Telegram Analytics

TGStat хизмати янгиликларидан бохабар бўлиш учун обуна бўл!

SearcheeBot

Telegram-каналлар оламидаги сизнинг йўлбошчингиз.

TGAlertsBot

Каналингиз репостлари ва эсловлари ҳақида хабар беради.

Statistika Saralanganlar

Sys-Admin InfoSec

@sysadm_in_channel

Kanal geosi va tili: Butun dunyo, Inglizcha

Toifa: Texnologiyalar

News of cybersecurity / information security, information technology, data leaks / breaches, cve, hacks, tools, trainings
* Multilingual (En, Ru).
* Forum - forum.sys-adm.in
* Chat - @sysadm_in
* Job - @sysadm_in_job
* ? - @sysadminkz

Связанные каналы | Похожие каналы

Kanal geosi va tili

Butun dunyo, Inglizcha

Toifa

Texnologiyalar

Statistika

Postlar filtri

O‘chirilganlarni yashirish

Repostlarni yashirish

Sys-Admin InfoSec

17 Jan, 20:53

One Mikro Typo: How a simple DNS misconfiguration enables malware delivery botnet

This botnet uses a global network of Mikrotik routers to send malicious emails that are designed to appear to come from legitimate domains..:

https://blogs.infoblox.com/threat-intelligence/one-mikro-typo-how-a-simple-dns-misconfiguration-enables-malware-delivery-by-a-russian-botnet/

How A Large-Scale Russian Botnet Operation Stays Under the Radar

Russian threat actors combine domain name vulnerabilities with hidden router proxy techniques to scale their attacks while remaining shielded from detection.

720 1 6

Sys-Admin InfoSec

17 Jan, 10:13

The great Google Ads heist: criminals ransack advertiser accounts via fake Google ads

https://www.malwarebytes.com/blog/news/2025/01/the-great-google-ads-heist-criminals-ransack-advertiser-accounts-via-fake-google-ads

The great Google Ads heist: criminals ransack advertiser accounts via fake Google ads

An ongoing malvertising campaign steals Google advertiser accounts via fraudulent ads for Google Ads itself.

1k 1 1 1

Sys-Admin InfoSec

15 Jan, 19:14

Console Chaos: A Campaign Targeting Publicly Exposed Management Interfaces on Fortinet FortiGate Firewalls

https://arcticwolf.com/resources/blog/console-chaos-targets-fortinet-fortigate-firewalls/

Console Chaos: A Campaign Targeting Publicly Exposed Management Interfaces on Fortinet FortiGate Firewalls - Arctic Wolf

Arctic Wolf Labs identified a campaign targeting Fortinet FortiGate firewall devices with exposed management interfaces.

1.2k 1 1

Sys-Admin InfoSec

15 Jan, 05:30

Analyzing CVE-2024-44243, a macOS System Integrity Protection bypass through kernel extensions

https://www.microsoft.com/en-us/security/blog/2025/01/13/analyzing-cve-2024-44243-a-macos-system-integrity-protection-bypass-through-kernel-extensions/

Analyzing CVE-2024-44243, a macOS System Integrity Protection bypass through kernel extensions | Microsoft Security Blog

Microsoft discovered a macOS vulnerability allowing attackers to bypass System Integrity Protection (SIP) by loading third party kernel extensions, which could lead to serious consequences, such as allowing attackers to install rootkits, create persistent malware, bypass Transparency, Consent, and C...

1.4k 1 2

Sys-Admin InfoSec

9 Jan, 16:55

Sys-Admin Up dan repost

Phishing vs Real - Red flags 🚩

2k 0 18 3

Sys-Admin InfoSec

8 Jan, 08:26

99.999999% probability AI will end humanity.

Vitalik Buterin proposes a "global soft pause button" to cut AI computing power by 90-99% for 1-2 years — giving ample time to prepare for potential existential doom

Fully agree. Scynet coming:

https://www.windowscentral.com/software-apps/vitalik-buterin-proposes-a-global-soft-pause-button-to-cut-ai

Vitalik Buterin proposes a "global soft pause button" to cut AI computing power by 90-99% for 1-2 years — giving ample time to prepare for potential existential doom

Ethereum's co-founder recommends a soft pause to establish control over the rapid advancement of AI and potential catastrophic harm.

