RECORDED TALK #BlackAlps24 🎥 ⚡⚡⚡ GCP CL-WHY: The Hacker's and the Hero's Guide to the CLI ⚡⚡⚡ by Shannon McHale (Shannon McHale), Senior Red Team Consultant at Google youtu.be/nr4G1ekjrqY #conference #cybersecurity #switzerland

Malware Trends: Yearly 2024 📊 We have crunched the data for 2024 public UnpacMe submissions and we have some interesting stats to share… blog.unpac.me/2025/02/20/mal…

.MG 🫡 #OMGcable #zeroday ep.4 o.mg.lol

“Mandiant was here the first five minutes of the conflict and we will be here in the last minute of the conflict,” said Sandra Joyce 💪🫡 therecord.media/kyiv-cyber-con…

New episode alert! Ep 161: MG In this episode we talk with MG, the brilliant (and notorious) hacker and hardware engineer behind the OMG Cable. A seemingly ordinary USB cable with extraordinary offensive capabilities. darknetdiaries.com/episode/161