Barbara

💡Discover the latest insights on #BulletproofHosting (BPH) services in Russian cybercrime forums XSS & Exploit by OWN-CERT. 📖 We delve into the diversity of these services, analyze cybercriminal opinions, and profile two providers: "Alpha" (professional business) and "Beta" (run by friends). own.security/ressources/blo… #Cybersecurity #Cybercrime #Infosec #ThreatIntelligence

@MissyElliott @ciara @BustaRhymes @Timbaland @MissyElliott I can’t find the date for Paris or Europe 😔

🚨”OUT OF THIS WORLD”TOUR across NORTH AMERICA!!!! With my fam @ciara @BustaRhymes & my bro @timbaland The Spaceship will be Landing at an ARENA NEAR YOU🫵🏾 RUN 4 COVER!🛸👽🚀🏃🏾‍♀️🏃🏾🔥🔥🔥 PRE SALE starts this THURSDAY 10 am Local time ticketmaster.com/missy-elliott-…

⚫ Mort de l'écrivaine Maryse Condé à 90 ans : retour sur sa vie sans fards 👉 Elle a rendu son dernier souffle dans la nuit de lundi 1er au mardi 2 avril. La 1ère revient sur la vie de l’écrivaine guadeloupéenne la plus célèbre de sa génération 📱💻 la1ere.francetvinfo.fr/mort-de-l-ecri…

🤯 The level of sophistication of the XZ attack is very impressive! I tried to make sense of the analysis in a single page (which was quite complicated)! I hope it helps to make sense of the information out there. Please treat the information "as is" while the analysis progresses! 🧐 #infosec #xz

🎯 #CTI Spotted : a new malicious exe "Myanmar Ethnic Army Report.exe" (c27a33fda1f7edfe5c7b6d9b4589e2fce68f79a4f7d208ab58f154aee74ca122) dropping #ToneShell "libglib-2.0-0.dll" (909364fec2a37e2b9ba92aafcec51849710f8a54b3431ff9f043bc410c929e74) & communicating w/ 146.19.254[.]124

🧵#ThreatIntelligence #CTI #MustangPanda OWN-CERT has detected a new malicious sample probably linked to Mustang Panda, named "Talking_Points_for_China.zip" (a16a40d0182a87fc6219693ac664286738329222983bd9e70b455f198e124ba2).

« La menace existentielle pour la France reste la désinformation », entretien avec l’ancien chef de la cyberdéfense militaire ➡️ l.numerama.com/fsp

🧵#Forensic #Rhysida #Decryptor #Thread A research paper "A Method for Decrypting Data Infected with Rhysida Ransomware " was published last week about flaw inside the ransomware Rhysida encryptor allowing to create a Windows decryption tool to recover files.

🧵#Forensic #Thread Last week, #Gitlab released a security update, 16.7.2, 16.6.4, 16.5.6, for Community and Enterprise edition to fix multiple #vulnerabilities. CVE-2023-7028, allows an account takeover by using the reset password feature w/o any interaction of the victim.

🧵On the 27/10, OWN-CERT detected a suspicious archive which seems to target the #cryptocurrency/#finance sector, also published by @ginkgo_g. This activity is likely linked to #APT #DarkHotel due to the use of the malware #Ramsay. Here are a few more details #CTI #ThreatIntel

🚨9 OCT Israel-Palestine #cybertracker 🚨 Current visible cyber landscape. A large group targeting #Israel - almost all these groups have been doing it for years. Current baseline , but will evolve. For awareness - report to follow #cybersecurity #infosec #IsraelPalestineWar

#ESETresearch uncovered a #Lazarus attack against an aerospace company in 🇪🇸, deploying several tools, most notably a publicly undocumented and sophisticated RAT we named LightlessCan. The attack is part of Operation DreamJob. @pkalnai welivesecurity.com/en/eset-resear… 1/6

🧐 @SSSCIP has analyzed and explored #cyber threats by russian #hacking groups in 2022 and the first half of 2023 as well as shifts in the cybercriminals’ behavior👇 🌐 bit.ly/3RAxOFp #cybercrime #cyberattack #hacker #cybersecurity #spy #cyberwar #hybridwar

ANSSI/CERT-FR published on the #FIN12 intrusion set, following a university hospital extortion attempt (successfully prevented) in March 2023 cert.ssi.gouv.fr/uploads/CERTFR… (French, PDF) #cybercrime

Intrinsec CTI's team is investigating an ongoing 📷#Bumblebee campaign spreading via Html smuggling downloading RAR archive with European Central Bank PDF lure and folder containing Bumblebee EXE payload.

Very interesting project for incident response investigation. It's a compilation of questions an investigator might pose during an incident! There are also some examples scenarios🧐 #DFIR #infosec 👉dfiq.org

Cyber Threat Intelligence- What is the Impact of Information Disclosures on an Adversary’s Operations? - sipa.columbia.edu/sites/default/…

We just published new research on an adversary conducting several campaigns against government entities, military organizations and civilian users in #Ukraine and #Poland. These campaigns primarily start with #spam emails and malicious Office attachments cs.co/6013P3RD1

As @Mandiant digs into ties btwn Russian disruptive and "hacktivist" actors conducting operations in Ukraine, we've seen technical and strategic patterns emerge. We outline these patterns during wartime in the GRU Disruptive Playbook. mandiant.com/resources/blog…

@felixaime Toutes mes condoléances Félix.

I’m still looking for a contact at the @USAmbFrance. My two parents died yesterday in a car accident and my brother is working in the US with an expired visa. I would like to know if it’s possible for him to attend to the ceremony in FR and came back to the US… ❤️