security research – Threat Note

From Security Week – Details Emerge on CVE Controversy Around Exploited CrushFTP Vulnerability

[[{"value":"Two CVEs now exist for an actively exploited CrushFTP vulnerability and much of the security industry is using the ‘wrong one’. The post Details Emerge on CVE Controversy Around Exploited…

shaikh Saqib April 3, 2025

News

From Cyber Security News – New Sophisticated Malware CoffeeLoader Bypasses Endpoint Security to Deploy Rhadamanthys Shellcode

Cybersecurity researchers have uncovered a sophisticated new malware strain targeting macOS systems, dubbed “CoffeeLoader,” which employs advanced techniques to bypass endpoint security solutions and deliver Rhadamanthys shellcode payloads. The malware…

shaikh Saqib March 27, 2025

News

From Dark Reading – Student-Powered SOCs Train Security’s Next Generation

University security operations centers that hire and train students are a boon to state and local governments while giving much-needed Tier 1 cybersecurity training to undergraduates. Read More

shaikh Saqib March 27, 2025

News

From The Hacker News – Hackers Repurpose RansomHub’s EDRKillShifter in Medusa, BianLian, and Play Attacks

A new analysis has uncovered connections between affiliates of RansomHub and other ransomware groups like Medusa, BianLian, and Play. The connection stems from the use of a custom tool that's designed to disable endpoint detection and response (EDR) software on compromised hosts, according to ESET. The EDR killing tool, dubbed EDRKillShifter, was first documented as used by RansomHub actors in

shaikh Saqib March 27, 2025

News

From Security Week – SpecterOps Scores $75M Series B to Scale BloodHound Enterprise Platform

[[{"value":"SpecterOps has raised an unusually large $75 million Series B funding round to accelerate the growth of its BloodHound Enterprise platform. The post SpecterOps Scores $75M Series B to Scale…

shaikh Saqib March 5, 2025

News

From Cyber Security News – Hackers Hijacking Access to Cloud-based AI Models With Exposed Keys in 19 Minutes

New research reveals that threat actors are exploiting exposed cloud credentials to hijack enterprise AI systems within minutes of credential leakage. Recent incidents have demonstrated that attackers can compromise large…

shaikh Saqib March 4, 2025

News

From Cyber Security News – Critical MITRE Caldera Vulnerability Let Attackers Execute Remote Code – PoC Released

A critical remote code execution (RCE) vulnerability (CVE-2025–27364) has been identified in all versions of MITRE Caldera prior to commit 35bc06e, exposing systems to potential compromise via unauthenticated attackers. The…

shaikh Saqib February 25, 2025

News

From Cyber Security News – Fluent Bit 0-day Vulnerabilities Exposes Billions of Production Environments to Cyber Attacks

Researchers uncovered critical zero-day vulnerabilities in Fluent Bit, a ubiquitous logging utility embedded in cloud infrastructure across major providers like AWS, Google Cloud, and Microsoft Azure. The flaws tracked as…

shaikh Saqib February 24, 2025

News

From Security Week – New FinalDraft Malware Spotted in Espionage Campaign

[[{"value":"A newly identified malware family abuses the Outlook mail service for communication, via the Microsoft Graph API. The post New FinalDraft Malware Spotted in Espionage Campaign appeared first on SecurityWeek."}]] Read…

shaikh Saqib February 17, 2025

News

From Cyber Security News – PurpleLab – A Free Cybersecurity Lab for Security Teams to Detect, Analyze & Simulate Threats

In a significant step forward for cybersecurity professionals, PurpleLab offers an innovative open-source cybersecurity lab for creating and testing detection rules, simulating logs, and running malware tests. Designed as an…

shaikh Saqib February 17, 2025