blueteamsec

543 readers
15 users here now

For [Blue|Purple] Teams in Cyber Defence - covering discovery, detection, response, threat intelligence, malware, offensive tradecraft and tooling, deception, reverse engineering etc.

founded 2 years ago
MODERATORS
digicat
listing: all - local
351
7
North Korea’s IT Workers expand beyond US big tech (www.okta.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
352
1
Exposing a Crypto Phishing Campaign Through Robots.txt (censys.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
353
3
404 Accountability not found: Spyware accountability through software liability (www.atlanticcouncil.org)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
354
1
Detour Dog: DNS Malware Powers Strela Stealer Campaigns (blogs.infoblox.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
355
1
Passkey : Community Draft of TR -03188 Passkey Server published for comment (www.bsi.bund.de)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
356
1
NIS raises natl. cyber alert level to 'caution' amid public service outage - Korea (m.koreaherald.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
357
1
Silent Smishing : The Hidden Abuse of Cellular Router APIs (blog.sekoia.io)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
358
5
Phantom Taurus: A New Chinese Nexus APT and the Discovery of the NET-STAR Malware Suite (unit42.paloaltonetworks.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
359
4
FlipSwitch: a Novel Syscall Hooking Technique (www.elastic.co)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
360
4
Using EMBER2024 to evaluate red team implants (mez0.cc)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
361
3
Attacking Assumptions Behind the Image Load Callbacks (diversenok.github.io)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
362
2
New LockBit 5.0 Targets Windows, Linux, ESXi (www.trendmicro.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
363
1
Smash and Grab: Aggressive Akira Campaign Targets SonicWall VPNs, Deploys Ransomware in an Hour or Less - "Threat actors in the present campaign successfully authenticated against accounts with the on (self.blueteamsec)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
364
2
Understanding your OT environment: the first step to stronger cyber security (www.ncsc.gov.uk)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
365
2
MS-SQL 서버 공격 사례에서 확인된 XiebroC2 - XiebroC2 identified in MS-SQL server attack cases (asec.ahnlab.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
366
3
Resecurity | Trinity of Chaos: The LAPSUS$, ShinyHunters, and Scattered Spider Alliance Embarks on Global Cybercrime Spree (www.resecurity.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
367
3
From a Single Click: How Lunar Spider Enabled a Near Two-Month Intrusion (thedfirreport.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
368
1
Threat Hunting on potential APT35 Servers (www.stormshield.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
369
2
Port in a Storm: Iranian Cyber Operations and Chinese Strategic Interests in Middle Eastern Maritime Infrastructure (pure.royalholloway.ac.uk)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
370
3
OmniProx: IP Rotation from different providers - Like FireProx but for GCP, Azure, Alibaba and CloudFlare (github.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
371
2
Gh0stKCP Protocol - transport protocol based on KCP, which runs on top of UDP. Gh0stKCP used to carry (C2) traffic by families such as PseudoManuscrypt and ValleyRAT/Winos4.0. (www.netresec.com)
submitted 1 month ago by digicat to c/blueteamsec
1 comments fedilink
372
1
Automation of VHDX Investigations (labs.infoguard.ch)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
373
4
Malicious Teams Installers Drop Oyster Malware - abusing SEO poisoning and malvertising to lure users into downloading a fake Microsoft Teams installer. (blackpointcyber.com)
submitted 1 month ago by digicat to c/blueteamsec
1 comments fedilink
 
 
374
2
SNMP RCE in Cisco IOS and IOS XE Software [CVE‑2025‑20352] (censys.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
375
2
Olymp Loader: A new Malware-as-a-Service written in Assembly (outpost24.com)
submitted 1 month ago by digicat to c/blueteamsec
0 comments fedilink
view more: ‹ prev next ›