Top News

• Xenomorph Banking Trojan: A New Variant Targeting 35+ U.S. Financial Institutions

"An updated version of an Android banking trojan called Xenomorph has set its sights on more than 35 financial institutions in the U.S."

Link

TLP¹ : Green

• Hunter Biden sues Rudy Giuliani, attorney Robert Costello for "hacking" laptop data

"Hunter Biden sued Rudy Giuliani and his former attorney Tuesday, claiming they hacked and manipulated data on an external hard drive associated with his laptop."

Link

TLP¹ : Green

• I’m a hacking expert – sinister ‘mistake click’ steals your money instantly and even tech-savvy victim lost $870,000

"This is a type of attack where scammers try to trick you into giving them your cryptocurrency recovery phrase.

Your recovery phrase consists of a string of words that can be used to recover your cryptocurrency wallet if you lose it or forget your password."

Link

TLP¹ : Green

Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism

• Chinese Hackers TAG-74 Targets South Korean Organizations in a Multi-Year Campaign

"A "multi-year" Chinese state-sponsored cyber espionage campaign has been observed targeting South Korean academic, political, and government organizations."

Link

TLP¹ : Green

• Ukraine accuses Russian spies of hunting for war-crime info on its servers

"The Ukrainian State Service of Special Communications and Information Protection (SSSCIP) has claimed that Russian cyberspies are targeting its servers looking for data about alleged Kremlin-backed war crimes."

Link

TLP¹ : Green

Breaches: Data Breaches and Hacks

• A ransomware group claims to have breached ‘all Sony systems’

"Ransomware group Ransomed.vc claims to have successfully breached Sony Group and is threatening to sell a cache of data stolen from the Japanese company."

Link

TLP¹ : Green

Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits

• Critical JetBrains TeamCity Flaw Could Expose Source Code and Build Pipelines to Attackers

"A critical security vulnerability in the JetBrains TeamCity continuous integration and continuous deployment (CI/CD) software could be exploited by unauthenticated attackers to achieve remote code execution on affected systems."

Link

TLP¹ : Green

Incident Response: Infrastructure, Training, SIEM and Incident Handling

• Essential Guide to Cybersecurity Compliance

"SOC 2, ISO, HIPAA, Cyber Essentials – all the security frameworks and certifications today are an acronym soup that can make even a compliance expert's head spin. If you're embarking on your compliance journey, read on to discover the differences between standards, which is best for your business, and how vulnerability management can aid compliance."

Link

TLP¹ : Green

Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography

• AtlasReaper - A Command-Line Tool For Reconnaissance And Targeted Write Operations On Confluence And Jira Instances

"AtlasReaper is a command-line tool developed for offensive security purposes, primarily focused on reconnaissance of Confluence and Jira. It also provides various features that can be helpful for tasks such as credential farming and social engineering. The tool is written in C#."

Link

TLP¹ : Green

¹Traffic Light Protocol (TLP) [1] for information sharing:

• Red:Not for disclosure, restricted to participants only.
• Amber: Limited disclosure, restricted to participants organizations.
• Green: Limited disclosure, restricted to the community.

[1]https://www.first.org/tlp