2.3k 1 18

Sys-Admin InfoSec

6 Jan, 19:02

Inside FireScam : An Information Stealer with Spyware Capabilities

This report explores the mechanics of FireScam, a sophisticated Android malware masquerading as a Telegram Premium app. Through in-depth analysis, authors aim to shed light on its distribution methods, operational features, and the broader implications of its malicious activities.

The findings highlight the malware’s capabilities and the critical need for robust security measures to counteract such threats..:

https://www.cyfirma.com/research/inside-firescam-an-information-stealer-with-spyware-capabilities/

Inside FireScam : An Information Stealer with Spyware Capabilities - CYFIRMA

Executive Summary At CYFIRMA, we are dedicated to providing current insights into prevalent threats and the strategies employed by malicious...

2.1k 1 1 1

Sys-Admin InfoSec

25 Dec 2024, 16:32

Weaponizing WDAC: Killing the Dreams of EDR

Windows Defender Application Control (WDAC) is a technology introduced with and automatically enabled by default on Windows 10+ and Windows Server 2016+ that allows organizations fine grained control over the executable code that is permitted to run on their Windows machines...:

https://beierle.win/2024-12-20-Weaponizing-WDAC-Killing-the-Dreams-of-EDR/

Weaponizing WDAC: Killing the Dreams of EDR

2.7k 1 7 1

Sys-Admin InfoSec

23 Dec 2024, 13:53

PentestGPT – A ChatGPT Powered Automated Penetration Testing Tool

https://gbhackers.com/pentestgpt/

PentestGPT - ChatGPT Powered Automated Pentesting Tool

new ChatGPT-powered Penetration testing Tool called "PentestGPT" that helps penetration testers to automate their pentesitng operations.

2.9k 1 49

Sys-Admin InfoSec

17 Dec 2024, 13:54

DeceptionAds — Fake Captcha Driving Infostealer Infections and a Glimpse to the Dark Side of Internet Advertising

The Fake-Captcha Lumma Stealer Campaign

https://labs.guard.io/deceptionads-fake-captcha-driving-infostealer-infections-and-a-glimpse-to-the-dark-side-of-0c516f4dc0b6

2.9k 1 5

Sys-Admin InfoSec

11 Dec 2024, 19:38

Compromises Critical Digital Infrastructure via Visual Studio Code Tunnels

https://www.sentinelone.com/labs/operation-digital-eye-chinese-apt-compromises-critical-digital-infrastructure-via-visual-studio-code-tunnels/

Operation Digital Eye | Chinese APT Compromises Critical Digital Infrastructure via Visual Studio Code Tunnels

Threat actors abused Visual Studio Code and Microsoft Azure infrastructure to target large business-to-business IT service providers in Southern Europe.

3.1k 1 5

Sys-Admin InfoSec

9 Dec 2024, 13:06

Meeten Malware: A Cross-Platform Threat to Crypto Wallets on macOS and Windows

https://www.cadosecurity.com/blog/meeten-malware-threat

Meeten Malware: A Cross-Platform Threat to Crypto Wallets on macOS and Windows

Cado Security Labs details the discovery of a new cross-platform information stealer malware dubbed "Meeten" targeting macOS and Windows users.

2.5k 1 5

Sys-Admin InfoSec

2 Dec 2024, 17:44

Sys-Admin Up dan repost

LogoFAIL Exploited to Deploy Bootkitty, the first UEFI bootkit for Linux

https://www.binarly.io/blog/logofail-exploited-to-deploy-bootkitty-the-first-uefi-bootkit-for-linux

LogoFAIL Exploited to Deploy Bootkitty, the first UEFI bootkit for Linux

Binarly researchers find a direct connection between the newly discovered Bootkitty Linux bootkit and exploitation of the LogoFAIL image parsing vulnerabilities reported more than a year ago

2.7k 0 3

Sys-Admin InfoSec

2 Dec 2024, 08:59

SpyLoan: A Global Threat Exploiting Social Engineering

https://www.mcafee.com/blogs/other-blogs/mcafee-labs/spyloan-a-global-threat-exploiting-social-engineering/

