ToxicPanda: a new banking trojan from Asia hit Europe and LATAM

https://www.cleafy.com/cleafy-labs/toxicpanda-a-new-banking-trojan-from-asia-hit-europe-and-latam

Typosquat Campaign Targeting npm Developers

https://blog.phylum.io/supply-chain-security-typosquat-campaign-targeting-puppeteer-users/

Threat Campaign Spreads Winos4.0 Through Game Application

https://www.fortinet.com/blog/threat-research/threat-campaign-spreads-winos4-through-game-application

Palo Alto Expedition Missing Authentication Vulnerability: Palo Alto Expedition contains a missing authentication vulnerability that allows an attacker with network access to takeover an Expedition admin account and potentially access configuration secrets, credentials, and other data

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?search_api_fulltext=CVE-2024-5910&field_date_added_wrapper=all&field_cve=&sort_by=field_date_added&items_per_page=20&url=

Вредоносные приложения в Google Play: как злоумышленники используют DNS-протокол для скрытой связи троянов с управляющими серверами

https://news.drweb.ru/show/?i=14935&lng=ru

Offset-free DSE bypass across Windows 11 & 10: utilising ntkrnlmp.pdb

https://blog.cryptoplague.net/main/research/windows-research/offset-free-dse-bypass-across-windows-11-and-10-utilising-ntkrnlmp.pdb

Linux kernel test robot noticed a 3888.9% improvement of will-it-scale.per_process_ops

https://lore.kernel.org/lkml/202411072132.a8d2cf0f-oliver.sang@intel.com/

Commit:

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=d4148aeab412432bf928f311eca8a2ba52bb05df

Управление памятью и сборщиком мусора в Go (Memory Management and Garbage Collection in Go)

https://www.youtube.com/live/UVqpl4PExkM?si=HbRHSYTQdQcOFswt

Glove Stealer: Leveraging IElevator to Bypass App-Bound Encryption & Steal Sensitive Data

https://www.gendigital.com/blog/insights/research/glove-stealer

Subject Linux 6.12

Linus commented: No strange surprises this last week, so we're sticking to the regular release schedule, and that obviously means that the merge window opens tomorrow. I already have two dozen+ pull requests in my mailbox, kudos to all the early birds..:

https://lkml.org/lkml/2024/11/17/326

CVE org celebrates 25 years

https://www.cve.org/Resources/Media/Cve25YearsAnniversaryReport.pdf

8 Free CyberSec & Networking Courses From Cisco

It may be useful to refresh your knowledge or learn something new:It may be useful to refresh your knowledge or learn something new:

1 Ethical Hacker
2 Junior Cybersecurity Analyst
3 Endpoint Security
4 Cyber Threat Management
5 Introduction to Cybersecurity
6 Network Defense
7 Network Addressing and Basic Troubleshooting
8 Networking Essentials

ModeLeak: Privilege Escalation to LLM Model Exfiltration in Vertex AI

https://unit42.paloaltonetworks.com/privilege-escalation-llm-model-exfil-vertex-ai/

One Sock Fits All: The Use And Abuse Of The NSOCKS Botnet

https://blog.lumen.com/one-sock-fits-all-the-use-and-abuse-of-the-nsocks-botnet/

PoC cve-2024-43532

https://github.com/akamai/akamai-security-research/tree/main/PoCs/cve-2024-43532

Animated Cyber Security))

Malicious packages for AI integration containing infostealer malware were found in the Python Package Index repository.

https://www.kaspersky.com/blog/jarkastealer-in-pypi-packages/52640/

Microsoft 365 had issues

https://portal.office.com/servicestatus

Portable Hacking Lab: Control The Smallest Kali Linux With a Smartphone

https://www.mobile-hacker.com/2024/10/04/portable-hacking-lab-control-the-smallest-kali-linux-with-a-smartphone/

LogoFAIL Exploited to Deploy Bootkitty, the first UEFI bootkit for Linux

https://www.binarly.io/blog/logofail-exploited-to-deploy-bootkitty-the-first-uefi-bootkit-for-linux