Metasploit RCE. No, not a module. RCE in Metasploit itself.
Go patch if you haven’t already.
#Dataleak from the Russian "0day" cybersec company that tried to sell the solution to #Telegram blocking
#APT34 / #OilRig / #HelixKitten hacking tools and victim data leaked. https://dobergroup.org.ua/content/1547031/oilrig-apt34-hacking-tools-and-victim-data-l/
So far, this post from Black Hills has been helpful: https://www.blackhillsinfosec.com/build-c2-infrastructure-digital-ocean-part-1/
Reverse engineer and review the Gamaredon Group Pteranodon Implant (including its batch scripts and decoding mechanism)
Hacker's story: https://pastebin.com/3rzCqrFk
crosspost from @matrix since their instance is currently down:
the security maintenance is to address issues with Matrix.org's production infrastructure. This is not a Synapse issue.
Citrix hackers may have stolen six terabytes worth of files.
EU Radio Lockdown Directive
#Splunk will no longer be selling software and services to organizations in #Russia - either directly or through partners.