August 2024

, ,

Wireshark 4.4.0 is now available, (Sat, Aug 31st)

This is the first 4.4 release. Many new features have been added, details are here. Article Link: Wireshark 4.4.0 is now available - SANS I...

Sp123 31 Aug, 2024
, ,

Largest ever synthetic opioid laboratory in Poland dismantled

Results of the action day include:arrest of 7 members of the criminal network;dismantling of the largest laboratory of synthetic opioids eve...

Sp123 30 Aug, 2024
, ,

Silent Intrusions: Godzilla Fileless Backdoors Targeting Atlassian Confluence

Trend Micro discovered that old Atlassian Confluence versions that were affected by CVE-2023-22527 are being exploited using a new in-memory...

Sp123 30 Aug, 2024
, ,

Parsing Fortinet Binary Firewall Logs

Earlier this year, we had a case where we were given a disk image from a FortiAnalyzer box. We were asked to extract details about an intrus...

Sp123 30 Aug, 2024
, ,

What is a QR Code Scam?

Bad actors are always on the lookout for ways to scam people. They would do anything that could trick potential victims into sharing sensit...

Sp123 30 Aug, 2024
, ,

Ransom & Dark Web Issues Week 5, August 2024

ASEC Blog publishes Ransom & Dark Web Issues Week 5, August 2024       Article Link: Ransom & Dark Web Issues Week 5, August 2024 –...

Sp123 29 Aug, 2024
, ,

Threat Actors Target the Middle East Using Fake Palo Alto GlobalProtect Tool

Threat actors are targeting users in the Middle East by distributing sophisticated malware disguised as the Palo Alto GlobalProtect tool. A...

Sp123 29 Aug, 2024
, ,

Live Patching DLLs with Python, (Thu, Aug 29th)

In my previous diary[1], I explained why Python became popular for attackers. One of the given reason was that, from Python scripts, it’s po...

Sp123 29 Aug, 2024
, ,

2024 Cyber Resilience Research: Aligning Retail Cybersecurity with Business Priorities

New data illuminates how retail leaders can prioritize resilience. In today’s retail environment, businesses embrace dynamic computing and...

Sp123 28 Aug, 2024
, ,

Rocinante: The trojan horse that wanted to fly

Introduction The Mobile malware landscape has continuously evolving over the last few years, with many new actors joining a field that has...

Sp123 28 Aug, 2024
, ,

Broadcom Extends VMware Cybersecurity Portfolio

Broadcom today at the VMware Explore 2024 conference extended its VMware vDefend portfolio to include generative artificial intelligence (A...

Sp123 28 Aug, 2024
, ,

Europol and New Zealand strengthen ties to fight serious crime and terrorism

The agreement includes provisions on the exchange of information and data protection, the rights of data subjects, the establishment of a su...

Sp123 28 Aug, 2024
, ,

The Danger in Clicking ‘OK’

In the grand scheme of cybersecurity, the design issue in Foxit PDF Reader was really very minor. But it revealed a much larger and more imp...

Sp123 27 Aug, 2024
, ,

HZ Rat backdoor for macOS attacks users of China’s DingTalk and WeChat

In June 2024, we discovered a macOS version of the HZ Rat backdoor targeting users of the enterprise messenger DingTalk and the social netw...

Sp123 27 Aug, 2024
, ,

From Highly Obfuscated Batch File to XWorm and Redline, (Mon, Aug 26th)

If you follow my diaries, you probably already know that one of my favorite topics around malware is obfuscation. I’m often impressed by the...

Sp123 26 Aug, 2024
, ,

28 arrested and cocaine lab dismantled in hit against drug traffickers

The seizures included large quantities of drugs and criminal assets:47 kilograms of freshly processed cocaine hydrochloride;20 kilograms of ...

Sp123 26 Aug, 2024
, ,

Nokia dumbphones make a comeback

For most children, the step up to high school is a rite of passage. It is also when they are given their first smartphone. But one UK schoo...

Sp123 26 Aug, 2024
, ,

Agentless Password Auditing for Linux White Paper

We have released a white paper on our powerful agentless password auditor for Linux. We discuss the problem of password brute force attacks,...

Sp123 26 Aug, 2024
, ,

August 26, 2024

August 26, 2024 Hash 1f8b1a099f5cdc741c0ed023e0c433b79 2fecd95235e506059aa8ef037c6ff5221 387f9169d75990bc084715a8e3daedaad UR...

Sp123 25 Aug, 2024
, ,

Telegram is not really an encrypted messaging app

This blog is dedicated to real cryptographic topics, so ordinarily this isn’t a topic I would spend time on here. But much as I’d like to wr...

Sp123 25 Aug, 2024