The Hackle Box

We're BACK with another live Hackle Box episode to break down what's trending in cyber attacks and incident response. This month, the crew discussed:New Evil Tokens attack and its implications for cybersecurityThe importance of comprehensive vulnerability management programs for IoT devicesInsights into the FBI surveillance system breach and what it means for global cybersecurityThe rise of phishing-as-a-service and how attackers are evolvingA special shout-out to Matthew Owens for discovering a CVE in IDrive for WindowsTune in for insights on these topics, and the latest trends, tactics, lures, and fixes that our expert cybersecurity team is seeing in real-world exploits and incidents.The Catch of the MonthThe Phishing ReportLive Q&AGuest SpeakersAnd more!If you've got burning questions or feedback, we'd be happy to hear from you: https://www.surveymonkey.com/r/hackleboxTo stay updated on all things The Hackle Box, sign up to receive our newsletters: https://frsecure.com/cyber-threat-int...Please like, subscribe, and follow us on social!LinkedIn: https://www.linkedin.com/company/frsecure/Instagram: https://www.instagram.com/frsecureofficial/Facebook: https://www.facebook.com/frsecure/BlueSky: https://bsky.app/profile/frsecure.bsky.socialAbout FRSecure:https://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can’t do it alone. Whether you’re wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

We're BACK with another live Hackle Box episode to break down what's trending in cyber attacks and incident response.This month, we're discussing:Hackers abusing .arpa domain to evade phishing detectionPresident Trump's Cybersecurity Strategy for AmericaSeedworm and Iranian APTsArmadin Series A FundingTune in for insights on these topics, and the latest trends, tactics, lures, and fixes that our expert cybersecurity team is seeing in real-world exploits and incidents.The Catch of the MonthThe Phishing ReportLive Q&AGuest SpeakersAnd more!If you've got burning questions or feedback, we'd be happy to hear from you: https://www.surveymonkey.com/r/hackleboxTo stay updated on all things The Hackle Box, sign up to receive our newsletters: https://frsecure.com/cyber-threat-intel-series/Please like, subscribe, and follow us on social!LinkedIn: https://www.linkedin.com/company/frsecure/Instagram: https://www.instagram.com/frsecureofficial/Facebook: https://www.facebook.com/frsecure/BlueSky: https://bsky.app/profile/frsecure.bsky.socialAbout FRSecure:https://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can’t do it alone. Whether you’re wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

2026 is off to quite the start! After a New Year's break, we're BACK with another Hackle Box episode to discuss what we've seen so far in the offensive services and incident response sides of the infosec industry! This month, Oscar, Eric, and special guest Matt Findlay discussed:Notepad++ VulnerabilitiesPhishing from legitimate Microsoft inboxesSolarwinds Remote Code ExecutionRing's New Surveillance FeatureTune in every month for insights on similar topics and the latest trends, tactics, lures, and fixes that our expert cybersecurity team is seeing in the real-world:The Catch of the MonthThe Phishing ReportLive Q&AGuest SpeakersAnd more!If you've got burning questions or feedback, we'd be happy to hear from you: https://www.surveymonkey.com/r/hackleboxTo stay updated on all things The Hackle Box, sign up to receive our newsletters: https://frsecure.com/cyber-threat-intel-series/Please like, subscribe, and follow FRSecure on social!

In this quarterly live Q&A session, the gang dives into the recent CISA budget cuts and hands it over to the audience for discussion. Tune in to get your updates, hear what folks are talking about, and a little on boats! To stay updated on all things The Hackle Box, sign up to receive our newsletters: https://frsecure.com/cyber-threat-intel-series/ Please like, subscribe, and follow us on social! LinkedIn: https://www.linkedin.com/company/frsecure/ Instagram: https://www.instagram.com/frsecureofficial/ Facebook: https://www.facebook.com/frsecure/ BlueSky: https://bsky.app/profile/frsecure.bsky.social About FRSecure: https://frsecure.com/ FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can’t do it alone. Whether you’re wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

