Analyzing PDF Streamshttps://isc.sans.edu/diary/Analyzing%20PDF%20Streams/30908F5 Next Central Manager Vulnerabilitieshttps://eclypsium.com/blog/big-vulnerabilities-in-next-gen-big-ip/Veeam Patcheshttps://www.veeam.com/kb4441https://w
DNS Debugging with nslookuphttps://isc.sans.edu/diary/nslookups+Debug+Options/30894/Microsoft Plans DNS Lockdownhttps://techcommunity.microsoft.com/t5/networking-blog/announcing-zero-trust-dns-private-preview/ba-p/4110366Microsoft Graph A
https://isc.sans.edu/diary/Scans%20Probing%20for%20LB-Link%20and%20Vinga%20WR-AC1200%20routers%20CVE-2023-24796/30890Scans Probing for LB-Link and Vinga WR-AC1200 routers CVE-2023-24796Buffer Overflow Vulnerabilities in ArubaOShttps://www.
Linux Trojan - Xorddos with Filename eyshcjdmzghttps://isc.sans.edu/diary/Linux%20Trojan%20-%20Xorddos%20with%20Filename%20eyshcjdmzg/30880AWS S3 Denial of Wallet Amplification Attackhttps://medium.com/@maciej.pocwierz/how-an-empty-s3-buck
Another Day, Another NAS: Attacks against Zyxel NAS326 Devices CVE-2023-4473, CVE-2023-4474https://isc.sans.edu/diary/Another%20Day%2C%20Another%20NAS%3A%20Attacks%20against%20Zyxel%20NAS326%20devices%20CVE-2023-4473%2C%20CVE-2023-4474/30884
DLink NAS Exploit Variationhttps://www.qnap.com/en/security-advisory/qsa-24-09Muddling Meerkat DNS Abusehttps://blogs.infoblox.com/threat-intelligence/a-cunning-operator-muddling-meerkat-and-chinas-great-firewall/Android TV Data Leakage
Okta warns of increase in credential stuffinghttps://sec.okta.com/blockanonymizersFake payment cards used by Police in Japanhttps://twitter.com/vxunderground/status/1783522097425211887Phishing Campaigns Targeting USPShttps://www.akamai.
Does it matter if iptables isn't running on my honeypot?https://isc.sans.edu/forums/diary/Does%20it%20matter%20if%20iptables%20isn't%20running%20on%20my%20honeypot%3F/30862/Unplugging PlugX: Singholing the PlugX USB worm botnethttps://blog
API Rug Pull - The NIST NVD Database and APIhttps://isc.sans.edu/diary/API%20Rug%20Pull%20-%20The%20NIST%20NVD%20Database%20and%20API%20%28Part%204%20of%203%29/30868Cisco Patches Vulnerabilities and Discovers Arcane Backdoorhttps://blog.ta
Struts2 devmode Still a Problem Ten Years Laterhttps://isc.sans.edu/forums/diary/Struts%20%22devmode%22%3A%20Still%20a%20problem%20ten%20years%20later%3F/30866/Analyzing Forest Blizard's Custom Post-Compromise Tool for exploiting CVE-2022-38
Number of Industrial Devices Accessible From Internet Up 30 Thousand over three yearshttps://isc.sans.edu/diary/It%20appears%20that%20the%20number%20of%20industrial%20devices%20accessible%20from%20the%20internet%20has%20risen%20by%2030%20thou
The CVE's They are A-Changinghttps://isc.sans.edu/diary/The%20CVE%27s%20They%20are%20A-Changing!/30850CrushFTP 0-Day Vulnerabilityhttps://www.crushftp.com/crush11wiki/Wiki.jsp?page=Updatehttps://www.reddit.com/r/crowdstrike/comments/1c88
BatBadBut: You can't securely execute commands on Windowshttps://flatt.tech/research/posts/batbadbut-you-cant-securely-execute-commands-on-windows/FortiClient Linux Remote Code Executionhttps://www.fortiguard.com/psirt/FG-IR-23-087Apple T
Microsoft Patcheshttps://isc.sans.edu/forums/diary/April%202024%20Microsoft%20Patch%20Tuesday%20Summary/30822/D-Link NAS Backdoorhttps://github.com/netsecfish/dlinkLG SmartTV Vulnerabilitieshttps://www.bitdefender.com/blog/labs/vulnerab
A Use Case for Adding Threat Hunting to Your Security Operations Team.https://isc.sans.edu/diary/30816Notepad++ Parasite Sitehttps://notepad-plus-plus.org/news/help-to-take-down-parasite-site/Hugging Face Pickle File Vulnerablitieshttps