June 2023 Archives

The Reddit Controversy, Hacktivism, and the Pandora’s Box of Vigilantism

The breach of Reddit by the BlackCat ransomware group highlights the dangers associated with hacktivism and underscores the need for greater cybersecurity awareness and preventive measures.

June 29, 2023 15:47 GMT

Weekly Top 10 – 6.23.2023 – BlackLotus Mitigation, GitHub Repojacking, Apple exploits

NSA Releases Guide to Mitigate BlackLotus, GitHub repojacking, actively exploited zero-day for Apple iOS and macOS bugs, and 7 more stories...

June 26, 2023 21:02 GMT

The Art of ATT&CK

MITRE ATT&CK has been heralded as an excellent resource for known TTPs, but how does one actually utilize it in a cybersecurity strategy?

June 16, 2023 22:12 GMT

Weekly Top 10 – 6.9.2023 – OneDrive Down After DDoS, Win32k Exploit, Hacked Barracuda Appliances

MS OneDrive down after claims of DDoS, proof of concept for Windows Win32k exploit, PowerDrop PowerShell malware, and 7 more stories...

June 12, 2023 19:51 GMT

Living Off the Land Attacks: The Risks

Sometimes an attacker's most useful tools conveniently already exist on your endpoints, a concept called "Living Off The Land." How to mitigate this risk?

June 5, 2023 18:03 GMT

Weekly Top 10 – 6.2.2023 – macOS Vulnerability, Russian Claim of US iPhone Attacks, Zyxel Firewall Exploit

Migraine macOS vulnerability could bypass System Integrity Protection, Russia Says US hacked iPhones in zero-click attack, critical Zyxel firewall flaw exploited in ongoing attacks, and 7 more stories...

June 2, 2023 16:41 GMT

Hand-Picked Top-Read Stories

Palo Alto Recommends Urgent Mitigation For Authentication Bypass Vulnerability in PAN-OS

Weekly Top 10: 11.18.2024: Microsoft Exchange Adds Warning to Emails Abusing Spoofing Flaw; Evasive ZIP Concatenation: Trojan Targets Windows Users; Microsoft November 2024 Patch Tuesday Fixes 4 Zero-Days, 89 Flaws, and More.

What Happened To The Internet Archive?

Trending Tags

Month: June 2023

The Reddit Controversy, Hacktivism, and the Pandora’s Box of Vigilantism

Weekly Top 10 – 6.23.2023 – BlackLotus Mitigation, GitHub Repojacking, Apple exploits

The Art of ATT&CK

Weekly Top 10 – 6.9.2023 – OneDrive Down After DDoS, Win32k Exploit, Hacked Barracuda Appliances

Living Off the Land Attacks: The Risks

Weekly Top 10 – 6.2.2023 – macOS Vulnerability, Russian Claim of US iPhone Attacks, Zyxel Firewall Exploit

Threat Advisories

Palo Alto Recommends Urgent Mitigation For Authentication Bypass Vulnerability in PAN-OS

Weekly Top 10: 11.18.2024: Microsoft Exchange Adds Warning to Emails Abusing Spoofing Flaw; Evasive ZIP Concatenation: Trojan Targets Windows Users; Microsoft November 2024 Patch Tuesday Fixes 4 Zero-Days, 89 Flaws, and More.

Weekly Top 10: 11.11.2024: Veeam Backup Exploit Used by Frag Ransomware; North Korean Hackers Use macOS Malware to Steal Crypto; Palo Alto PAN-OS May be Vulnerable to RCE, and More.

Weekly Top 10: 11.04.2024: Android Malware ‘FakeCall’ Hijacks Outgoing Calls; PTZ Cameras Being Targeted Using Two Zero-Days; Hacker Group TeamTNT Targets Docker Environments, and More.

Weekly Top 10: 10.28.2024: Severe Flaws in E2EE Cloud Storage Platforms Used by Millions; ClickFix Tactic: The Phantom Meet; Firm Hacked After Accidentally Hiring North Korean Cyber Criminal, and More.

Education

Protecting Microsoft Teams From Data Exfiltration – A Tactical DLP Rule

Anatomy of a Data Breach

OpenAI Cybersecurity Research

Breach Report: Healthcare

Analysis of GalComm Chrome Extension Malware