blueteamsec

679 readers
17 users here now

For [Blue|Purple] Teams in Cyber Defence - covering discovery, detection, response, threat intelligence, malware, offensive tradecraft and tooling, deception, reverse engineering etc.

founded 2 years ago
MODERATORS
digicat
listing: all - local
2151
4
Who is Salt Typhoon Really? Unraveling the Attribution Challenge (nattothoughts.substack.com)
submitted 6 months ago by digicat to c/blueteamsec
0 comments fedilink
2152
1
Project Rain:L1TF - This blog provides a detailed overview of the L1TF vulnerability, a CPU vulnerability on some Intel CPUs (Skylake and older) (bughunters.google.com)
submitted 6 months ago by digicat to c/blueteamsec
0 comments fedilink
2153
1
COLDRIVER Adds BAITSWITCH and SIMPLEFIX (www.zscaler.com)
submitted 6 months ago by digicat to c/blueteamsec
0 comments fedilink
2154
2
Threat Intelligence Another BRICKSTORM: Stealthy Backdoor Enabling Espionage into Tech and Legal Sectors (cloud.google.com)
submitted 6 months ago by digicat to c/blueteamsec
0 comments fedilink
2155
3
Linux Kernel Runtime Guard (LKRG) 1.0 (Nullcon Berlin 2025) (www.openwall.com)
submitted 6 months ago by digicat to c/blueteamsec
0 comments fedilink
2156
5
Large-Scale Attack Targeting Macs via GitHub Pages Impersonating Companies to Attempt to Deliver Stealer Malware (blog.lastpass.com)
submitted 6 months ago by digicat to c/blueteamsec
0 comments fedilink
2157
2
Ransomware Rising - Digital Front Lines (digitalfrontlines.io)
submitted 6 months ago by digicat to c/blueteamsec
0 comments fedilink
2158
2
Security advisory: command injection vulnerability (CVE-2025-59689) – email as a vector (docs.libraesva.com)
submitted 6 months ago by digicat to c/blueteamsec
0 comments fedilink
2159
2
How RainyDay, Turian and a new PlugX variant abuse DLL search order hijacking (blog.talosintelligence.com)
submitted 6 months ago by digicat to c/blueteamsec
0 comments fedilink
2160
2
The Evolution of RomCom (www.attackiq.com)
submitted 6 months ago by digicat to c/blueteamsec
0 comments fedilink
2161
2
NodeJS backdoors delivering proxyware and monetization schemes (medium.com)
submitted 6 months ago by digicat to c/blueteamsec
0 comments fedilink
2162
2
Operation Rewrite: Chinese-Speaking Threat Actors Deploy BadIIS in a Wide Scale SEO Poisoning Campaign (unit42.paloaltonetworks.com)
submitted 6 months ago by digicat to c/blueteamsec
0 comments fedilink
2163
2
Our plan for a more secure npm supply chain (github.blog)
submitted 6 months ago by digicat to c/blueteamsec
0 comments fedilink
2164
4
BYOVD to the next level (part 1) — exploiting a vulnerable driver (CVE-2025-8061) - Quarkslab's blog (blog.quarkslab.com)
submitted 6 months ago by digicat to c/blueteamsec
0 comments fedilink
2165
6
U.S. Secret Service dismantles imminent telecommunications threat in New York tristate area (www.secretservice.gov)
submitted 6 months ago by digicat to c/blueteamsec
0 comments fedilink
2166
6
The Phantom Extension: Backdooring chrome through uncharted pathways (www.synacktiv.com)
submitted 6 months ago by digicat to c/blueteamsec
0 comments fedilink
2167
5
m0leCon 2025 (www.youtube.com)
submitted 6 months ago by digicat to c/blueteamsec
0 comments fedilink
2168
3
YiBackdoor: Linked to IcedID and Latrodectus | ThreatLabz (www.zscaler.com)
submitted 6 months ago by digicat to c/blueteamsec
0 comments fedilink
2169
4
CISA Shares Lessons Learned from an Incident Response Engagement (www.cisa.gov)
submitted 6 months ago by digicat to c/blueteamsec
0 comments fedilink
2170
5
firezone: Enterprise-ready zero-trust access platform built on WireGuard®. (github.com)
submitted 6 months ago by digicat to c/blueteamsec
0 comments fedilink
2171
1
[위협 분석] 성범죄자 고지 정보를 위장한 Kimsuky 공격 | 로그프레소 - Kimsuky Attack Disguised as Sex Offender Notification Information (logpresso.com)
submitted 6 months ago by digicat to c/blueteamsec
0 comments fedilink
2172
1
Defending Against the Evolving OAuth Attack Landscape (aadinternals.com)
submitted 6 months ago by digicat to c/blueteamsec
0 comments fedilink
2173
2
Cyber Threat Intelligence Communication & Reporting Techniques (bank-security.medium.com)
submitted 6 months ago by digicat to c/blueteamsec
0 comments fedilink
2174
2
CVE-2025-10035: Detection for CVE-2025-10035 via Nuclei (github.com)
submitted 6 months ago by digicat to c/blueteamsec
0 comments fedilink
2175
1
In-depth Analysis of the Encrypted Payloads in the Pseudo Hunter Github Repository (mp.weixin.qq.com)
submitted 6 months ago by digicat to c/blueteamsec
0 comments fedilink
view more: ‹ prev next ›