blueteamsec

483 readers
44 users here now

For [Blue|Purple] Teams in Cyber Defence - covering discovery, detection, response, threat intelligence, malware, offensive tradecraft and tooling, deception, reverse engineering etc.

founded 2 years ago
MODERATORS
digicat@infosec.pub
listing: all - local
1
5
CTO at NCSC Summary: week ending September 7th (ctoatncsc.substack.com)
submitted 3 days ago by digicat@infosec.pub to c/blueteamsec@infosec.pub
0 comments fedilink
2
4
Security means securing people where they are (blog.yossarian.net)
submitted 1 hour ago by Diluvian@infosec.pub to c/blueteamsec@infosec.pub
0 comments fedilink
3
4
Blurring the Lines: Intrusion Shows Connection With Three Major Ransomware Gangs (thedfirreport.com)
submitted 1 hour ago by digicat@infosec.pub to c/blueteamsec@infosec.pub
0 comments fedilink
4
3
Autonomous NodeZero Breaches GOAD via AD Misconfigurations (horizon3.ai)
submitted 3 hours ago by digicat@infosec.pub to c/blueteamsec@infosec.pub
0 comments fedilink
5
1
FANCY BEAR GONEPOSTAL – Espionage Tool Provides Backdoor Access to Microsoft Outlook (www.kroll.com)
submitted 10 hours ago by digicat@infosec.pub to c/blueteamsec@infosec.pub
0 comments fedilink
6
1
Break The Protective Shell Of Windows Defender With The Folder Redirect Technique (www.zerosalarium.com)
submitted 10 hours ago by digicat@infosec.pub to c/blueteamsec@infosec.pub
0 comments fedilink
7
5
APT37: Rust Backdoor & Python Loader (www.zscaler.com)
submitted 15 hours ago by digicat@infosec.pub to c/blueteamsec@infosec.pub
0 comments fedilink
8
4
npm debug and chalk packages compromised (www.aikido.dev)
submitted 15 hours ago by digicat@infosec.pub to c/blueteamsec@infosec.pub
0 comments fedilink
9
2
H1 2025 Malware and Vulnerability Trends (www.recordedfuture.com)
submitted 15 hours ago by digicat@infosec.pub to c/blueteamsec@infosec.pub
0 comments fedilink
10
1
Windows Internals: Secure Calls - The Bridge Between The NT Kernel and Secure Kernel (connormcgarr.github.io)
submitted 15 hours ago by digicat@infosec.pub to c/blueteamsec@infosec.pub
0 comments fedilink
11
3
Salt Typhoon and UNC4841: New Domains; Urges Defenders to Check Telemetry and Log Data (www.silentpush.com)
submitted 20 hours ago by digicat@infosec.pub to c/blueteamsec@infosec.pub
0 comments fedilink
12
5
From CVE Entries to Verifiable Exploits: An Automated Multi-Agent Framework for Reproducing CVEs (arxiv.org)
submitted 1 day ago by digicat@infosec.pub to c/blueteamsec@infosec.pub
1 comments fedilink
13
13
Qantas cyber attack: Chief executive punished with $278k pay cut (www.nzherald.co.nz)
submitted 2 days ago by digicat@infosec.pub to c/blueteamsec@infosec.pub
2 comments fedilink
14
2
Microsoft Azure services disrupted by Red Sea cable cuts (www.bbc.com)
submitted 1 day ago by digicat@infosec.pub to c/blueteamsec@infosec.pub
0 comments fedilink
15
1
«Плановое мероприятие»: в «КазМунайГазе» отрицают атаку российских хакеров - "Planned event": KazMunaiGas denies attack by Russian hackers - mistook a "planned security check" for a cyberattack. (orda.kz)
submitted 1 day ago by digicat@infosec.pub to c/blueteamsec@infosec.pub
0 comments fedilink
16
6
Reverse engineering of Apple's iOS 0-click CVE-2025-43300: 2 bytes that make size matter (blog.quarkslab.com)
submitted 1 day ago by digicat@infosec.pub to c/blueteamsec@infosec.pub
0 comments fedilink
17
3
Bells Ringing in Dar es Salaam | Chollima Group (chollima-group.io)
submitted 1 day ago by digicat@infosec.pub to c/blueteamsec@infosec.pub
0 comments fedilink
18
2
Update on Mandiant Drift and Salesloft Application Investigations (trust.salesloft.com)
submitted 1 day ago by digicat@infosec.pub to c/blueteamsec@infosec.pub
0 comments fedilink
19
5
VulnRepairEval: An Exploit-Based Evaluation Framework for Assessing Large Language Model Vulnerability Repair Capabilities (arxiv.org)
submitted 2 days ago by digicat@infosec.pub to c/blueteamsec@infosec.pub
0 comments fedilink
20
4
Retrieving kernel process object addresses by exploiting a driver providing R/W to physical memory (github.com)
submitted 2 days ago by digicat@infosec.pub to c/blueteamsec@infosec.pub
0 comments fedilink
 
 
21
4
A Playbook for Winning the Cyber War | Intelligence, National Security, and Technology Program | CSIS (www.csis.org)
submitted 2 days ago by digicat@infosec.pub to c/blueteamsec@infosec.pub
0 comments fedilink
22
4
Critical SAP S/4HANA code injection vulnerability (CVE-2025-42957) exploited in the wild (securitybridge.com)
submitted 3 days ago by digicat@infosec.pub to c/blueteamsec@infosec.pub
1 comments fedilink
23
3
New Botnet Emerges from the Shadows: NightshadeC2 (www.esentire.com)
submitted 2 days ago by digicat@infosec.pub to c/blueteamsec@infosec.pub
0 comments fedilink
24
3
The Czech National Cyber and Information Security Agency issues warning about data transfer to and remote administration from China (nukib.gov.cz)
submitted 2 days ago by digicat@infosec.pub to c/blueteamsec@infosec.pub
0 comments fedilink
25
2
dittobytes: Metamorphic cross-compilation of C++ & C-code to PIC, BOF & EXE. (github.com)
submitted 2 days ago by digicat@infosec.pub to c/blueteamsec@infosec.pub
0 comments fedilink
view more: next ›