Infosec.Pub

4,654 readers
146 users here now

To support infosec.pub, please consider donating through one of the following services:

Paypal: jerry@infosec.exchange

Ko-Fi: https://ko-fi.com/infosecexchange

Patreon: https://www.patreon.com/infosecexchange

founded 2 years ago
ADMINS
jerry
shellsharks
modbot
listing: all - local
1
3
August 29, 2025: Melting ICE- Organizing Against the Raids in Los Angeles (wfhb.org)
submitted 1 hour ago by Five@slrpnk.net to c/los_angeles
0 comments fedilink
2
5
Attackers Target Hotelier Accounts in Malvertising and Phishing Campaign (sec.okta.com)
submitted 5 hours ago by digicat to c/blueteamsec
0 comments fedilink
3
4
IT infrastructure of the Ministry of the Interior hacked "targeted and professionally - Austria - unauthorized access to the BMI's mail servers occurred (www.derstandard.at)
submitted 7 hours ago by digicat to c/blueteamsec
1 comments fedilink
4
2
Communications Security Establishment Canada Annual Report 2024-2025 - Communications Security Establishment Canada (www.cse-cst.gc.ca)
submitted 6 hours ago by digicat to c/blueteamsec
0 comments fedilink
5
1
Analysing Targeted Spearphishing: Social Engineering, Domain Rotation, and Credential Theft (stripeolt.com)
submitted 6 hours ago by digicat to c/blueteamsec
0 comments fedilink
6
11
Copilot Broke Your Audit Log, but Microsoft Won’t Tell You (pistachioapp.com)
submitted 17 hours ago by digicat to c/blueteamsec
0 comments fedilink
7
5
Integrating Code Insight into Reverse Engineering Workflows (blog.virustotal.com)
submitted 16 hours ago by digicat to c/blueteamsec
0 comments fedilink
8
4
Release QUANTUMSTRAND beta 1 - designed to revolutionize how analysts interact with strings in binary files - qs focuses on providing deep context (github.com)
submitted 16 hours ago by digicat to c/blueteamsec
0 comments fedilink
9
4
Inside the Lab-Dookhtegan Hack: How Iranian Ships Lost Their Voice at Sea (blog.narimangharib.com)
submitted 16 hours ago by digicat to c/blueteamsec
0 comments fedilink
10
8
Canary tokens: Learn all about the unsung heroes of security at Grafana Labs (grafana.com)
submitted 19 hours ago by digicat to c/blueteamsec
0 comments fedilink
11
4
Security incident post-mortem - "resulted in $14 million in unauthorized withdrawals from 9 user accounts.this attack was perpetrated by UNC4899, a North Korean state-sponsored actor" (woox.io)
submitted 17 hours ago by digicat to c/blueteamsec
0 comments fedilink
12
3
Founding: Founding is a generator that will create a loader encrypted or obfuscated with different execution types (github.com)
submitted 17 hours ago by digicat to c/blueteamsec
0 comments fedilink
13
3
AgentHopper: An AI Virus Research Project (embracethered.com)
submitted 17 hours ago by lemmydev2 to c/pulse_of_truth
0 comments fedilink
 
 

As part of the Month of AI Bugs, serious vulnerabilities that allow remote code execution via indirect prompt injection were discovered. There was a period of a few weeks where multiple arbitrary code execution vulnerabilities existed in popular agents, like GitHub Copilot, Amazon Q, AWS Kiro,… During that time I was wondering if it would be possible to write an AI virus. Hence the idea of AgentHopper was born. This post is purely for educational purposes, and make sure to check the mitigations section at the end on tips to mitigate similar threats.

14
28
French President Emmanuel Macron vows a strong response if any country takes measures that undermine Europe's digital sovereignty (Richard Bravo/Bloomberg) (www.techmeme.com)
submitted 1 day ago by lemmydev2 to c/pulse_of_truth
2 comments fedilink
 
 

Richard Bravo / Bloomberg: French President Emmanuel Macron vows a strong response if any country takes measures that undermine Europe's digital sovereignty  —  French President Emmanuel Macron vowed a strong response if any country takes measures that undermine Europe's digital sovereignty.

15
3
Backdoor in "AppSuite PDF Editor": A Detailed Technical Analysis (www.gdatasoftware.com)
submitted 18 hours ago by digicat to c/blueteamsec
0 comments fedilink
16
2
v0.7 -> v0.8 | Adaptix Framework (adaptix-framework.gitbook.io)
submitted 17 hours ago by digicat to c/blueteamsec
0 comments fedilink
17
2
TrapFlagForSyscalling: Bypass user-land hooks by syscall tampering via the Trap Flag (github.com)
submitted 17 hours ago by digicat to c/blueteamsec
0 comments fedilink
18
2
RtlHijack: Alternative Read and Write primitives using Rtl* functions the unintended way. (github.com)
submitted 17 hours ago by digicat to c/blueteamsec
0 comments fedilink
19
4
Uncovering Compromised Hosts using SSH Public Keys (www.usenix.org)
submitted 19 hours ago by digicat to c/blueteamsec
0 comments fedilink
20
2
ADSyncDump-BOF: The ADSyncDump BOF is a port of Dirk-Jan Mollema's adconnectdump.py / ADSyncDecrypt into a Beacon Object File (BOF) with zero dependencies. (github.com)
submitted 17 hours ago by digicat to c/blueteamsec
0 comments fedilink
21
2
EnumEDRs: Enumerate active EDR's on the system (github.com)
submitted 17 hours ago by digicat to c/blueteamsec
0 comments fedilink
22
2
RDP Forensics Part 2: Fingerprinting Attacks with Timezone, OS Type, and Monitor Display Resolution (medium.com)
submitted 17 hours ago by digicat to c/blueteamsec
0 comments fedilink
23
2
RDP Forensics Part 1: Fingerprinting Attacks with Keyboard Layout Data (medium.com)
submitted 17 hours ago by digicat to c/blueteamsec
0 comments fedilink
24
2
APT Sidewinder - "the HuntSQL query to track POST requests to "paknavy[.]org[.]pk" and found 25 Unique Webpages" (pastebin.com)
submitted 17 hours ago by digicat to c/blueteamsec
0 comments fedilink
25
2
The Trap of Troubleshooting: Analysis of Lazarus (APT-Q-1)'s Recent Attacks Using ClickFix (mp.weixin.qq.com)
submitted 17 hours ago by digicat to c/blueteamsec
0 comments fedilink
view more: next ›