Skip Navigation

digicat
digicat @ digicat @infosec.pub
Posts
41
Comments
0
Joined
2 yr. ago

BlueTeamSec @infosec.pub
digicat @infosec.pub

Case Study: cracking a global Adversary-In-The-Middle campaign using a threat intelligence toolkit
blog.sygnia.co /cracking-global-phishing-campaign-using-threat-intelligence-toolkit
BlueTeamSec @infosec.pub
digicat @infosec.pub

Automating acquisition for incident response
falconforce.nl /falconfriday-automating-acquisition-for-incident-response-0xff23/
BlueTeamSec @infosec.pub
digicat @infosec.pub

Security Threat Insights Report Q1 2023 - notable malware campaigns, trends and techniques identified from customer telemetry in calendar Q1 2023
threatresearch.ext.hp.com /hp-wolf-security-threat-insights-report-q1-2023/
BlueTeamSec @infosec.pub
digicat @infosec.pub

Shampoo: A New ChromeLoader Campaign
threatresearch.ext.hp.com /shampoo-a-new-chromeloader-campaign/
BlueTeamSec @infosec.pub
digicat @infosec.pub

OnlyDcRatFans: Malware Distributed Using Explicit Lures of OnlyFans Pages and Other Adult Content
www.esentire.com /blog/onlydcratfans-malware-distributed-using-explicit-lures-of-onlyfans-pages-and-other-adult-content
BlueTeamSec @infosec.pub
digicat @infosec.pub

Cyber ​​attack by group UAC-0057 (GhostWriter) against the state organization of Ukraine using PicassoLoader and Cobalt Strike Beacon (CERT-UA#6852) - use Chrome translate
cert.gov.ua /article/4905718
BlueTeamSec @infosec.pub
digicat @infosec.pub

Evasive File Smuggling with Skyhook
www.blackhillsinfosec.com /evasive-file-smuggling-with-skyhook/
BlueTeamSec @infosec.pub
digicat @infosec.pub

Threat activity and vulnerabilities in Indonesia, Malaysia, Philippines, and Thailand | APNIC Blog
blog.apnic.net /2023/06/15/threat-activity-and-vulnerabilities-in-indonesia-malaysia-philippines-and-thailand/
BlueTeamSec @infosec.pub
digicat @infosec.pub

Shuckworm: Inside Russia’s Relentless Cyber Campaign Against Ukraine
symantec-enterprise-blogs.security.com /blogs/threat-intelligence/shuckworm-russia-ukraine-military
BlueTeamSec @infosec.pub
digicat @infosec.pub

Hijacking S3 Buckets: New Attack Technique
checkmarx.com /blog/hijacking-s3-buckets-new-attack-technique-exploited-in-the-wild-by-supply-chain-attackers/
BlueTeamSec @infosec.pub
digicat @infosec.pub

Russian National Arrested and Charged with Conspiring to Commit LockBit Ransomware Attacks Against U.S. and Foreign Businesses
www.justice.gov /opa/pr/russian-national-arrested-and-charged-conspiring-commit-lockbit-ransomware-attacks-against-us
BlueTeamSec @infosec.pub
digicat @infosec.pub

Video-Based Cryptanalysis: Exploiting a Video Camera's Rolling Shutter to Recover Secret Keys from Devices Using Video of Their Power LED - demonstrate the application of video-based cryptanalysis by
www.nassiben.com /video-based-crypta
BlueTeamSec @infosec.pub
digicat @infosec.pub

한글 문서 파일을 위장한 악성코드(Kimsuky) - Malicious code disguised as a Hangul document file (Kimsuky)
asec-ahnlab-com.translate.goog /ko/54473/
BlueTeamSec @infosec.pub
digicat @infosec.pub

다양한 주제를 이용하여 CHM 악성코드를 유포 중인 Kimsuky - Kimsuky spreading CHM malware using various topics
asec-ahnlab-com.translate.goog /ko/53426/
BlueTeamSec @infosec.pub
digicat @infosec.pub

BypassAV: This map lists the essential techniques to bypass anti-virus and EDR
github.com /CMEPW/BypassAV
BlueTeamSec @infosec.pub
digicat @infosec.pub

RunInSandbox: a quick way to run/extract files in Windows Sandbox with a right-click on a file
www.systanddeploy.com /2023/06/runinsandbox-quick-way-to-runextract.html
BlueTeamSec @infosec.pub
digicat @infosec.pub

MSSQL linked servers: abusing ADSI for password retrieval
www.tarlogic.com /blog/linked-servers-adsi-passwords/
BlueTeamSec @infosec.pub
digicat @infosec.pub

PoCs to help learning how to get SYSTEM privilege on Windows
github.com /daem0nc0re/PrivFu/tree/main/ArtsOfGetSystem
BlueTeamSec @infosec.pub
digicat @infosec.pub

Microsoft Response to Layer 7 Distributed Denial of Service (DDoS) Attacks
msrc.microsoft.com /blog/2023/06/microsoft-response-to-layer-7-distributed-denial-of-service-ddos-attacks/
BlueTeamSec @infosec.pub
digicat @infosec.pub

ransomware-descendants: A repository dedicated to tracking ransomware families based on leaked builders.
github.com /EmissarySpider/ransomware-descendants