blueteamsec

542 readers

8 users here now

For [Blue|Purple] Teams in Cyber Defence - covering discovery, detection, response, threat intelligence, malware, offensive tradecraft and tooling, deception, reverse engineering etc.

founded 2 years ago

MODERATORS

digicat

176

Chinese Hackers Blamed for Severe Breach at US Cyber Firm F5 (archive.ph)

submitted 3 weeks ago by digicat to c/blueteamsec

0 comments fedilink

177

Windows ARM64 Internals: Deconstructing Pointer Authentication (www.preludesecurity.com)

submitted 3 weeks ago by digicat to c/blueteamsec

0 comments fedilink

178

Supply Chain Risk in VSCode Extension Marketplaces (www.wiz.io)

submitted 3 weeks ago by digicat to c/blueteamsec

0 comments fedilink

179

Threat Hunting Methodology: F5 Security Incident (K000154696) (medium.com)

submitted 3 weeks ago by digicat to c/blueteamsec

0 comments fedilink

180

Operation Zero Disco: Attackers Exploit Cisco SNMP Vulnerability to Deploy Rootkits (www.trendmicro.com)

submitted 3 weeks ago by digicat to c/blueteamsec

0 comments fedilink

181

LOLMIL: Living Off the Land Models and Inference Libraries (dreadnode.io)

submitted 3 weeks ago by digicat to c/blueteamsec

0 comments fedilink

182

NightMARE on 0xelm Street, a guided tour — Elastic Security Labs (www.elastic.co)

submitted 3 weeks ago by digicat to c/blueteamsec

0 comments fedilink

183

GhostBat RAT: Inside The Resurgence Of RTO-Themed Android Malware (cyble.com)

submitted 3 weeks ago by digicat to c/blueteamsec

0 comments fedilink

184

Singularity: Deep Dive into a Modern Stealth Linux Kernel Rootkit (blog.kyntra.io)

submitted 3 weeks ago by digicat to c/blueteamsec

0 comments fedilink

185

BombShell: The Signed Backdoor Hiding in Plain Sight on Framework Devices (eclypsium.com)

submitted 3 weeks ago by digicat to c/blueteamsec

0 comments fedilink

186

K000154696: F5 Security Incident (my.f5.com)

submitted 3 weeks ago by digicat to c/blueteamsec

0 comments fedilink

187

Jewelbug: Chinese APT Group Widens Reach to Russia (www.security.com)

submitted 3 weeks ago by digicat to c/blueteamsec

0 comments fedilink

188

F5 breach SEC disclosure (www.sec.gov)

submitted 3 weeks ago by digicat to c/blueteamsec

0 comments fedilink

189

Confirmed compromise of F5 network (www.ncsc.gov.uk)

submitted 3 weeks ago by digicat to c/blueteamsec

0 comments fedilink

190

The UK's Information Commissioner’s Office has fined Capita plc and Capita Pension Solutions Ltd a combined £14m following a cyber attack in April 2023 which saw hackers gain access to over 6m people’ (ico.org.uk)

submitted 3 weeks ago by digicat to c/blueteamsec

0 comments fedilink

191

Eavesdropping on Internal Networks via Unencrypted Satellites (satcom.sysnet.ucsd.edu)

submitted 3 weeks ago by digicat to c/blueteamsec

0 comments fedilink

192

"Протидія російським ДРГ": UAC-0239 здійснює кібератаки з використанням фреймворку OrcaC2 та стілеру FILEMESS (CERT-UA#17691) - "Countering Russian DRGs": UAC-0239 carries out cyberattacks (cert.gov.ua)

submitted 3 weeks ago by digicat to c/blueteamsec

0 comments fedilink

193

When the monster bytes: tracking TA585 and its arsenal (www.proofpoint.com)

submitted 3 weeks ago by digicat to c/blueteamsec

0 comments fedilink

194

Gov't seeks police probe of KT for allegedly obstructing data breach investigation - The Korea Times (www.koreatimes.co.kr)

submitted 3 weeks ago by digicat to c/blueteamsec

0 comments fedilink

195

SOE-phisticated Persistence: Inside Flax Typhoon's ArcGIS Compromise (reliaquest.com)

submitted 3 weeks ago by digicat to c/blueteamsec

0 comments fedilink

196

Defrosting PolarEdge’s Backdoor (blog.sekoia.io)

submitted 3 weeks ago by digicat to c/blueteamsec

0 comments fedilink

197

RULEZET - an open source website for all the different rules (YARA, Suricata, and many others) — a place to allow comments, reviews, bundling, and integration with MISP (rulezet.org)

submitted 3 weeks ago by digicat to c/blueteamsec

0 comments fedilink

198

Securing the Future: Changes to Internet Explorer Mode in Microsoft Edge (microsoftedge.github.io)

submitted 3 weeks ago by digicat to c/blueteamsec

0 comments fedilink

199

Tracking ClickFix Infrastructure (www.aitmfeed.com)

submitted 3 weeks ago by digicat to c/blueteamsec

0 comments fedilink

200

ACSC Annual Cyber Threat Report 2024-2025 (www.cyber.gov.au)

submitted 3 weeks ago by digicat to c/blueteamsec

0 comments fedilink