📌Active Directory Attacks Complete Guide📝 🔗drive.google.com/file/d/1NbLPfU…

"How Hackers Persist & Escalate Privileges in Entra ID/Microsoft 365" 🔥 -- a demo showcasing dynamic groups and adding a rogue guest to a tenant, leveraging just the vanilla defaults of the cloud environment 👀 jh.live/Ih4u2LV1BIc

🚨 Attackers use public open directories for hosting #malicious scripts disguised as .txt and .jpg files These are utilized in multi-stage #AsyncRAT #infections See technical breakdown of the tactics from WatchingRac 👇 any.run/cybersecurity-…

ℹ️🔴 Après la fuite de données ayant touché de nombreux abonnés Free, la CNIL a effectué un contrôle chez l’opérateur la semaine dernière. Le dossier est désormais en cours d’instruction. Vous êtes victime de cette violation ? Retrouvez nos conseils en ligne 👇

[GDPR][Cryptocurrencies] Ledger condamné par la CNIL pour insuffisance de protection des DCP ? On est loin du discours rassurant tenu à NoLimitSecu, en matière cyber, même si le portefeuille crypto-monnaie lui-même est sécurisé. lemonde.fr/pixels/article… nolimitsecu.fr/securite-des-w…

ShrinkLocker ransomware decyptor recovers BitLocker-encrypted files - Bill Toulas bleepingcomputer.com/news/security/… bleepingcomputer.com/news/security/…

All the #deals for #InfoSec related software/tools this #BlackFriday github.com/0x90n/InfoSec-… #CyberSecurity

How Command and Control Servers Are Used In Cyberattacks securityblue.team/blog/posts/com…

When planning your holiday vacation, beware of #phishing attacks spoofing various booking sites, restaurants, banks and crypto wallets. From Nov 1st through Nov 9th, one threat actor using ilotirabec207@gmail[.]com registered 550+ domains. More info at bit.ly/48Mc93u

#Ivanti released security updates to address CVE-2025-0282—being actively exploited—and CVE-2025-0283, affecting Connect Secure, Policy Secure, and ZTA Gateways. See our Alert for mitigation guidance to help reduce your exposure: bit.ly/4fYrMqQ

Ivanti Connect Secure VPN Targeted in New Zero-Day Exploitation Google Cloud cloud.google.com/blog/topics/th…

🚨 Alert: CVE-2024-12084 🚨 A severe heap overflow vulnerability in rsync could lead to remote code execution—affecting 600k+ systems globally. 🔎 Read more details on the Falco detection rule for this CVE, as well as steps for mitigation from Sysdig TRT:okt.to/wbricu

Detecting and mitigating CVE-2024-12084: rsync remote code execution |  by Michael Clark Sysdig sysdig.com/blog/detecting…

I guess I need to collect ideas for a few more months before I can print and use it

🚨 CVE-2025-6543 is actively exploited in the wild. Found multiple vulnerable NetScaler instances exposed online. Update your Citrix ADC now!🛡️ deyda.net/index.php/en/2… #Citrix #NetScaler #CVE2025 #CyberSecurity

SaxX ¯\_(ツ)_/¯ Ca n’est pas ce qui est dit dans le tweet de Proton VPN. C’est même le contraire

The DFIR Report: Real Intrusions by Real Attackers, The Truth Behind the Intrusion thedfirreport.com

x.com/i/article/1951…

𝗠𝗮𝗹𝗶𝗰𝗶𝗼𝘂𝘀 𝗨𝗥𝗟 𝗣𝗿𝗼𝘁𝗲𝗰𝘁𝗶𝗼𝗻 𝗶𝗻 𝗠𝗶𝗰𝗿𝗼𝘀𝗼𝗳𝘁 𝗧𝗲𝗮𝗺𝘀 The feature 'Malicious URL Protection' is in preview. Turn off or turn on Link Protection through Teams Admin Center (See below) What's the difference between this feature and Safe Links for Teams

Metrics as a Skill, Not a Report. 🧠 Most SOCs collect metrics. Few actually use them to improve performance. If you’re tracking MTTD, MTTR, or alert volume but still feel stuck, the issue isn’t the tooling; it’s the interpretation. 📊 This guide breaks down: ✅ Which SOC metrics