Over the past year, BO Team has significantly recalibrated its approach to incursions against Russian organizations. The syndicate has transitioned away from the boisterous profile of hacktivists intent on performative infrastructure sabotage, increasingly manifesting...
The Chinese cyber-espionage collective UAT-8302 has, for nearly a annum, conducted surreptitious incursions against governmental entities across South America and Europe, utilizing a sophisticated arsenal linked to several prominent Chinese threat actors. Analysts at...
Cybersecurity adversaries have asserted a monumental breach of one of the world’s preeminent pedagogical platforms, claiming the exfiltration of sensitive data belonging to hundreds of millions of students and educators. According to the syndicate...
AD CS LOLBAS Toolkit Native Windows toolkit for AD CS enumeration and exploitation. Everything runs through built-in OS components (certreq.exe, certutil.exe, PowerShell AD module, .NET Framework) – no third-party tools needed(other than RSAT). Build...
The seemingly innocuous download of a mobile game could culminate in a smartphone being compromised by sophisticated spyware. Researchers at ESET have revealed that the ScarCruft group, widely associated with North Korea, infiltrated a...
The novel Linux implant, Quasar Linux, poses a formidable threat not merely to individual workstations but to the entire software supply chain. This malicious suite targets environments dedicated to the creation, compilation, and dissemination...
A contentious debate has emerged surrounding Google Chrome following reports of the surreptitious deployment of a substantial AI model onto users’ devices. Computer scientist and legal expert Alexander Hanff asserts that the browser downloads...
Adversaries no longer find it requisite to engineer sophisticated malware from its inception. Frequently, the appropriation of a pre-existing utility from GitHub, utilized in its native state, suffices. This paradigm was vividly illustrated in...
A critical vulnerability has been identified within the ubiquitous Apache web server, potentially facilitating the complete compromise of affected systems. Although a remediation has been disseminated, administrators are urged to apply the update with...
Trajan: CI/CD Security Scanner Trajan scans CI/CD pipelines for security vulnerabilities that attackers use to compromise software supply chains. It supports GitHub Actions, GitLab CI, Azure DevOps, Jenkins, and JFrog. What it does Trajan...