Cyber Security news for Information Security professionals pulled from the likes of; Krebs on Security, The hacker news, Zero day initiative, SANS, Microsoft, AWS and NCSC.

The DFIR Report

• Confluence Exploit Leads to LockBit Ransomware
  February 24, 2025
  Key Takeaways Case Summary The intrusion started with the exploitation of CVE-2023-22527, a critical remote code execution vulnerability in Confluence, against a Windows server. The […]
• Cobalt Strike and a Pair of SOCKS Lead to LockBit Ransomware
  January 27, 2025
  Key Takeaways Case Summary This intrusion began near the end of January 2024 when the user downloaded and executed a file using the same name […]
• The Curious Case of an Egg-Cellent Resume
  December 2, 2024
  Key Takeaways Private Threat Briefs: Over 20 private DFIR reports annually. Threat Feed: Focuses on tracking Command and Control frameworks like Cobalt Strike, Metasploit, Sliver, etc. […]

Krebs On Security News

• Microsoft: 6 Zero-Days in March 2025 Patch Tuesday
  March 11, 2025
  Microsoft today issued more than 50 security updates for its various Windows operating systems, including fixes for a whopping six zero-day vulnerabilities that are already seeing active exploitation.
• Alleged Co-Founder of Garantex Arrested in India
  March 11, 2025
  Authorities in India today arrested the alleged co-founder of Garantex, a cryptocurrency exchange sanctioned by the U.S. government in 2022 for facilitating tens of billions of dollars in money laundering by transnational criminal and cybercriminal organizations. Sources close to the investigation told KrebsOnSecurity the […]
• Feds Link $150M Cyberheist to 2022 LastPass Hacks
  March 8, 2025
  In September 2023, KrebsOnSecurity published findings from security researchers who concluded that a series of six-figure cyberheists across dozens of victims resulted from thieves cracking master passwords stolen from the password manager service LastPass in 2022. In a court filing this week, U.S. federal […]
• Who is the DOGE and X Technician Branden Spikes?
  March 7, 2025
  At 49, Branden Spikes isn't just one of the oldest technologists who has been involved in Elon Musk's Department of Government Efficiency (DOGE). As the current director of information technology at X/Twitter and an early hire at PayPal, Zip2, Tesla and SpaceX, Spikes is […]
• Notorious Malware, Spam Host “Prospero” Moves to Kaspersky Lab
  February 28, 2025
  One of the most notorious providers of abuse-friendly "bulletproof" web hosting for cybercriminals has started routing its operations through networks run by the Russian antivirus and security firm Kaspersky Lab, KrebsOnSecurity has learned.

The Hacker News

• Popping the Bag
  March 12, 2025
  Article URL: https://unintendedconsequenc.es/popping-the-bag/ Comments URL: https://news.ycombinator.com/item?id=43339970 Points: 1 # Comments: 0
• Tech stacks don't matter. Use what you know and build something first
  March 12, 2025
  When I first started building websites and apps, I searched almost every day for whether I was using the most optimal tech stack.It wasn't until I got used to building products in one, that I realised learning the newest "blazingly fast" framework or switching to […]
• HTML5/Node.js based, client side (E2EE) encrypted instant chat
  March 12, 2025
  Article URL: https://github.com/Hexagon/cryptalk Comments URL: https://news.ycombinator.com/item?id=43339895 Points: 2 # Comments: 0
• Show HN: Get real-time alerts when your keywords are mentioned on HN and Reddit
  March 12, 2025
  I kept missing important discussions happening around topics I cared about.A Reddit thread, an HN post, a tweet or something on LinkedIn by the time I saw them, it was already too late to join the conversation.Google Alerts? Too slow, too many irrelevant results. Manually […]
• Tech Lead ADAS AI native EV startup
  March 12, 2025
  Article URL: https://jobs.gusto.com/postings/third-space-motors-inc-tech-lead-adas-916f586a-bed4-484d-8f8d-ca9b8edda8c9 Comments URL: https://news.ycombinator.com/item?id=43339857 Points: 1 # Comments: 0

NCSC Weekly Threat Reports

• A method to assess 'forgivable' vs 'unforgivable' vulnerabilities
• The near-term impact of AI on the cyber threat
• Organisational use of Enterprise Connected Devices
• The cyber threat to Universities
• The threat from commercial cyber proliferation