North Korean Lazarus Group Now Working With Medusa Ransomware https://infosec.pub/post/42548885 [https://infosec.pub/u/digicat] #blueteamsec

North Korean Lazarus Group Now Working With Medusa Ransomware https://infosec.pub/post/42548885 [https://infosec.pub/u/digicat] #blueteamsec

Treasury Sanctions Exploit Broker Network for Theft and Sale of U.S. Government Cyber Tools https://infosec.pub/post/42548882 [https://infosec.pub/u/digicat] #blueteamsec

sage: Lightweight Agent Detection & Response (ADR) layer for AI agents — guards commands, files, and web requests https://infosec.pub/post/42397373 [https://infosec.pub/u/digicat] #blueteamsec

Keenadu the tablet conqueror and the links between major Android botnets https://infosec.pub/post/42204390 [https://infosec.pub/u/digicat] #blueteamsec

Password managers less secure than promised https://infosec.pub/post/42151584 [https://infosec.pub/u/digicat] #blueteamsec

Cyber Threat Intelligence Framework https://infosec.pub/post/42053333 [https://infosec.pub/u/digicat] #blueteamsec

yt-media-storage: Stores files onto YouTube by encoding them into lossless video and decoding them back to the original file. Supports both a command-line interface and a graphical user interface. https://infosec.pub/post/42053305 [https://infosec.pub/u/digicat] #blueteamsec

Huginn is a position-independent COFF loader designed for in-memory execution with built-in stack spoofing, indirect syscalls and automatic heap cleanup to prevent memory leaks https://infosec.pub/post/42042936 [https://infosec.pub/u/digicat] #blueteamsec

Simple Crystal Palace RDLL template for Adaptix https://infosec.pub/post/42040865 [https://infosec.pub/u/digicat] #blueteamsec

CTO at NCSC Summary: week ending February 15th https://infosec.pub/post/42040729 [https://infosec.pub/u/digicat] #blueteamsec

ElephantPoint: a SharePoint Enumeration Tool https://infosec.pub/post/42040868 [https://infosec.pub/u/digicat] #blueteamsec

rustbof: A Rust template for writing Beacon Object Files (BOFs) https://infosec.pub/post/42040870 [https://infosec.pub/u/digicat] #blueteamsec

Run XDRInternals as GitHub Action https://infosec.pub/post/41901818 [https://infosec.pub/u/digicat] #blueteamsec

Active Ivanti Exploitation Traced to Single Bulletproof IP—Published IOC Lists Point Elsewhere https://infosec.pub/post/41857278 [https://infosec.pub/u/digicat] #blueteamsec

VoidLink: Dissecting an AI-Generated C2 Implant https://infosec.pub/post/41842997 [https://infosec.pub/u/digicat] #blueteamsec