TrustedSec | XZ Utils Made Me Paranoid
https://trustedsec.com/blog/xz-utils-made-me-paranoid
China-Linked Hackers Used ROOTROT Webshell in MITRE Network Intrusion
https://thehackernews.com/2024/05/china-linked-hackers-used-rootrot.html
Devfile file write vulnerability in GitLab - GitLab Security Tech Notes
https://gitlab-com.gitlab.io/gl-security/security-tech-notes/security-research-tech-notes/devfile/
Custom Beacon Artifacts – Rasta Mouse
https://rastamouse.me/custom-beacon-artifacts/
CVE-2024-3661: TunnelVision - How Attackers Can Decloak Routing-Based VPNs For a Total VPN Leak — Leviathan Security Group - Penetration Testing, Security Assessment, Risk Advisory
https://www.leviathansecurity.com/blog/tunnelvision
Russian Operator of BTC-e Crypto Exchange Pleads Guilty to Money Laundering
https://thehackernews.com/2024/05/russian-operator-of-btc-e-crypto.html
APT42 Hackers Pose as Journalists to Harvest Credentials and Access Cloud Data
https://thehackernews.com/2024/05/apt42-hackers-pose-as-journalists-to.html
Office of Public Affairs | U.S. Charges Russian National with Developing and Operating LockBit Ransomware | United States Department of Justice
https://www.justice.gov/opa/pr/us-charges-russian-national-developing-and-operating-lockbit-ransomware
New Case Study: The Malicious Comment
https://thehackernews.com/2024/05/new-case-study-malicious-comment.html
Russian Hacker Dmitry Khoroshev Unmasked as LockBit Ransomware Administrator
https://thehackernews.com/2024/05/russian-hacker-dmitry-khoroshev.html
GitHub - Stuub/CVE-2024-31848-PoC: PoC for Exploiting CVE-2024-31848/49/50/51 - File Path Traversal
https://github.com/Stuub/CVE-2024-31848-PoC
LockBit ransomware admin identified, sanctioned in US, UK, Australia
https://www.bleepingcomputer.com/news/security/lockbit-ransomware-admin-identified-sanctioned-in-us-uk-australia/
Shannen – Darknet Diaries
https://darknetdiaries.com/episode/145
China hacked Ministry of Defence, Sky News learns | Politics News | Sky News
https://news.sky.com/story/china-hacked-ministry-of-defence-sky-news-learns-13130757
US Releases International Cyberspace Strategy - SecurityWeek
https://www.securityweek.com/us-releases-international-cyberspace-strategy/
BetterHelp to pay $7.8 million to 800,000 in health data sharing settlement
https://www.bleepingcomputer.com/news/security/betterhelp-to-pay-78-million-to-800-000-in-health-data-sharing-settlement/
JTAG Hacking with a Raspberry Pi - Introducing the PiFex
https://voidstarsec.com/blog/jtag-pifex
Go Binary Analysis with gftrace | 0xdf hacks stuff
https://0xdf.gitlab.io/2024/05/07/gftrace.html
UK confirms Ministry of Defence payroll data exposed in data breach
https://www.bleepingcomputer.com/news/security/uk-confirms-ministry-of-defence-payroll-data-exposed-in-data-breach/
Formbook Malware Analysis – CyberForensics
https://cyber-forensics.blog/2024/05/06/formbook-analysis/
Akamai to Acquire API Protection Startup Noname Security for $450 Million - SecurityWeek
https://www.securityweek.com/akamai-to-acquire-api-protection-startup-noname-security-for-450-million/
AT&T Launches New Managed Cybersecurity Services Business LevelBlue - SecurityWeek
https://www.securityweek.com/att-launches-new-managed-cybersecurity-services-business-levelblue/
Alexander Vinnik, the operator of BTC-e exchange, pleaded guilty to money laundering
https://securityaffairs.com/162803/cyber-crime/alexander-vinnik-pleaded-guilty.html
CVE-2024-0517 (Out of Bounds Write in V8)
https://cwresearchlab.co.kr/entry/CVE-2024-0517-Out-of-Bounds-Write-in-V8
LockBit leader unmasked: US charges Russian national - Help Net Security
https://www.helpnetsecurity.com/2024/05/07/lockbit-lockbitsupp-unmasked/
Google Simplifies 2-Factor Authentication Setup (It's More Important Than Ever)
https://thehackernews.com/2024/05/google-simplifies-2-factor.html
It’s very hard to opt out of the data nightmare that comes off the lot - Sherwood News
https://sherwood.news/tech/how-to-opt-out-of-the-privacy-nightmare-that-comes-factory-installed-in-new/