Even Ivanti don’t use Ivanti

So true...

GitHub - h4x0r-dz/CVE-2024-21762: out-of-bounds write in Fortinet FortiOS CVE-2024-21762 vulnerability - github.com/h4x0r-dz/CVE-2…

Interesting: As many know, Palo-Alto OS is U.S. gov. approved for use in some classified networks. As such, U.S. gov contracted labs periodically evaluate PAN-OS for the presence of easy to exploit vulnerabilities. So how did that process miss a bug like 2024-3400? Well...

Ukrainian Blackjack group used ICS malware Fuxnet against Russian targets securityaffairs.com/161865/hacking…

Observed several LATAM banks (CL,AR,CO,BR) vulnerable to this!!! Also, IT providers! #csirt #ir #checkpoint CVE-2024-24919 Germán Fernández labs.watchtowr.com/check-point-wr…

🛡️Protecting Tier 0 the Modern Way🛡️ New Microsoft article on evolving Tier 0 protection strategies! Learn how to secure your most critical assets from today's sophisticated threats. #Cybersecurity #ZeroTrust #Tier0Protection 🔗 buff.ly/3YUQtzz

🍊#OrangeCon is SOLD OUT! 🍊 But don't worry — Track 1 will be LIVESTREAMED! 🎥 Can’t make it in person? Squeeze in some time and catch all the juicy #cybersecurity insights online: youtube.com/live/A0omwHdoL…

Really enjoyed OrangeCon last week. Well organised and good to see a lot of familiair faces. You can watch my presentation about threat intel and OT security testing here: youtu.be/y-zb450CSks?si…

The slides from the talks and workshops at #OrangeCon2024 are now available! Check them out here: orangecon.nl/slides

Friendly reminder I have created what I (non-humbly) consider the greatest SQL injection cheatsheet of all time: tib3rius.com/sqli Unlike others, it contains payloads for 5 main database variants, and doesn't use weird quote chars (IYKYK 👀).

Console Chaos: A Campaign Targeting Publicly Exposed Management Interfaces on Fortinet FortiGate Firewalls | by Arctic Wolf Vendors should do more to prevent publicly exposed management interfaces arcticwolf.com/resources/blog…

Orangecon CFP has opened: we are looking for talks and workshop proposals. Please share your research! The deadline for submissions is 2025-07-31 23:59 (UTC). FYI: for talks we're primarily looking for new and original content. For workshops we're in search of 1-2 hour

Interesting CTI report by SentinelLabs worth checking out 💡 “This report highlights a rarely-discussed but crucially important attack surface: security vendors themselves” sentinelone.com/labs/top-tier-…

At NCSC UK today we released two malware reports: UMBRELLA STAND: Malware targeting Fortinet devices with report, STIX, Yara & IoCs SHOE RACK: A post-exploitation tool for remote shell access & TCP tunnelling through a victim device along with Yara ncsc.gov.uk/section/keep-u…

Session keys and passwords aplenty, here’s our deep-dive for CVE-2025-5777, aka CitrixBleed 2. Apart from the normal root-cause analysis, we’ve doubled down on actionable steps to investigate Indicators of Compromise. horizon3.ai/attack-researc…

New XINTRA course‼️ Advanced IIS Post Exploitation, Detection & Evasion Modern APT groups are actively weaponizing ToolShell and fileless IIS tradecraft to compromise Exchange, SharePoint, ASP workloads. If your detection and response capabilities lag exposure, this course

A war foretold: how the CIA and MI6 got hold of Putin’s Ukraine plans and why nobody believed them theguardian.com/world/ng-inter…