blueteamsec

679 readers

14 users here now

For [Blue|Purple] Teams in Cyber Defence - covering discovery, detection, response, threat intelligence, malware, offensive tradecraft and tooling, deception, reverse engineering etc.

founded 2 years ago

MODERATORS

1976

4

The Civil Guard dismantles a banking phishing network and arrests the main developer of credential-stealing kits in Spain (web.guardiacivil.es)

submitted 5 months ago by digicat to c/blueteamsec

0 comments fedilink

1977

8

Three Security Invariants Could Prevent 65% of Breaches: Analyzing 70 Incidents and Building CISO Challenge (securityblueprints.io)

submitted 6 months ago by digicat to c/blueteamsec

1 comments fedilink

1978

1

A Gemini crunched and produced report based on the leaks from https://github.com/KittenBusters/CharmingKitten (gist.github.com)

submitted 6 months ago by digicat to c/blueteamsec

0 comments fedilink

1979

1

Microsoft Events Leak, Part I: Leaking Event Registration and Waitlist Databases - now fixed (blog.faav.top)

submitted 6 months ago by digicat to c/blueteamsec

0 comments fedilink

1980

8

CamoLeak: Critical GitHub Copilot Vulnerability Leaks Private Source Code (www.legitsecurity.com)

submitted 6 months ago by digicat to c/blueteamsec

0 comments fedilink

1981

2

175 Malicious npm Packages Host Phishing Infrastructure Targeting 135+ - 26k+ downloads - used unpkg CDN to host redirect scripts for a credential-phishing campaign (socket.dev)

submitted 6 months ago by digicat to c/blueteamsec

0 comments fedilink

1982

5

7-Zip ZIP File Parsing Directory Traversal Remote Code Execution Vulnerability - Oct 7th - another one (www.zerodayinitiative.com)

submitted 6 months ago by digicat to c/blueteamsec

0 comments fedilink

1983

2

Active Exploitation of Gladinet CentreStack and Triofox Local File Inclusion Flaw (www.huntress.com)

submitted 6 months ago by digicat to c/blueteamsec

0 comments fedilink

1984

2

Security Bulletin: NVIDIA GPU Display Drivers - October 2025 - multiple Linux privilege escalations likely impacting shared model training environments (nvidia.custhelp.com)

submitted 6 months ago by digicat to c/blueteamsec

0 comments fedilink

1985

2

APT | 海莲花组织Havoc远控木马分析 - APT | Analysis of the OceanLotus Havoc Remote Access Trojan (mp.weixin.qq.com)

submitted 6 months ago by digicat to c/blueteamsec

0 comments fedilink

1986

8

100,000+ IP Botnet Launches Coordinated RDP Attack Wave Against US Infrastructure (www.greynoise.io)

submitted 6 months ago by digicat to c/blueteamsec

1 comments fedilink

1987

2

2025年に確認されたBlackTechのマルウェアKivarsの亜種 – A variant of BlackTech's Kivars malware discovered in 2025 (sect.iij.ad.jp)

submitted 6 months ago by digicat to c/blueteamsec

0 comments fedilink

1988

1

BatShadow’s Latest Play - Vietnamese Threat Group Uses Vampire Bot to Target Digital Professionals (www.aryaka.com)

submitted 6 months ago by digicat to c/blueteamsec

0 comments fedilink

1989

2

New Rust Malware "ChaosBot" Uses Discord for Command and Control (www.esentire.com)

submitted 6 months ago by digicat to c/blueteamsec

0 comments fedilink

1990

2

Analyzing and Breaking Defender for Endpoint's Cloud Communication (labs.infoguard.ch)

submitted 6 months ago by digicat to c/blueteamsec

0 comments fedilink

1991

2

A major evolution of Apple Security Bounty, with the industry's top awards for the most advanced research - Apple Security Research (security.apple.com)

submitted 6 months ago by digicat to c/blueteamsec

0 comments fedilink

1992

6

Widespread SonicWall SSLVPN Compromise - So far, over 100 SonicWall SSLVPN accounts across 16 customer accounts have been impacted. In the cases observed (www.huntress.com)

submitted 6 months ago by digicat to c/blueteamsec

0 comments fedilink

1993

4

Spyware maker NSO Group confirms acquisition by US investors | TechCrunch (techcrunch.com)

submitted 6 months ago by digicat to c/blueteamsec

0 comments fedilink

1994

4

CTO at NCSC Summary: week ending October 12th (ctoatncsc.substack.com)

submitted 6 months ago by digicat to c/blueteamsec

0 comments fedilink

1995

4

Disrupting malicious uses of AI: October 2025 (openai.com)

submitted 6 months ago by digicat to c/blueteamsec

0 comments fedilink

1996

1

VehicleSec '25 Technical Sessions (www.usenix.org)

submitted 6 months ago by digicat to c/blueteamsec

0 comments fedilink

1997

2

Beyond the Alert: The Art and Science of Modern Detection Engineering. (medium.com)

submitted 6 months ago by digicat to c/blueteamsec

0 comments fedilink

1998

2

Lawfare Daily: The State of the Spyware Industry (www.lawfaremedia.org)

submitted 6 months ago by digicat to c/blueteamsec

0 comments fedilink

1999

5

A survey on malware attacks in industrial air-gap systems (link.springer.com)

submitted 6 months ago by digicat to c/blueteamsec

0 comments fedilink

2000

2

BYOVD to the next level (part 2) — rootkit like it's 2025 (blog.quarkslab.com)

submitted 6 months ago by digicat to c/blueteamsec

0 comments fedilink