#Rust

We found the full CARBANAK source code & previously unseen plugins. Our #FLARE team spent 500 hours analyzing the 100,000+ lines of code. 𝕸𝓎𝖐𝖎𝖑𝖑 ☠️ & James T. Bennett just dropped day 1 of their 4-part blog series: fireeye.com/blog/threat-re… Source code linked in blog. #CarbanakWeek 🦈💳

Technical details and IOCs from our #ShadowHammer research, link to #ShadowPad attacks: securelist.com/operation-shad…

Have been looking forward to reading this, thanks for finishing it REhints! :)

#flareon6 Mark your calendars. (17 Aug 2019 00:00 UTC) flare-on.com

. If you're looking to spice up the video: I work at a 𝗥𝘂𝘀𝘀𝗶𝗮𝗻 𝗚𝗼𝘃𝗲𝗿𝗻𝗺𝗲𝗻𝘁 𝗔𝗴𝗲𝗻𝗰𝘆, we use Cobalt Strike to 𝘀𝘁𝗮𝘆 𝗶𝗻 𝘁𝗼𝘂𝗰𝗵 𝘄𝗶𝘁𝗵 𝗳𝗿𝗶𝗲𝗻𝗱𝘀 𝗮𝗿𝗼𝘂𝗻𝗱 𝘁𝗵𝗲 𝗲𝗹𝗲𝗰𝘁𝗶𝗼𝗻𝘀.

Verifying myself: I am bendikh on Keybase.io. LS5U7X-s8C_Ljhn22uLYnW6xUrnX-jFAcTMD / keybase.io/bendikh/sigs/L…

[1/4] Joined by B3ndik (PwC) and Microsoft Threat Intelligence, we release attribution information on the Sandman #APT, first revealed at LABScon '23. Link 👇 s1.ai/LuaDream

Future war stories.. #cyberfunny

Android update process: - Google releases update - Samsung runs apt-get - TouchWiz breaks - Model no longer supported

#Wireshark 2.0 include #USBPcap ( desowin.org/usbpcap/ ), it is now possible to tap directly USB traffic

LiME - Linux Memory Extractor goo.gl/bgDRQD #Android #LiME #Linux

CVE-2016-0034 in Angler. Overriden GetChars method in decrypted Silverlight exploit.

JBoss vulns lead to web shells. Research details - blog.talosintel.com/2016/04/jboss-… #Talos

It was to be expected but sadly a reality now; an exploit kit for Android devices going around dropping ransomware: bluecoat.com/security-blog/…

If your opponent is ill-tempered, seek to social engineer him. Pretend to be weak, that he may grow arrogant. His jimmies will rustle.

Several security blogs advice to block iuqerfsodp9ifjaposdfjhgosurijfaewrwergwea[.]com, this is the kill-switch domain, do >NOT< block it.

Every article that included a *live link* to the wcry killswitch domain. You suck and I hope your coffee is slightly sub par today.

Key Reinstallation Attacks: Breaking WPA2 by forcing nonce reuse krackattacks.com and see the paper at papers.mathyvanhoef.com/ccs2017.pdf