blueteamsec

blueteamsec@infosec.pub

PostsComments

digicat@infosec.pubMEnglish · 7 days ago

CTO at NCSC Summary: week ending December 21st - nearly Christmas edition ❄️🎄🎅🤶🎄❄️

ctoatncsc.substack.com

0

2

CTO at NCSC Summary: week ending December 21st - nearly Christmas edition ❄️🎄🎅🤶🎄❄️

ctoatncsc.substack.com

digicat@infosec.pubMEnglish · 7 days ago

0

digicat@infosec.pubMEnglish · 12 hours ago

HP Aruba Privileged Escalation Dec 2025

thecontractor.io

0

2

HP Aruba Privileged Escalation Dec 2025

thecontractor.io

digicat@infosec.pubMEnglish · 12 hours ago

0

digicat@infosec.pubMEnglish · 21 hours ago

Spearphishing Campaign Abuses npm Registry to Target U.S. and Allied Manufacturing and Healthcare Organizations

0

6

Spearphishing Campaign Abuses npm Registry to Target U.S. and Allied Manufacturing and Healthcare Organizations

digicat@infosec.pubMEnglish · 21 hours ago

0

digicat@infosec.pubMEnglish · 21 hours ago

CVE-2025-14847 - MongoDB Unauthenticated Memory Leak Exploit - A proof-of-concept exploit for the MongoDB zlib decompression vulnerability that allows unauthenticated attackers to leak sensitive serve

0

6

CVE-2025-14847 - MongoDB Unauthenticated Memory Leak Exploit - A proof-of-concept exploit for the MongoDB zlib decompression vulnerability that allows unauthenticated attackers to leak sensitive serve

digicat@infosec.pubMEnglish · 21 hours ago

0

digicat@infosec.pubMEnglish · 21 hours ago

Reviving Discarded Vulnerabilities: Exploiting Previously Unexploitable Linux Kernel Bugs Through Control Metadata Fields

0

5

Reviving Discarded Vulnerabilities: Exploiting Previously Unexploitable Linux Kernel Bugs Through Control Metadata Fields

digicat@infosec.pubMEnglish · 21 hours ago

0

digicat@infosec.pubMEnglish · 21 hours ago

LangChain serialization injection vulnerability enables secret extraction in dumps/loads APIs

0

5

LangChain serialization injection vulnerability enables secret extraction in dumps/loads APIs

digicat@infosec.pubMEnglish · 21 hours ago

0

digicat@infosec.pubMEnglish · 21 hours ago

CPLDCOMTrigger: CPL remote trigger - A Python script depends on Impacket scripts to trigger the loading of a .cpl file into memory using a DCOM object.

0

5

CPLDCOMTrigger: CPL remote trigger - A Python script depends on Impacket scripts to trigger the loading of a .cpl file into memory using a DCOM object.

digicat@infosec.pubMEnglish · 21 hours ago

0

digicat@infosec.pubMEnglish · 21 hours ago

TRM Traces Stolen Crypto from 2022 LastPass Breach — On-chain Indicators Suggest Russian Cybercriminal Involvement

www.trmlabs.com

0

4

TRM Traces Stolen Crypto from 2022 LastPass Breach — On-chain Indicators Suggest Russian Cybercriminal Involvement

www.trmlabs.com

digicat@infosec.pubMEnglish · 21 hours ago

0

digicat@infosec.pubMEnglish · 21 hours ago

EmEditor 供应链事件细节披露：分发窃密特马席卷国内政企 - Details of the EmEditor supply chain incident revealed: Distribution of stolen MITBBS tokens sweeps across domestic government and enterprises.

mp.weixin.qq.com

0

4

EmEditor 供应链事件细节披露：分发窃密特马席卷国内政企 - Details of the EmEditor supply chain incident revealed: Distribution of stolen MITBBS tokens sweeps across domestic government and enterprises.

mp.weixin.qq.com

digicat@infosec.pubMEnglish · 21 hours ago

0

digicat@infosec.pubMEnglish · 20 hours ago

Continuously hardening ChatGPT Atlas against prompt injection attacks - "However, prompt injection remains an open challenge for agent security, and one we expect to continue working on for years"