Join us for our May Hackle Box session! The crew explores the emerging concept of "vibe coding", also known as vulnerability as a service, and unpacks its implications for cybersecurity. The team discusses how large language models (LLMs) may unknowingly import malicious code, raising critical concerns about training data integrity and AI trustworthiness. Links:"AI-Hallucinated Code Dependencies Become New Supply Chain Risk" "Vehicles Face 45% More Attacks, 4 Times More Hackers" https://www.darkreading.com/vulnerabilities-threats/vehicles-45-more-attacks-4-times-more-hackers "'Venom Spider' Targets Hiring Managers in Phishing Scheme" https://www.darkreading.com/cyber-risk/venom-spider-phishing-scheme "CISA Warns 2 SonicWall Vulnerabilities Under Active Exploitation" https://www.darkreading.com/threat-intelligence/two-sonicwall-vulnerabilities-under-exploitation "Commvault Confirms Hackers Exploited CVE-2025-3928 as Zero-Day in Azure Breach" https://thehackernews.com/2025/05/commvault-confirms-hackers-exploited.html Be sure to submit your questions for our quarterly Q&A Episodes! Ask Our Security Experts Anything!To stay updated on all things The Hackle Box, sign up to receive our newsletters: https://frsecure.com/cyber-threat-intel-series/ Please like, subscribe, and follow us on social! LinkedIn: frsecure Instagram: @frsecureofficialFacebook: frsecureBlueSky: @frsecureAbout FRSecure: https://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can’t do it alone. Whether you’re wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

In this month's edition of the Hackle Box, the guys are joined by Kevin Gunter, a penetration tester at FRSecure, to discuss "Xanthorox AI," a record-breaking $75M ransomware demand, a US Treasury breach going back to 2023, and Neptune RAT.Links:"Autonomous, GenAI-Driven Attacker Platform Enters the Chat"https://www.darkreading.com/threat-intelligence/autonomous-genai-attacker-platform-chat "Fortune 50 Co. Pays Record-Breaking $75M Ransomware Demand"https://www.darkreading.com/threat-intelligence/fortune-50-company-pays-record-breaking-75m-ransomware-demand"Hackers lurked in Treasury OCC’s systems since June 2023 breach"https://www.bleepingcomputer.com/news/security/hackers-lurked-in-treasury-occs-systems-since-june-2023-breach/"NEPTUNE RAT : An advanced Windows RAT with System Destruction Capabilities and Password Exfiltration from 270+ Applications"https://www.cyfirma.com/research/neptune-rat-an-advanced-windows-rat-with-system-destruction-capabilities-and-password-exfiltration-from-270-applications/To stay updated on all things The Hackle Box, sign up to receive our newsletters: https://frsecure.com/cyber-threat-intel-series/Please like, subscribe, and follow us on social!LinkedIn: https://www.linkedin.com/company/frsecure/Instagram: https://www.instagram.com/frsecureofficial/Facebook: https://www.facebook.com/frsecure/BlueSky: https://bsky.app/profile/frsecure.bsky.socialAbout FRSecure:https://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can’t do it alone. Whether you’re wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

Approaching the end of Q1, this special-edition episode answers questions from the audience including the U.S. Cyber Command's suspended operations against Russia and some essential beard maintenance. Security Analyst Tim Boyer sits in for Pinky to fill the blue team perspective. Now happening quarterly, listeners can ask all things security to our expert crew! The next Q & A Session will be held June 13th. Submit questions to our survey here: https://www.surveymonkey.com/r/thehacklebox To stay updated on all things The Hackle Box, sign up to receive our newsletters: https://frsecure.com/cyber-threat-intel-series/ Please like, subscribe, and follow us on social! LinkedIn: https://www.facebook.com/frsecure/ Instagram: https://www.instagram.com/frsecureofficial/ Facebook: https://www.facebook.com/frsecure/ BlueSky: https://bsky.app/profile/frsecure.bsky.social About FRSecure: https://frsecure.com/ FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs.  These fundamentals are lacking in our industry, and while progress is being made, we can’t do it alone. Whether you’re wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

Oscar, Pinky, and Eric dive into DeepSeek, the downward trend of Ransomware extortions, and new, actively exploited vulnerabilities.Links:"DeepSeek App Transmits Sensitive User and Device Data Without Encryption" https://thehackernews.com/2025/02/deepseek-app-transmits-sensitive-user.html "DeepSeek AI Database Exposed: Over 1 Million Log Lines, Secret Keys Leaked" https://thehackernews.com/2025/01/deepseek-ai-database-exposed-over-1.html "Ransomware Extortion Drops to $813.5M in 2024, Down from $1.25B in 2023" https://thehackernews.com/2025/02/ransomware-extortion-drops-to-8135m-in.html "CISA Adds Four Actively Exploited Vulnerabilities to KEV Catalog, Urges Fixes by Feb 25" https://thehackernews.com/2025/02/cisa-adds-four-actively-exploited.html "Palo Alto Networks Patches Authentication Bypass Exploit in PAN-OS Software" https://thehackernews.com/2025/02/palo-alto-networks-patches.html Please like, subscribe, and follow us on social! Facebook: https://www.facebook.com/frsecure/ Twitter: https://twitter.com/frsecure/ Instagram: https://www.instagram.com/frsecureofficial/  LinkedIn: https://www.linkedin.com/company/frsecure/ About FRSecure: https://frsecure.com/ FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs.  These fundamentals are lacking in our industry, and while progress is being made, we can’t do it alone. Whether you’re wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

