You might be interested in …

Daily NCSC-FI news followup 2020-12-16

SunBurst: the next level of stealth blog.reversinglabs.com/blog/sunburst-the-next-level-of-stealth SolarWinds compromise exploited through sophistication and patience. ReversingLabs’ research into the anatomy of this supply chain attack unveiled conclusive details showing that Orion software build and code signing infrastructure was compromised. The source code of the affected library was directly modified to include malicious backdoor code, which was […]

Read More

[BleepingComputer] Watch out for new malware campaign”s ‘Windows 11 Alpha’ attachment

Relying on a simple recipe that has proved successful time and time again, threat actors have deployed a malware campaign recently that used a Windows 11 theme to lure recipients into activating malicious code placed inside Microsoft Word documents. […] Source: Read More (BleepingComputer)

Read More

[SANS ISC] Sysinternals: Autoruns and Sysmon updates, (Sun, Oct 31st)

All posts, Sans-ISC

Minor updates to Autoruns and Sysmon were published: Autoruns v14.06 This Autoruns release fixes a crash happening for scheduled tasks containing spaces.   Sysmon v13.30 This Sysmon update adds user fields for events, fixes a series of crash-causing bugs – for example with the Visual Studio debugger – and improves memory usage and management in […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.