The presentations from the 10th EU ATT&CK Community Workshop are online now: attack-community.org/event/. ATT&CK CIRCL - @[email protected] CERT-EU Kevin Holvoet Pedro Deryckere

You know how difficult is to monitor ransomware groups. Fafner [_KeyZee_] just released RansomLook - an awesome open source software to simplify and automate the tracking. github.com/RansomLook/Ran… I heard that a MISP (@[email protected]) integration will follow. #threatintel

My talk about the Russia-Ukraine cyberwar at #VB2022 has been published now on Youtube youtube.com/watch?v=mrTdSd…

2022 OpenSSL vulnerability - Spooky SSL | by NCSC-NL github.com/NCSC-NL/OpenSS…

#UPDATE5/#FINAL Mr. Vitali Kremez's body was recovered by local authorities Wednesday. "We'd like to express our deepest condolences to the loved ones of Mr. Kremez," said CWO Edgardo Insignares, a Sector Miami command duty officer. #SAR

In collaboration with the researchers from Orange-CERT-CC, Group-IB is releasing a new #threatreport "#OPERA1ER. Playing God without permission". The report takes a deep dive into financially motivated attacks of the French-speaking threat actor. Download➡️bit.ly/3FKbS4H

Cyberattacks targeting critical infrastructure comprised 40% of nation-state attacks detected by Microsoft (up from 20%). The number of estimated password attacks per second increased by 74%. Many more insights in the Microsoft Digital Defense Report 2022: msft.it/6010dY9q2

When you get an e-mail from your student, read it 3 times and it still makes no sense "I'm currently in a situation where it it not possible for me to submit my homework via e-mail as I cannot access my e-mail account"

Stealing passwords from infosec Mastodon - without bypassing CSP portswigger.net/research/steal…

Google releases 165 YARA rules to detect Cobalt Strike attacks - Sergiu Gatlan bleepingcomputer.com/news/security/…

After years of hearing questions like "Do you have any course that teaches how to make stuff more secure instead of only breaking it?" we finally have a course about configuring services to reduce their attack surface! clarifiedsecurity.com/service-harden…

The scammers who scam scammers on cybercrime forums: Parts 1-4 🧵👇 A shadowy sub-economy is more than just a curiosity – it’s booming business, and also an opportunity for defenders... #infosec 1/5

💙Our own HERO @liinaareng It was announced today that Liina will receive an Order of Merit by the President of the Republic Alar Karis For bringing the success story of Estonian #cybersecurity and digital services to the WORLD stage🌏 What a woman!👑 RIA (NCSC-EE) EU Service for Foreign Policy Instruments 🌐 #LAC4

Reading another tech "news" "New dangerous malware called Emotet..." - 2014 called, they want their malware back!

That moment when you have to explain what's the difference between national law and homework instructions

We analyzed #RaspberryRobin's built-in exploits and explain how to identify and bypass each of the malware's many anti-analysis tricks and evasions. Check out our blog 👉 research.checkpoint.com/2023/raspberry…

The #LockedShields #cyberdefence exercise is an excellent opportunity to identify capability gaps & develop cooperation between different countries and infrastructure companies. I got an overview of the exercise, in which nearly 3000 people from 38 countries participate NATO CCDCOE

Meie Taavi rääkis Algorütmis lähemalt Locked Shieldsist ja punase meeskonna tegemistest youtube.com/watch?v=_gVLZI…

The new ISO 27001:2022 compliance pack for InsightCloudSec helps you make more informed decisions when prioritizing what risk signals need your attention first. 🚨 Find implementation details and more in a new blog: r-7.co/3HAvzfh

The LAC4 #cyberweek participants had a chance to learn how to design exercises with Sille Arikas, assess maturity, and hunt for threats with haam3r & razu! As a bonus, the workshoppers got a firsthand experience how to make workshops interactive and interesting!