
Sebocat
2.9K posts

Sebocat
@Sebocat
#InfoSec #Bluehat #SystemEngineer - loves #Deep #Tech #House #Techno Mastodon: https://t.co/sTwkVKFJMV






Fun fact about the Adobe Reader 0day: actually, it's the "AdobeCollabSync.exe" ("C:\Program Files\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe") process who communicates to the attacker-controller server, not the "Acrobat.exe". Therefore, if you're hunting the threat with your e.g EDR telemetry, you may want to look at that "AdobeCollabSync.exe" process too. #threatintel






You can manage browser extensions with Intune browser policies, RBI solutions, ZTNA/SASE solutions, SSPMs, and other places. Theres really not a good reason why malicious browser extensions should be an issue, yet here we are :p




'The incident began from June 2025. Multiple independaent security researchers have assessed that the threat acotor is likely a Chinese state-sponsored group, which would explain the highly selective targeting obseved during the campaign.' #NotepadPlusPlus #Notepad #Compromised #Cyber #Incident








Some claim that Security Chips are the best thing since sliced bread. But it's actually a new instrument of control that eliminates privacy and dictates what you can do with your tech. This video is a detailed tech dive. youtube.com/watch?v=t1eX_v…







@techspence and with that said, unless they did something radically wrong, it still probably made getting an initial foothold from outside a real PITA. Awesome that they had it deployed, and sometimes, when doing in flight engine repair, can't let perfect be the enemy of running in prod



