blueteamsec

630 readers

56 users here now

For [Blue|Purple] Teams in Cyber Defence - covering discovery, detection, response, threat intelligence, malware, offensive tradecraft and tooling, deception, reverse engineering etc.

founded 2 years ago

MODERATORS

digicat

1051

Microsoft Defender for Endpoint Internal 0x06 — Custom Collection (medium.com)

submitted 2 months ago by digicat to c/blueteamsec

0 comments fedilink

1052

APT24's Pivot to Multi-Vector Attacks (cloud.google.com)

submitted 2 months ago by digicat to c/blueteamsec

0 comments fedilink

1053

Custom data collection in Microsoft Defender for Endpoint - Microsoft Defender for Endpoint (learn.microsoft.com)

submitted 2 months ago by digicat to c/blueteamsec

0 comments fedilink

1054

Autumn Dragon: China-nexus APT Group Targets South East Asia (cyberarmor.tech)

submitted 2 months ago by digicat to c/blueteamsec

0 comments fedilink

1055

Interactive End-to-End Decompilation via Large Language Models (www.mdpi.com)

submitted 2 months ago by digicat to c/blueteamsec

0 comments fedilink

1056

The Tsundere botnet uses the Ethereum blockchain to infect its targets (securelist.com)

submitted 2 months ago by digicat to c/blueteamsec

0 comments fedilink

1057

SCCM Hierarchy Takeover via Entra Integration…Because of the Implication (specterops.io)

submitted 2 months ago by digicat to c/blueteamsec

0 comments fedilink

1058

Windows: Administrator Protection RAiLaunchAdminProcess Application Name EoP (project-zero.issues.chromium.org)

submitted 2 months ago by digicat to c/blueteamsec

0 comments fedilink

1059

Security Advisory: Unusual Activity Related to Gainsight Applications (status.salesforce.com)

submitted 2 months ago by digicat to c/blueteamsec

0 comments fedilink

1060

A Pain in the Mist: Navigating Operation DreamJob’s arsenal (www.orangecyberdefense.com)

submitted 2 months ago by digicat to c/blueteamsec

0 comments fedilink

1061

Nation-state actors bridging cyber and kinetic warfare (aws.amazon.com)

submitted 2 months ago by digicat to c/blueteamsec

0 comments fedilink

1062

Building the digital front line: Understanding big tech decision-making in Ukraine (www.atlanticcouncil.org)

submitted 2 months ago by digicat to c/blueteamsec

0 comments fedilink

1063

Pixnapping: Bringing Pixel Stealing out of the Stone Age on Android (www.pixnapping.com)

submitted 2 months ago by digicat to c/blueteamsec

0 comments fedilink

1064

Prepared Statements? Prepared to Be Vulnerable. (blog.mantrainfosec.com)

submitted 2 months ago by digicat to c/blueteamsec

0 comments fedilink

1065

Palo Alto Scanning Surges 40X in 24 Hours, Marking 90-Day High (www.greynoise.io)

submitted 2 months ago by digicat to c/blueteamsec

0 comments fedilink

1066

The Psychology Behind Effective Honey Tokens (deceptiq.com)

submitted 2 months ago by digicat to c/blueteamsec

0 comments fedilink

1067

Hey there! You are using WhatsApp: Enumerating Three Billion Accounts for Security and Privacy (github.com)

submitted 2 months ago by digicat to c/blueteamsec

0 comments fedilink

1068

Hackers Target Educational Institutions in Sumy Region and Government Bodies via Compromised Account - Ukraine (cip.gov.ua)

submitted 2 months ago by digicat to c/blueteamsec

0 comments fedilink

1069

AI-Orchestrated Attacks: Why Detection Speed Matters (deceptiq.com)

submitted 2 months ago by digicat to c/blueteamsec

0 comments fedilink

1070

Bulletproof Defense: Mitigating Risks From Bulletproof Hosting ProviderS (media.defense.gov)

submitted 2 months ago by digicat to c/blueteamsec

0 comments fedilink

1071

PlushDaemon compromises network devices for adversary-in-the-middle attacks (www.welivesecurity.com)

submitted 2 months ago by digicat to c/blueteamsec

0 comments fedilink

1072

United States, Australia, and United Kingdom Sanction Russian Cybercrime Infrastructure Supporting Ransomware (home.treasury.gov)

submitted 3 months ago by digicat to c/blueteamsec

0 comments fedilink

1073

China’s Cybersecurity Companies Advancing Offensive Cyber Capabilities Through Attack-Defense Labs (open.substack.com)

submitted 3 months ago by digicat to c/blueteamsec

0 comments fedilink

1074

Bulletproof Defense: Mitigating Risks From Bulletproof Hosting Providers (www.cisa.gov)

submitted 3 months ago by digicat to c/blueteamsec

0 comments fedilink

1075

Nation-State Actor’s Arsenal: An In-Depth Look at Lazarus’ ScoringMathTea (0x0d4y.blog)

submitted 3 months ago by digicat to c/blueteamsec

0 comments fedilink