Sy_Ben

262 posts

Sy_Ben

@Sy_Ben

Rennes Katılım Ocak 2012

371 Takip Edilen120 Takipçiler

Sy_Ben retweetledi

is-eqv.bsky.social@is_eqv·13 Mar

People need to drop the "I know that the compiler does"-model and start using the "The compiler is an evil djinn, secretly trying to corrupt your wishes with the moral compass of tobacco industry lawyers"-model of C semantics.

Marcel Böhme👨‍🔬@mboehme_

Me: Let's check if the upcoming addition is undefined behavior and bail out. Compiler: Nah, let's remove that check since it is undefined behavior. research.swtch.com/ub

English

200

19.7K

Sy_Ben retweetledi

SwiftOnSecurity@SwiftOnSecurity·6 Kas

Your IR team on 2 weeks of 4.5hrs of sleep eager to hear about the software development manager who installed a trojanized version of FileZilla from a Google ad

English

111

1.2K

100.7K

Sy_Ben retweetledi

SwiftOnSecurity@SwiftOnSecurity·13 Eki

Attackers compromise multiple game devs and update their games with malware pcgamer.com/steam-malware-…

English

11.9K

Sy_Ben retweetledi

Mandiant (part of Google Cloud)@Mandiant·11 Eki

Our blog on the assessed cyber structure and alignments of North Korea in 2023 is now live! Read more about Mandiant’s findings: mandiant.com/resources/blog… #Cybersecurity #CyberCrime #Espionage

GIF

English

Sy_Ben retweetledi

SwiftOnSecurity@SwiftOnSecurity·14 Eyl

You either deploy adblocking or ransomware

Germán Fernández@1ZRR4H

Watch out for this #DarkGate campaign, quite possibly through Malvertising and using signed MSI files with very low (or zero) detection. #SIGNED "PFO GROUP LLC" Other sites on 154.56.47.156: https://openvpnhub[.]com/ https://angryipscanner[.]net/ https://www.putty-ssh[.]com/ C2: 178.236.247.102 [+] bazaar.abuse.ch/browse/tag/178… https://advancedscannerip[.]com/ C2: 80.66.88.145 [+] bazaar.abuse.ch/browse/tag/80.… Reports by @ULTRAFRAUD and @DonPasci 🙌 More references: malwarebytes.com/blog/threat-in…

English

153

617

221.2K

Sy_Ben retweetledi

Soumith Chintala@soumithchintala·30 Tem

No More GIL! the Python team has officially accepted the proposal. Congrats @colesbury on his multi-year brilliant effort to remove the GIL, and a heartfelt thanks to the Python Steering Council and Core team for a thoughtful plan to make this a reality. discuss.python.org/t/a-steering-c…

English

4.5K

1.4M

Sy_Ben retweetledi

Andrew Oliveau@AndrewOliveau·21 Tem

Good new everyone! MinecraftLauncher.exe is susceptible to DLL sideloading. And YES, it is digitally signed by Mojang. EDRs have no idea what's coming for them😌

English

134

547

80.5K

Sy_Ben retweetledi

rootsecdev@rootsecdev·22 Haz

Good article. This is a large issue that I often catch in penetration tests. It’s also a teams default. 👇 Advisory: IDOR in Microsoft Teams Allows for External Tenants to Introduce Malware | JUMPSEC LABS labs.jumpsec.com/advisory-idor-…

English

129

284

59.6K

Sy_Ben retweetledi

Alexis Rapin@alexis_rapin·26 Şub

Politico publie un (très) long recueil de verbatim d’officiels américains, qui racontent l’inexorable marche vers le conflit en Ukraine. Quelques éléments intéressants par rapport au cyber… (1/8) politico.com/news/magazine/…

Français

21.1K

Sy_Ben retweetledi

thaddeus e. grugq@thegrugq·13 Nis

Fuck IOT. You want shells on the best boxes? Hack games

secret club@the_secret_club

Valve ignoring security researchers is not just specific to the secret club. Here we see Bien Pham demonstrate his Remote Code Execution exploit that has not been patched for over a year.

