Denonia is a newly discovered type of malware targeting AWS Lambda environments. It was recently exposed by Cado Security, who named it after the domain it communicates with. Once the malware is...

Expel’s SOC detected unauthorized access into one of their customer’s Amazon Web Services (AWS) environments. The attacker used a long-term access key to gain initial access. Once they got in,...

Community Feature - @Ch33r10Curated Intelligence member Xena Olsen (aka @Ch33r10) has shared a useful guide for how CTI analysts can handle dealing with cybersecurity crises on a global scale. The...

Authored by Vallabh Chole and Oliver Devane Scammers are very quick at reacting to current events, so they can generate... The post Scammers are Exploiting Ukraine Donations appeared first on McAfee Blog.

Learn how to address Spring4Shell and CVE-2022-22963 RCE vulnerabilities in cloud environments.

Researcher Jose Bertin described the exploitation of several vulnerabilities in a Tekon-Automatics automation solution. We analyze the real scope of what has happened and offer our take on whether...

Kaspersky ICS CERT received a letter from FIRST, notifying that its membership has been temporarily suspended. Kaspersky is disappointed by this decision and believes that it hurts the...

On 2022-03-28, a campaign was reported, involving Muhstik operator, gaining initial access via ,.

Learn how to harden your cloud environment against LAPSUS$-like threat actors

Assessing the security of network equipment.

According to Microsoft Threat Research, as part of LAPSUS$’s large-scale social engineering and extortion campaigns, they also gained access to several of their targets’ cloud environments.LAPSUS$...

Community Feature - @cPeterrCurated Intelligence member Chuong Dong has recently shared his findings in a blog after reverse engineering the infamous LockBit ransomware family, version 2.0. Most...

Authored by Oliver Devane, Vallabh Chole, and Aayush Tyagi McAfee has recently observed several malicious Chrome Extensions which, once installed,... The post Imposter Netflix Chrome Extension...

I would like to think that you're all smart enough to know better, but just in case... No, there aren't women in Ukraine are keen to have a sexy webcam chat with you right now. But that doesn't...

Disclaimer - Curated Intelligence is a private trust group and members are able to publish their research under our banner without it being attributed to them. We thank our members for their...

The statistical data presented in the report was received from ICS computers protected by Kaspersky products that Kaspersky ICS CERT categorizes as part of the industrial infrastructure at organizations.

Wiz is excited to announce its new integration with ServiceNow Vulnerability Response (VR), creating a combined vulnerability management workflow that eliminates blind spots and prioritizes risks.

Table fo contents Disclaimer: This post will cover basic steps to accomplish a privilege escalation based on a vulnerable driver. The basis for this introduction will be a challenge from the...

This summary provides an overview of APT attacks on industrial enterprises disclosed in H2 2021.

The Curated Intelligence community is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence. Slava...

Learn more about the Chrome notifications on Android mobile devices such as phones and tablets, and how McAfee Mobile Security protects users from malicious sites leveraging these notifications....

Community Feature - @ChicagoCyberA Curated Intelligence APT hunter - Joshua Miller - recently published new intelligence with Proofpoint on TA402 (aka Molerats), a likely Palestinian-aligned...

Community Feature - JCyberSec_Curated Intelligence members - JCyberSec - recently created an enlightening YouTube video analysing phishing kits designed to look like Royal Mail asking for a parcel...

When I got a new MacBook with an M1 Pro chip, I was excited to see the performance benefits. The first thing I did was to fire up hashcat which gave an impressive benchmark speed for NT hashes...

Overview of current GLIBC heap exploitation techniques up to GLIBC 2.34, including their ideas and introduced mitigations along the way

Disclaimer: These are unfiltered study notes mostly for myself. Guaranteed not to be error free. So if you did land here, managed to get to the end of it and found some mistakes just hit me up,...

For each CVE, the Wiz Research team maintains data from multiple threat intelligence sources and our own independent research. Now that we’ve added support for the new CISA KEV catalog, learn how...

Learn how to achieve compliance security at scale with Wiz and RegScale, supporting a variety of compliance framework controls.

Jordan Drysdale // Azure has replaced AWS in my personal development pipeline. This may sound crazy but hear me out. Microsoft has solidified its offerings, done nothing but improve its […] The...

Introduction “533 million Facebook users’ phone numbers leaked” was one of the highlighted titles that flooded many social networks’ pages. The leak that was initially for sale in 2020 has more...