🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

QNAP Systems published security advisories for 15 vulnerabilities (from OS command injections to SQL injections), each posing a unique challenge to the integrity of their systems meterpreter.org/security-alert…

A deep dive by Truesec into the Ransomware group Akira's way of breaking into Enterprise environments , and how to protect yourself truesec.com/hub/blog/akira…

CISA is requiring all Federal agencies to disconnect Ivanti products by Friday at midnight (Ivanti Connect Secure & Ivanti Policy Secure). This is roughly 48 hours notice, to not patch, but rip it out! Ivanti is an American company. This is unprecedented. cisa.gov/news-events/di…

These vulnerabilities tracked as CVE-2024-23108 and CVE-2024-23109 (CVSS 10) could potentially allow remote, unauthenticated attackers to execute unauthorized commands through specially crafted API requests #Fortinet #FortiSIEM securityonline.info/cve-2024-23108…

cvecrowd.com Alternative to Cvetrends (stopped working due to Twitter API restrictions). Shows the most popular CVEs in Fidverse for the last 24 h. Don't forget that servers with different vulnerabilities can be searched for free at app.netlas.io.

Nvidia $NVDA vs Intel $INTC: 2014 to today

Yikes! Imagine the feeling when you have just paid 22M USD in ransom and don't get any keys...

I've developed a new Red-Teaming tool called NoArgs. It dynamically hooks into Windows APIs to manipulate and hide process arguments. By injecting it into a cmd process, it hides the arguments of every newly spawned processes at runtime, without leaving traces for logging

This 👇 is interesting and suggests that we can't anymore consider only the possibility of a common initial access broker #IAB in case of one victim claimed under more than one #ransomware brand. I've counted 88 cases of cross-claims since Jan. 1st, 2023. Let's take a look...

This is a great thread on the #PowerShell subreddit. I learned a thing or two. reddit.com/r/PowerShell/s…

I highly suggest everyone in #CTI to check out the community version of Validin. Free availability of historical DNS data going several years back is absolutely amazing to have at hand. I use this tool several times a week during my investigations, with great success.

Has anyone seen any way to visualize for Corp Users any changes IT does to o365/EntraID/Intune? Im dreaming of an internal website showing anything that has changed, showing any new apps, policy changes etc etc

Looks like we will have a busy summer...

We are hosting our monthly Community Evening in Stockholm (on-premises, not virtual), this time on the subject of 'Operational Technology' with a guest speaker from SANS. Welcome! Link for pre-Registering: lyyti.fi/reg/Truesec_Te…

A friendly reminder that you are indeed responsible for backups even when using someone else’s data center.

Windows 11's new AI Recall feature raises security concerns. Therefore, check this KQL hunting query (see below) designed for Microsoft Defender for Endpoint users to detect any activations of AI Recall on your network which has been created by Steven Lim. #ThreatHunting

New breakout from Hyper-v guest to host. Details here: truesec.com/hub/blog/how-t…

This hack is brilliant, APT28 hopping into a target environment over wifi by compromising neighbouring companies and finding a dual-homed host within range. volexity.com/blog/2024/11/2… And yet... they got caught doing this!

Today, I'm releasing the first version of a small web 🚀: rosti.bin.re It provides IOCs and YARA rules collected semi-automatically from public blog posts and reports of almost 200 cybersecurity sites. I hope it proves useful to some of you ... 🙏✨ #ThreatIntel

f1tv - got it working by disabling multiview (under account settings) and watch normal stream 👍