SpyLoan: A Global Threat Exploiting Social Engineering | McAfee Blog

Authored by: Fernando Ruiz The McAfee mobile research team recently identified a significant global increase of SpyLoan, also known as predatory

2.4k 1 3

Sys-Admin InfoSec

26 Nov 2024, 14:01

IT workers masquerade as individuals from different countries to perform legitimate IT work and hack employers, focus areas are:

- Stealing money or cryptocurrency
- Stealing information pertaining to weapons systems, sanctions information, and policy-related decisions
- Performing IT work to generate revenue to help fund various activities

About of masquerading, social engeneering and not only:

https://www.microsoft.com/en-us/security/blog/2024/11/22/microsoft-shares-latest-intelligence-on-north-korean-and-chinese-threat-actors-at-cyberwarcon/

Microsoft shares latest intelligence on North Korean and Chinese threat actors at CYBERWARCON | Microsoft Security Blog

At CYBERWARCON 2024, Microsoft Threat Intelligence analysts will share research and insights on North Korean and Chinese threat actors representing years of threat actor tracking, infrastructure monitoring and disruption, and their attack tooling.

2.9k 1 4

Sys-Admin InfoSec

25 Nov 2024, 10:34

When Guardians Become Predators: How Malware Corrupts the Protectors

https://www.trellix.com/blogs/research/when-guardians-become-predators-how-malware-corrupts-the-protectors/

When Guardians Become Predators: How Malware Corrupts the Protectors

We often trust our security software to stand as an unbreakable wall against malware and attacks, but what happens when that very wall is weaponized against us?

2.2k 1 4

Sys-Admin InfoSec

22 Nov 2024, 12:32

2000+ Palo Alto Firewalls Hacked Exploiting New Vulnerabilities

https://cybersecuritynews.com/2000-palo-alto-firewalls-hacked/

2000+ Palo Alto Firewalls Hacked Exploiting New Vulnerabilities

Over 2,000 Palo Alto Networks firewalls have been compromised in a widespread attack exploiting recently patched vulnerabilities.

2.6k 1 11

Sys-Admin InfoSec

22 Nov 2024, 05:57

CWE Top 25 Most Dangerous Software Weaknesses from MITRE

https://cwe.mitre.org/top25/

list items:
- https://cwe.mitre.org/top25/archive/2024/2024_cwe_top25.html

CWE - CWE Top 25 Most Dangerous Software Weaknesses

Common Weakness Enumeration (CWE) is a list of software and hardware weaknesses.

2.4k 1 12

Sys-Admin InfoSec

21 Nov 2024, 11:25

Ghost Tap: New cash-out tactic with NFC Relay

https://www.threatfabric.com/blogs/ghost-tap-new-cash-out-tactic-with-nfc-relay

Ghost Tap: New cash-out tactic with NFC Relay

ThreatFabric analysts have discovered Ghost Tap: a new cash-out tactic involving relaying of NFC traffic that is actively abused by threat actors.

2.6k 1 9 1

Sys-Admin InfoSec

20 Nov 2024, 15:09

Sys-Admin Up dan repost

ModeLeak: Privilege Escalation to LLM Model Exfiltration in Vertex AI

https://unit42.paloaltonetworks.com/privilege-escalation-llm-model-exfil-vertex-ai/

ModeLeak: Privilege Escalation to LLM Model Exfiltration in Vertex AI

New research reveals two vulnerabilities in Google's Vertex AI that may lead to privilege escalation or data theft through custom jobs or malicious models. New research reveals two vulnerabilities in Google's Vertex AI that may lead to privilege escalation or data theft through custom jobs or malici...

1.9k 0 4

20 ta oxirgi post ko‘rsatilgan.

11 946

obunachilar

Kanal statistikasi

Kanalda mashhur

PentestGPT – A ChatGPT Powered Automated Penetration Testing Tool https://gbhackers.com/pentestgpt/

Weaponizing WDAC: Killing the Dreams of EDR Windows Defender Application Control (WDAC) is a tec...

99.999999% probability AI will end humanity. Vitalik Buterin proposes a "global soft pause butto...

Inside FireScam : An Information Stealer with Spyware Capabilities This report explores the mech...

Phishing vs Real - Red flags 🚩