/ “GIFShell” — Covert Attack Chain and C2 Utilizing Microsoft Teams GIFs

https://medium.com/@bobbyrsec/gifshell-covert-attack-chain-and-c2-utilizing-microsoft-teams-gifs-1618c4e64ed7

HackConf 2022 - 18 сентября СПБ оффлайн
 
Некоторые тематики докладов:
• Реверс-инжиниринг в Embedded
• Рисуем безопасную архитектуру сервиса по доставке еды
• Как получить профессию мечты и выжить
• СИ в 2022: все еще актуальна?

https://news.1rj.ru/str/sysadm_in_up/1330

/ Binarly Finds Six High Severity Firmware Vulnerabilities In HP Enterprise Devices

https://binarly.io/posts/Binarly_Finds_Six_High_Severity_Firmware_Vulnerabilities_in_HP_Enterprise_Devices/index.html

/ About the security content of iOS 16 (updated at September 2022)

https://support.apple.com/en-us/HT213446

/ Performance Regression in Linux Kernel 5.19

As part of VMware's performance regression testing for Linux
Kernel upstream releases, we have evaluated the performance
of Linux kernel 5.19 against the 5.18 release and we have
noticed performance regressions in Linux VMs on ESXi as shown
below.
- Compute(up to -70%)
- Networking(up to -30%)
- Storage(up to -13%)

https://lkml.iu.edu/hypermail/linux/kernel/2209.1/02248.html

/ Miltiple vulnerabilities in Trend Micro Apex One

(Japanese article)

https://success.trendmicro.com/jp/solution/000291471

/ Chiseling In: Lorenz Ransomware Group Cracks MiVoice And Calls Back For Free

https://arcticwolf.com/resources/blog/lorenz-ransomware-chiseling-in/

Hey all, tmrw I will speak at the KazHackStan conference with my presentation with subject:

* Open-Source Projects Responsibility Awareness (by Open BLD Example)

All details you can see on KazHackStan.kz, let's burn 🔥 tomorrow, who will be in Almaty let's get acquainted and let's talk, try to share knowledge with each other 🤘

Открытые практикумы DevOps и Linux by Rebrain (20 и 21 Сентября)
 
DevOps by Rebrain: Деплой докер приложений через ansible.
• Расскажем, зачем нужен Ansible и в чем его киллер-фичи
• Изучим базовые понятия Ansible
• Разберемся, как писать Ansible-playbook
• Задеплоим небольшое приложение

• 20 Сентября 19.00 МСК. Детали
• Захар Трегубов - 7 лет опыта работы с Linux. 2 года опыта работы в клиентском сервисе.

Linux by Rebrain: Скрипты bash.
• Shebang
• Параметры запуска скрипта
• Что нужно знать работая с переменными в скрипте

• 21 Сентября 20.00 МСК. Детали
• Андрей Буранов - Специалист по UNIX-системам в компании VK. Опыт работы с ОС Linux более 7 лет.

/ The FLEXLAN FXA2000 and FXA3000 series devices from CONTEC are WiFi access point mainly used in airplanes and allows very high speed communication to provide movies, musics, but also buy foods and goodies during the flight trip

https://samy.link/blog/pages/contec-flexlan-fxa2000-and-fxa3000-series-vulnerability-repo/contec-1.jpg

/ Undermining Microsoft Teams Security by Mining Tokens

https://www.vectra.ai/blogpost/undermining-microsoft-teams-security-by-mining-tokens

Today I had improved DoH speed in Open BLD DNS, you can try BLD DoH in your browser with address: https://bld.sys-adm.in/dns-query

How to setup:
- https://lab.sys-adm.in/en/instructions/

/ It's Time to PuTTY! DPRK Job Opportunity Phishing via WhatsApp

https://www.mandiant.com/resources/blog/dprk-whatsapp-phishing

/ Chrome & Edge Enhanced Spellcheck Features Expose PII, Even Your Passwords

Some of the largest websites in the world have exposure to sending Google and Microsoft sensitive user PII, including username, email, and passwords..

https://www.otto-js.com/news/article/chrome-and-edge-enhanced-spellcheck-features-expose-pii-even-your-passwords

/ LastPass .. again

In short: hackers gained and held it access to LP :

https://blog.lastpass.com/2022/08/notice-of-recent-security-incident/

/ Uber similar breach through compromised account

https://www.uber.com/newsroom/security-update/

/ American Airlines and same.. - American Airlines discloses data breach after employee email compromise

https://www.bleepingcomputer.com/news/security/american-airlines-discloses-data-breach-after-employee-email-compromise/

/ Revolut money management company was hacked

throuth email phishing:

https://www.reddit.com/r/Revolut/comments/xew1w3/revolut_was_hacked/

/ Credential Phishing Targeting Government Contractors Evolves Over Time

analysys:

https://cofense.com/blog/credential-phishing-targeting-government-contractors-evolves-over-time