HAIJA INTEL REPORT

Here are the slides from our @WEareTROOPERS presentation - "Modern Adventures in Azure Privilege Escalation" This was a fantastic conference and I'm so glad that we finally got to do this. I have a few more thoughts on it in the thread https:// notpayloads.blob.core.windows.net/s

Law enforcement dismantled malware and scam infrastructure, a North Korean macOS implant disrupted AI analysis tools, and attackers exploited two high-severity vulnerabilities in Cisco edge devices. This is the Good, Bad & Ugly. GOOD - Authorities dismantled the Amadey

Great post. If you are at Virus Bulletin, I will be giving a talk aboit this exact topic, how we see threat actors use disposable tooling and what it implies for malware analysts ;) First blog post in a mini series where I look at "disposable tooling". This post shares what I hav

New report out Monday 6/29 by Jake, Dino, Ahmed Farouk, @MittenSec , @angelo_violetti , and @r3nzsec "The threat actor used BumbleBee, AdaptixC2 and RustDesk, in addition to a reverse SSH tunnel to establish connections to their C2 infrastructure."

Latest Bug Bytes is live! This month's issue is as usual packed with bug bounty tips: A 10-year-old pre-auth RCE in phpBB Earning $500K hacking Google with AI Reading any Salesforce Marketing Cloud account's emails New DOMPurify sanitizer bypass Mapping

Chat, I'm flabbergasted. I had a few people DM saying this account is spreading malware. They said the GitHub has a .exe which is suspicious. I poked it with a stick. It is, in fact, NOT malware. https:// gist.github.com/vxunderground/ 380cf9e275817732a1f8bd6a120f2e68 … THIS TOOL

Just after the UK had the same type of campaign… x.com/polymarket/sta…

LLMs can now autonomously generate fully functional Mythic C2 agents from a single prompt. Built, tested, and deployed in under 2 hours. No human in the loop. SpecterOps built a framework called Oracle that takes a prompt, generates the agent code, compiles it, deploys it to a