634 - Trojan Bancário BBTok usa DANFE como mote de ataque

[Referências do Episódio] BBTok Targeting Brazil: Deobfuscating the .NET Loader with dnlib and PowerShell - https://www.gdatasoftware.com/blog/2024/09/38039-bbtok-deobfuscating-net-loader#c235408  SilentSelfie: Uncovering a major watering hole campaign against Kurdish websites - https://blog.sekoia.io/silentselfie-uncovering-a-major-watering-hole-campaign-against-kurdish-websites/  LummaC2: Obfuscation Through Indirect Control Flow - https://cloud.google.com/blog/topics/threat-intelligence/lummac2-obfuscation-through-indirect-control-flow/  Inside the Dragon: DragonForce Ransomware Group - https://www.group-ib.com/blog/dragonforce-ransomware/  Mist: RADIUS Protocol Vulnerability (Blast-RADIUS) (CVE-2024-3596) - https://supportportal.juniper.net/s/article/Mist-RADIUS-Protocol-Vulnerability-Blast-RADIUS-CVE-2024-3596?language=en_US  Cisco Catalyst SD-WAN Routers Denial of Service Vulnerability - https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-utd-dos-hDATqxs Cisco IOS XE Software for Wireless Controllers CWA Pre-Authentication ACL Bypass Vulnerability - https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-c9800-cwa-acl-nPSbHSnA Cisco Catalyst Center Static SSH Host Key Vulnerability - https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dnac-ssh-e4uOdASj Cisco IOS XE Software IPv4 Fragmentation Reassembly Denial of Service Vulnerability - https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cpp-vfr-dos-nhHKGgO  Cisco IOS and IOS XE Software Resource Reservation Protocol Denial of Service Vulnerability - https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rsvp-dos-OypvgVZf  Cisco IOS XE Software Protocol Independent Multicast Denial of Service Vulnerability - https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-pim-APbVfySJ  Cisco IOS Software on Cisco Industrial Ethernet Series Switches Access Control List Bypass Vulnerability - https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-repacl-9eXgnBpD  Cisco IOS and IOS XE Software Web UI Cross-Site Request Forgery Vulnerability - https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-webui-HfwnRgk  Cisco IOS XE Software SD-Access Fabric Edge Node Denial of Service Vulnerability - https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-xe-sda-edge-dos-MBcbG9k Cisco IOS XE Software Web UI Cross-Site Request Forgery Vulnerability - https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-webui-csrf-ycUYxkKO  Cisco IOS XE Software HTTP Server Telephony Services Denial of Service Vulnerability - https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-httpsrvr-dos-yOZThut  Cyberespionage the Gamaredon way: Analysis of toolset used to spy on Ukraine in 2022 and 2023 - https://web-assets.esetstatic.com/wls/en/papers/white-papers/cyberespionage-gamaredon-way.pdf  From 12 to 21: how we discovered connections between the Twelve and BlackJack groups - https://securelist.com/blackjack-hacktivists-connection-with-twelve/113959/  Roteiro e apresentação: Carlos Cabral e Bianca Oliveira Edição de áudio: Paulo Arruzzo Narração de encerramento: Bianca Garcia

There are no comments yet.

Please log in to write the first comment.