FireEye discloses breach, theft of hacking tools

December 21, 2020

Apple targets car production by 2024

reuters.com/article/us-apple-autos-exclusive/exclusive-apple-targets-car-production-by-2024-and-eyes-next-level-battery-technology-sources-idUSKBN28V2PY

December 22, 2020

Hackers believed to have stolen Treasury Department's encryption keys

businessinsider.com/hackers-seem-to-have-stolen-treasury-departments-encryption-keys-2020-12

December 23, 2020

DOSBox Pure

github.com/schellingb/dosbox-pure
youtube.com/watch?v=rHkIz4-SewI

December 23, 2020

The FBI Is Breaking into Encrypted Devices. We’re Suing

aclu.org/news/privacy-technology/the-fbi-is-secretly-breaking-into-encrypted-devices-were-suing/

Seznam.cz, the Czech Republic's leading home-grown web search platform, said on Thursday it had claimed 9.072 billion crowns ($417 million) in damages from Google

techdirt.com/articles/20201218/07211345910/czech-search-engine-seznam-joins-lets-sue-google-fun-seeks-417-million-damages.shtml

Zelda Hit Detection - Behind the Code

youtube.com/watch?v=FBk-QkzMeIk

List of SolarWinds victims slowly growing

bleepingcomputer.com/news/security/solarwinds-hackers-breached-us-treasury-officials-email-accounts/
bleepingcomputer.com/news/security/solarwinds-victims-revealed-after-cracking-the-sunburst-malware-dga/

Cellebrite has claimed that it can decrypt messages from Signal's

bbc.com/news/technology-55412230
signal.org/blog/cellebrite-and-clickbait/

Malware Unpacking Tutorial - How to unpack FlawedAmmyy

youtube.com/watch?v=D1-O19AwW8U

VPN Safe-Inet has been taken down by Europol

europol.europa.eu/newsroom/news/cybercriminals%E2%80%99-favourite-vpn-taken-down-in-global-action

Edited December 23, 2020 by whoknows
adding shits (see edit history)

December 24, 2020

Citrix confirms ongoing DDoS attack impacting NetScaler ADCs

bleepingcomputer.com/news/security/citrix-confirms-ongoing-ddos-attack-impacting-netscaler-adcs/

The Australian government actually set up a Department of Christmas Affairs

zdnet.com/article/the-australian-government-actually-set-up-a-department-of-christmas-affairs/

Telegram's Getting Ads

gizmodo.com/oh-great-telegrams-getting-ads-1845940099

PC DOS Reimagined

pcjs.org/blog/2020/12/22/

Web Authentication Methods Compared

testdriven.io/blog/web-authentication-methods/

Edited December 24, 2020 by whoknows (see edit history)

December 25, 2020

today powered by white wine @ 2015 ( ITA @tonyweb )

src - otondo.com

December 25, 2020

6 hours ago, whoknows said:

today powered by white wine @ 2015 ( ITA @tonyweb )

src - otondo.com

@tonywebmust be drunk on that wine by now lol!

December 27, 2020

Reverse Engineered Google Docs

features.jsomers.net/how-i-reverse-engineered-google-docs/

December 27, 2020

Fun with IP address parsing

blog.dave.tf/post/ip-addr-parsing/

December 30, 2020

SolarWinds - goal was the cloud data

Microsoft also detailed the step by step procedure used by the attackers to gain access to their victims' cloud assets:

Using the compromised SolarWinds DLL to activate a backdoor that enables attackers to remotely control and operate on a device

Using the backdoor access to steal credentials, escalate privileges, and move laterally to gain the ability to create valid SAML tokens using any of two methods:

Stealing the SAML signing certificate (Path 1)

Adding to or modifying existing federation trust (Path 2)

Using attacker-created SAML tokens to access cloud resources and perform actions leading to the exfiltration of emails and persistence in the cloud

bleepingcomputer.com/news/security/microsoft-solarwinds-hackers-goal-was-the-victims-cloud-data/

January 7

The more we learn, the worse it looks

zdnet.com/article/solarwinds-the-more-we-learn-the-worse-it-looks/

January 7

Gained access to thousands of 'US Department of Justice' email accounts

techradar.com/news/solarwinds-hackers-gained-access-to-thousands-of-doj-email-accounts

January 7

JetBrain's TeamCity May Be Entry Point

nytimes.com/2021/01/06/us/politics/russia-cyber-hack.html

January 8

An Update on SolarWinds

blog.jetbrains.com/blog/2021/01/07/an-update-on-solarwinds/

January 12

SUNSPOT: An Implant in the Build Process
https://www.crowdstrike.com/blog/sunspot-malware-technical-analysis/

January 13

Solarwind, Fireeye, Microsoft and Cisco leaks are offered for sale

news.ycombinator.com/item?id=25754895
solarleaks.net

Wednesday at 07:03 PM

Malwarebytes Hit by SolarWinds Attackers

"They are trying to feed the beast, the more power they have, it gives them more tools and capabilities to attack more companies"

threatpost.com/malwarebytes-solarwinds-attackers/163190/

Friday at 09:34 PM

Microsoft shares how SolarWinds hackers evaded detection

bleepingcomputer.com/news/security/microsoft-shares-how-solarwinds-hackers-evaded-detection/
bleepingcomputer.com/news/security/solarwinds-hackers-used-7-zip-code-to-hide-raindrop-cobalt-strike-loader/

Edited Friday at 09:38 PM by whoknows (see edit history)

FireEye discloses breach, theft of hacking tools

Recommended Posts

whoknows 316

Link to post

Top Posters In This Topic

Popular Days

Top Posters In This Topic

Popular Days

Popular Posts

Posted Images

whoknows 316

Link to post

whoknows 316

Link to post

whoknows 316

Link to post

whoknows 316

Link to post

whoknows 316

Link to post

Armour 2

Link to post

whoknows 316

Link to post

whoknows 316

Link to post

whoknows 316

Link to post

whoknows 316

Link to post

whoknows 316

Link to post

whoknows 316

Link to post

whoknows 316

Link to post

deepzero 215

Link to post

whoknows 316

Link to post

whoknows 316

Link to post

whoknows 316

Link to post

Create an account or sign in to comment

Create an account

Sign in