blueteamsec

632 readers
22 users here now

For [Blue|Purple] Teams in Cyber Defence - covering discovery, detection, response, threat intelligence, malware, offensive tradecraft and tooling, deception, reverse engineering etc.

founded 2 years ago
MODERATORS
digicat
listing: all - local
1401
6
Paragon strikes again: UniCredit CEO among the targets (irpimedia.irpi.eu)
submitted 4 months ago by digicat to c/blueteamsec
0 comments fedilink
1402
-3
IAmAntimalware: Inject Malicious Code Into Antivirus (www.zerosalarium.com)
submitted 4 months ago by digicat to c/blueteamsec
1 comments fedilink
1403
4
The Civil Guard dismantles a banking phishing network and arrests the main developer of credential-stealing kits in Spain (web.guardiacivil.es)
submitted 4 months ago by digicat to c/blueteamsec
0 comments fedilink
1404
8
Three Security Invariants Could Prevent 65% of Breaches: Analyzing 70 Incidents and Building CISO Challenge (securityblueprints.io)
submitted 4 months ago by digicat to c/blueteamsec
1 comments fedilink
1405
1
A Gemini crunched and produced report based on the leaks from https://github.com/KittenBusters/CharmingKitten (gist.github.com)
submitted 4 months ago by digicat to c/blueteamsec
0 comments fedilink
1406
1
Microsoft Events Leak, Part I: Leaking Event Registration and Waitlist Databases - now fixed (blog.faav.top)
submitted 4 months ago by digicat to c/blueteamsec
0 comments fedilink
1407
8
CamoLeak: Critical GitHub Copilot Vulnerability Leaks Private Source Code (www.legitsecurity.com)
submitted 4 months ago by digicat to c/blueteamsec
0 comments fedilink
1408
2
175 Malicious npm Packages Host Phishing Infrastructure Targeting 135+ - 26k+ downloads - used unpkg CDN to host redirect scripts for a credential-phishing campaign (socket.dev)
submitted 4 months ago by digicat to c/blueteamsec
0 comments fedilink
1409
5
7-Zip ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability - Oct 7th - another one (www.zerodayinitiative.com)
submitted 4 months ago by digicat to c/blueteamsec
0 comments fedilink
1410
2
Active Exploitation of Gladinet CentreStack and Triofox Local File Inclusion Flaw (www.huntress.com)
submitted 4 months ago by digicat to c/blueteamsec
0 comments fedilink
1411
2
Security Bulletin: NVIDIA GPU Display Drivers - October 2025 - multiple Linux privilege escalations likely impacting shared model training environments (nvidia.custhelp.com)
submitted 4 months ago by digicat to c/blueteamsec
0 comments fedilink
1412
2
APT | 海莲花组织Havoc远控木马分析 - APT | Analysis of the OceanLotus Havoc Remote Access Trojan (mp.weixin.qq.com)
submitted 4 months ago by digicat to c/blueteamsec
0 comments fedilink
1413
8
100,000+ IP Botnet Launches Coordinated RDP Attack Wave Against US Infrastructure (www.greynoise.io)
submitted 4 months ago by digicat to c/blueteamsec
1 comments fedilink
1414
2
2025年に確認されたBlackTechのマルウェアKivarsの亜種 – A variant of BlackTech's Kivars malware discovered in 2025 (sect.iij.ad.jp)
submitted 4 months ago by digicat to c/blueteamsec
0 comments fedilink
1415
1
BatShadow’s Latest Play - Vietnamese Threat Group Uses Vampire Bot to Target Digital Professionals (www.aryaka.com)
submitted 4 months ago by digicat to c/blueteamsec
0 comments fedilink
1416
2
New Rust Malware "ChaosBot" Uses Discord for Command and Control (www.esentire.com)
submitted 4 months ago by digicat to c/blueteamsec
0 comments fedilink
1417
2
Analyzing and Breaking Defender for Endpoint's Cloud Communication (labs.infoguard.ch)
submitted 4 months ago by digicat to c/blueteamsec
0 comments fedilink
1418
2
A major evolution of Apple Security Bounty, with the industry's top awards for the most advanced research - Apple Security Research (security.apple.com)
submitted 4 months ago by digicat to c/blueteamsec
0 comments fedilink
1419
6
Widespread SonicWall SSLVPN Compromise - So far, over 100 SonicWall SSLVPN accounts across 16 customer accounts have been impacted. In the cases observed (www.huntress.com)
submitted 4 months ago by digicat to c/blueteamsec
0 comments fedilink
1420
4
Spyware maker NSO Group confirms acquisition by US investors | TechCrunch (techcrunch.com)
submitted 4 months ago by digicat to c/blueteamsec
0 comments fedilink
1421
4
CTO at NCSC Summary: week ending October 12th (ctoatncsc.substack.com)
submitted 4 months ago by digicat to c/blueteamsec
0 comments fedilink
1422
4
Disrupting malicious uses of AI: October 2025 (openai.com)
submitted 4 months ago by digicat to c/blueteamsec
0 comments fedilink
1423
1
VehicleSec '25 Technical Sessions (www.usenix.org)
submitted 4 months ago by digicat to c/blueteamsec
0 comments fedilink
1424
2
Beyond the Alert: The Art and Science of Modern Detection Engineering. (medium.com)
submitted 4 months ago by digicat to c/blueteamsec
0 comments fedilink
1425
2
Lawfare Daily: The State of the Spyware Industry (www.lawfaremedia.org)
submitted 4 months ago by digicat to c/blueteamsec
0 comments fedilink
view more: ‹ prev next ›