blueteamsec

542 readers
24 users here now

For [Blue|Purple] Teams in Cyber Defence - covering discovery, detection, response, threat intelligence, malware, offensive tradecraft and tooling, deception, reverse engineering etc.

founded 2 years ago
MODERATORS
digicat
listing: all - local
1
3
CTO at NCSC Summary: week ending November 2nd (ctoatncsc.substack.com)
submitted 6 days ago by digicat to c/blueteamsec
0 comments fedilink
2
1
Lazarus Group targets Aerospace and Defense with new Comebacker variant | Enki White Hat (www.enki.co.kr)
submitted 1 hour ago by digicat to c/blueteamsec
0 comments fedilink
3
13
Meta is earning a fortune on a deluge of fraudulent ads, documents show (archive.ph)
submitted 12 hours ago by digicat to c/blueteamsec
1 comments fedilink
4
7
China-linked Actors Maintain Focus on Organizations Influencing U.S. Policy (www.security.com)
submitted 13 hours ago by digicat to c/blueteamsec
0 comments fedilink
5
6
How an Attacker Drained $128M from Balancer Through Rounding Error Exploitation (research.checkpoint.com)
submitted 14 hours ago by digicat to c/blueteamsec
0 comments fedilink
6
1
How CHERIoT uses Sealing (cheriot.org)
submitted 10 hours ago by digicat to c/blueteamsec
0 comments fedilink
7
2
CyberUK tech talks call for papers (www.cyberuk.uk)
submitted 12 hours ago by digicat to c/blueteamsec
0 comments fedilink
8
3
Close Those Ports: Exploring Splashtop RMM and Relays (blog.axelarator.net)
submitted 14 hours ago by digicat to c/blueteamsec
0 comments fedilink
9
2
New Kimsuky Malware “EndClient RAT”: First Technical Report and IOCs (www.0x0v1.com)
submitted 13 hours ago by digicat to c/blueteamsec
0 comments fedilink
10
1
Malicious Infrastructure Finds Stability with aurologic GmbH (assets.recordedfuture.com)
submitted 14 hours ago by digicat to c/blueteamsec
0 comments fedilink
11
3
Spoofed numbers blocked in crackdown on scammers (www.gov.uk)
submitted 23 hours ago by digicat to c/blueteamsec
1 comments fedilink
12
3
Crossed wires: a case study of Iranian espionage and attribution (www.proofpoint.com)
submitted 1 day ago by digicat to c/blueteamsec
0 comments fedilink
13
1
Cloud Backup Security Incident Investigation Complete and Strengthened Cyber Resilience (www.sonicwall.com)
submitted 1 day ago by digicat to c/blueteamsec
0 comments fedilink
14
4
A Researcher Came Knocking, and Taught China a Lesson in How to Manage Vulnerabilities -- and Researchers (nattothoughts.substack.com)
submitted 1 day ago by digicat to c/blueteamsec
0 comments fedilink
15
4
Russian Cybercrime & State Militarization: Marching Together in the Digital Age (analyst1.com)
submitted 1 day ago by digicat to c/blueteamsec
0 comments fedilink
16
3
We share global infrastructure tracking techniques, tools to decrypt VShell communications, and insights into attacker behaviors to strengthen threat detection and incident response capabilities. (www.nviso.eu)
submitted 1 day ago by digicat to c/blueteamsec
0 comments fedilink
17
3
NVISO analyzes VShell post-exploitation tool (www.nviso.eu)
submitted 1 day ago by digicat to c/blueteamsec
0 comments fedilink
18
3
GTIG AI Threat Tracker: Advances in Threat Actor Usage of AI Tools (cloud.google.com)
submitted 1 day ago by digicat to c/blueteamsec
0 comments fedilink
19
3
Defeating KASLR by Doing Nothing at All (googleprojectzero.blogspot.com)
submitted 1 day ago by digicat to c/blueteamsec
0 comments fedilink
20
3
Treasury Sanctions DPRK Bankers and Institutions Involved in Laundering Cybercrime Proceeds and IT Worker Funds (home.treasury.gov)
submitted 1 day ago by digicat to c/blueteamsec
0 comments fedilink
21
3
How RMM abuse fuelled Medusa & DragonForce attacks (zensec.co.uk)
submitted 1 day ago by digicat to c/blueteamsec
0 comments fedilink
22
2
This Research Investigates purely focuses on the Networks used by the Clop Ransomware Group during their infiltration at different victims. (theravenfile.com)
submitted 1 day ago by digicat to c/blueteamsec
0 comments fedilink
23
2
Dissecting the Infection Chain: Technical Analysis of the Kimsuky JavaScript Dropper (blog.pulsedive.com)
submitted 1 day ago by digicat to c/blueteamsec
0 comments fedilink
24
10
Chicago firm that resolves ransomware attacks had rogue workers carrying out their own hacks, FBI says (chicago.suntimes.com)
submitted 2 days ago by digicat to c/blueteamsec
0 comments fedilink
25
3
Demystifying Zero Trust (www.ncsc.gov.uk)
submitted 2 days ago by digicat to c/blueteamsec
0 comments fedilink
view more: next ›