English

194

Sy_Ben retweetledi

Ankit Anubhav@ankit_anubhav·20 Şub

@pr0xylife @executemalware @ffforward @Cryptolaemus1 @Max_Mal_ @JAMESWT_MHT @1ZRR4H @fr0s7_ @malwarelabnet @Myrtus0x0 At this point Qbot will embedd literally every executable file format inside onenote..

English

1.1K

Sy_Ben retweetledi

BleepingComputer@BleepinComputer·17 Şub

SCOOP: GoDaddy says unknown threat actors have installed malware on its hosting servers and stolen source code after breaching its cPanel shared environment - @serghei bleepingcomputer.com/news/security/…

English

263

377

120.2K

Sy_Ben retweetledi

Elastic Security Labs@elasticseclabs·17 Şub

Check out this thread started by @M_haggis to learn a little more about MITRE technique T1505, which includes malicious IIS modules like SIESTAGRAPH and DOORME!

The Haag™@M_haggis

IIS Backdoors! Let's ride this 🚄! Let's expose 👀these modules and see what we get! Level set what modules are, ship some atomics #AtomicRedTeam down range and dive into how to hunt for modules. The latest Splunk Threat Research blog is out! splunk.com/en_us/blog/sec…

English

1.3K

Sy_Ben retweetledi

SC Media@SCMagazine·16 Şub

A look inside Project Alpha-Omega: a year-long effort to identify and fix vulnerabilities in thousands of open-source projects that quietly power the world's software. #cybersecurity #infosec #ITsecurity bit.ly/3I1DO3t

English

5.2K

Sy_Ben retweetledi

Forbidden Stories@FbdnStories·15 Şub

Derrière le scandale @BFMTV, le projet #StoryKillers qui révèle aujourd’hui l’existence d’une officine de la désinformation. Elle serait impliquée dans la manipulation d’une trentaine d’élections dans le monde ⤵️ forbiddenstories.org/fr/story-kille…

Français

549

763

319.1K

Sy_Ben retweetledi

GitHub@github·6 Şub

To solve code search at GitHub's scale, we built a search engine from scratch in Rust that can run regex searches across 45 million repositories in seconds. Learn how. github.blog/2023-02-06-the…

English

424

2.3K

404K

Sy_Ben retweetledi

Olivier Tesquet@oliviertesquet·6 Şub

Depuis le début de la guerre en Ukraine, Telegram est devenu un canal indispensable en même temps qu'un champ de bataille. Mais le Kremlin a-t-il compromis la sécurité de la messagerie ? C'est ce que semble démontrer cette longue enquête de @WIRED. wired.com/story/the-krem…

Français

14.1K

Sy_Ben retweetledi

VICE@VICE·1 Şub

The 19-year-old neo-Nazi's videos were referenced at least seven times by the man who murdered 10 people at a Buffalo grocery store in May 2022. trib.al/3me5DCX

English

44.9K

Sy_Ben retweetledi

Kostas@Kostastsale·1 Şub

PowerShell is heavily used by your everyday TAs. They use PowerView modules, including ShareFinder. ➡️Is it loud? Heck yea. ➡️Do they get away with it? Most orgs that don't have the means of detecting the initial execution won't be looking for large LDAP queries & SMB scanning.

The DFIR Report@TheDFIRReport

Red teamers this one is for you! Do you use ShareFinder on your engagements? Why or why not? Discuss below

English

32.1K

Sy_Ben retweetledi

Sekoia.io@sekoia_io·31 Oca

🚨 #Ransomware Threat Landscape – second-half 2022 The evolutions within the #ransomware landscape in the second half on 2022, besides its high activity level, emphasise its democratisation at an almost unprecedented level. blog.sekoia.io/sekoia-io-rans…

English

4.6K

Keşfet

@colesbury @pr0xylife @executemalware @ffforward @Cryptolaemus1 @Max_Mal_ @JAMESWT_MHT @1ZRR4H