The end of Empire. #cybersec
Development stops on PowerShell Empire framework after project reaches its goal. https://www.zdnet.com/article/development-stops-on-powershell-empire-framework-after-project-reaches-its-goal/
Ok, #BLUEKEEP (CVE-2019-0708) in Immunity #Canvas now. When to expect in #CobaltStrike?
Metasploit RCE. No, not a module. RCE in Metasploit itself.
Go patch if you haven’t already.
#Dataleak from the Russian "0day" cybersec company that tried to sell the solution to #Telegram blocking
#APT34 / #OilRig / #HelixKitten hacking tools and victim data leaked. https://dobergroup.org.ua/content/1547031/oilrig-apt34-hacking-tools-and-victim-data-l/
So far, this post from Black Hills has been helpful: https://www.blackhillsinfosec.com/build-c2-infrastructure-digital-ocean-part-1/
Reverse engineer and review the Gamaredon Group Pteranodon Implant (including its batch scripts and decoding mechanism)
Hacker's story: https://pastebin.com/3rzCqrFk
crosspost from @matrix since their instance is currently down:
the security maintenance is to address issues with Matrix.org's production infrastructure. This is not a Synapse issue.
Citrix hackers may have stolen six terabytes worth of files.
EU Radio Lockdown Directive