Microsoft published a blog post concerning the #lazarus campaign we covered last week @volexity. They identified the infection vector: a Telegram group: https://www.microsoft.com/en-us/security/blog/2022/12/06/dev-0139-launches-targeted-attacks-against-the-cryptocurrency-industry/ And thank you for the mention and the link to our post. If you missed it: https://www.volexity.com/blog/2022/12/01/buyer-beware-fake-cryptocurrency-applications-serving-as-front-for-applejeus-malware/
#CTI #threathintel

You know you are doing a good job when you are starting #bindiff for code similarities for your report.
"Let's justify this link between a couple of #malware variants".
#reverse #CTI #threathintel

#threathintel and #osint pros what do you suggest for practicing real world skills? What tools do you use? I am fairly involved in CTFs put on at my university and would like to know ways we could make these types of challenges more real world applicable and not just internet scavenger hunts for potentially obscure bits of information.

#infosec

#bored
no new #ZeroDaysSinceLastDataBreach for this december ?
#threathintel

#bored
no new #ZeroDays for this december ?
#threathintel

Week in #OSINT 2022-44 - by @sector035 - #threathintel
Link: https://start.me/p/wMrA5z/cyber-threat-intelligence
Start.me shared a large list of links, this time targeting the realm of cyber threat intelligence. This page contains sites, reports and news items from a lot of different threat intel companies and contains a wealth of information. A lot of information within this line of work contains open-source information, and I love to learn from other disciplines to enhance my own game. Thank you, Rahmat Nurfauzi (https://twitter.com/infosecn1nja) for collecting these resources!

Week in #OSINT 2022-44 - by @sector035 - #threathintel
Link: https://start.me/p/wMrA5z/cyber-threat-intelligence
Start.me shared a large list of links, this time targeting the realm of cyber threat intelligence. This page contains sites, reports and news items from a lot of different threat intel companies and contains a wealth of information. A lot of information within this line of work contains open-source information, and I love to learn from other disciplines to enhance my own game. Thank you, Rahmat Nurfauzi (https://twitter.com/infosecn1nja) for collecting these resources!