0

3

Continuously hardening ChatGPT Atlas against prompt injection attacks - "However, prompt injection remains an open challenge for agent security, and one we expect to continue working on for years"

digicat@infosec.pubMEnglish · 20 hours ago

0

digicat@infosec.pubMEnglish · 20 hours ago

Ransomware cyber attack on Romanian Waters

0

3

Ransomware cyber attack on Romanian Waters

digicat@infosec.pubMEnglish · 20 hours ago

0

digicat@infosec.pubMEnglish · 20 hours ago

Mapping “Fly”, a threat actor with links to Russian Market’s infrastructure

www.intrinsec.com

0

3

Mapping “Fly”, a threat actor with links to Russian Market’s infrastructure

www.intrinsec.com

digicat@infosec.pubMEnglish · 20 hours ago

0

digicat@infosec.pubMEnglish · 20 hours ago

Annual Report to Congress: Military and Security Developments Involving the People's Republic of China 2025 - "Throughout 2024, PLA cyber actors almost certainly maintained and developed further"

media.defense.gov

0

3

Annual Report to Congress: Military and Security Developments Involving the People's Republic of China 2025 - "Throughout 2024, PLA cyber actors almost certainly maintained and developed further"

media.defense.gov

digicat@infosec.pubMEnglish · 20 hours ago

0

digicat@infosec.pubMEnglish · 21 hours ago

PCIe IDE Standard Vulnerabilities - Potential security vulnerabilities were found to be affecting PCIe Base Specification Revision 5.0 and onwards in a protocol mechanism

0

2

PCIe IDE Standard Vulnerabilities - Potential security vulnerabilities were found to be affecting PCIe Base Specification Revision 5.0 and onwards in a protocol mechanism

digicat@infosec.pubMEnglish · 21 hours ago

0

digicat@infosec.pubMEnglish · 1 day ago

Justice Department Announces Seizure of Stolen-Password Database Used in Bank Account Takeover Fraud

www.justice.gov

1

8

Justice Department Announces Seizure of Stolen-Password Database Used in Bank Account Takeover Fraud

www.justice.gov

digicat@infosec.pubMEnglish · 1 day ago

1

digicat@infosec.pubMEnglish · 2 days ago

DumpChromeSecrets: Extract data from modern Chrome versions, including refresh tokens, cookies, saved credentials, autofill data, browsing history, and bookmarks

0

9

DumpChromeSecrets: Extract data from modern Chrome versions, including refresh tokens, cookies, saved credentials, autofill data, browsing history, and bookmarks

digicat@infosec.pubMEnglish · 2 days ago

0

digicat@infosec.pubMEnglish · 1 day ago

Evasive Panda APT campaign overview

0

4

Evasive Panda APT campaign overview

digicat@infosec.pubMEnglish · 1 day ago

0

digicat@infosec.pubMEnglish · 1 day ago

Cybersecurity Staff Plead Guilty for Moonlighting as Hackers

www.bloomberg.com

0

4

Cybersecurity Staff Plead Guilty for Moonlighting as Hackers

www.bloomberg.com

digicat@infosec.pubMEnglish · 1 day ago

0

digicat@infosec.pubMEnglish · 1 day ago

Product Security Advisory and Analysis: Observed Abuse of FG-IR-19-283 | Fortinet Blog

www.fortinet.com

1

3

Product Security Advisory and Analysis: Observed Abuse of FG-IR-19-283 | Fortinet Blog

www.fortinet.com

digicat@infosec.pubMEnglish · 1 day ago

1

digicat@infosec.pubMEnglish · 1 day ago

New Cloud Atlas APT campaign

0

3

New Cloud Atlas APT campaign

digicat@infosec.pubMEnglish · 1 day ago

0

blueteamsec@infosec.pub

blueteamsec@infosec.pub

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: [email protected]

For [Blue|Purple] Teams in Cyber Defence - covering discovery, detection, response, threat intelligence, malware, offensive tradecraft and tooling, deception, reverse engineering etc.

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

22 users / day
102 users / week
266 users / month
832 users / 6 months
1 local subscriber
578 subscribers
1.77K Posts
137 Comments
Modlog

mods:
digicat@infosec.pub