Cyber Morning Call - #383 - 29/08/2023

[Referências do Episódio] - MalDoc in PDF - Detection bypass by embedding a malicious Word file into a PDF file - https://blogs.jpcert.or.jp/en/2023/08/maldocinpdf.html - olevba - https://github.com/decalage2/oletools/wiki/olevba - Phishing-as-a-Service Gets Smarter: Microsoft Sounds Alarm on AiTM Attacks - https://thehackernews.com/2023/08/phishing-as-service-gets-smarter.html - Thread da Microsoft sobre AiTM em ataques de PhaaS - https://twitter.com/MsftSecIntel/status/1696273952870367320 - Compromised OpenCart Payment Module Steals Credit Card Information - https://blog.sucuri.net/2023/08/opencart-payment-module-steals-credit-card-information.html  - Attacks on Citrix NetScaler systems linked to ransomware actor - https://www.bleepingcomputer.com/news/security/attacks-on-citrix-netscaler-systems-linked-to-ransomware-actor/ - Thread da Sophos sobre campanha que explora a CVE-2023-3519 - https://twitter.com/SophosXOps/status/1695143572272738790 - IOCs da campanha que explora a CVE-2023-3519 - https://github.com/sophoslabs/IoCs/blob/master/2023-08-25%20Citrix%20CVE-2023-3519%20attacks.csv Roteiro e apresentação: Carlos Cabral Edição de áudio: Paulo Arruzzo Narração de encerramento: Bianca Garcia

There are no comments yet.

Please log in to write the first comment.