The guys are back for another episode of the Hackle Box—a monthly conversation between information security experts about new and noteworthy exploits.  This special holiday episode, Pinky shares a reading of "The Night Before Breachmas", the gang talks encrypted texting, Microsoft's MFA flaw - aka "AuthQuake", and hackers bypassing AntiVirus protections with BYOVD. Links:"FBI Warns iPhone And Android Users—Stop Sending Texts" https://www.forbes.com/sites/zakdoffman/2024/12/06/fbi-warns-iphone-and-android-users-stop-sending-texts/ "Microsoft MFA AuthQuake Flaw Enabled Unlimited Brute-Force Attempts Without Alerts" https://thehackernews.com/2024/12/microsoft-mfa-authquake-flaw-enabled.html?m=1 "Researchers Uncover Malware Using BYOVD to Bypass Antivirus Protections" https://thehackernews.com/2024/11/researchers-uncover-malware-using-byovd.html?m=1 Please like, subscribe, and follow us on social!  Facebook: https://www.facebook.com/frsecure/  Twitter: https://twitter.com/frsecure/  Instagram: https://www.instagram.com/frsecureofficial/  LinkedIn: https://www.linkedin.com/company/frsecure/  About FRSecure: https://frsecure.com/  FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs.  These fundamentals are lacking in our industry, and while progress is being made, we can’t do it alone. Whether you’re wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

The guys are back for another episode of the Hackle Box—a monthly conversation between information security experts about new and noteworthy exploits. This month, Oscar and the crew focus on SolarWinds cyber attack and the resulting charges from the SEC, guidance from OWASP on AI Security, and CISCO's security patch.Links: "Google Cloud to Enforce Multi-Factor Authentication by 2025 for All Users" https://thehackernews.com/2024/11/goo..."SEC Charges 4 Companies Over Misleading SolarWinds Cyber Attack Disclosures" https://thehackernews.com/2024/10/sec..."OWASP Releases AI Security Guidance" https://www.darkreading.com/applicati..."Cisco Releases Patch for Critical URWB Vulnerability in Industrial Wireless Systems" https://thehackernews.com/2024/11/cis...Please like, subscribe, and follow us on social! Facebook: FRSecure LLCTwitter: @FRSecureInstagram: @FRSecureofficialLinkedIn: FRSecureAbout FRSecure: https://frsecure.com/ FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs.  These fundamentals are lacking in our industry, and while progress is being made, we can’t do it alone. Whether you’re wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

The guys are back for another episode of the Hackle Box—a monthly conversation between information security experts about new and noteworthy exploits.  This month, the hosts talk about personal preparation for emergency events like natural disasters, the DDOS attacks of Internet Archive, newest CISA warnings, and Zero Day Alert for Ivanti exploitation. They also open up to the live audience for questions! Links: "Internet Archive Hacked, Data Breach Impacts 31 Million Users" https://www.bleepingcomputer.com/news/security/internet-archive-hacked-data-breach-impacts-31-million-users/ "CISA Warns of Critical Fortinet Flaw as Palo Alto and Cisco Issue Urgent Security Patches" https://thehackernews.com/2024/10/cisa-warns-of-critical-fortinet-flaw-as.html "Zero-Day Alert: Three Critical Ivanti CSA Vulnerabilities Actively Exploited" https://thehackernews.com/2024/10/zero-day-alert-three-critical-ivanti.html "N. Korean Hackers Use Fake Interviews to Infect Developers with Cross-Platform Malware" https://thehackernews.com/2024/10/n-korean-hackers-use-fake-interviews-to.html Please like, subscribe, and follow us on social!  Facebook: https://www.facebook.com/frsecure/  Twitter: https://twitter.com/frsecure/  Instagram: https://www.instagram.com/frsecureofficial/   LinkedIn: https://www.linkedin.com/company/frsecure/  About FRSecure: https://frsecure.com/  FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs.  These fundamentals are lacking in our industry, and while progress is being made, we can’t do it alone. Whether you’re wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

The guys are back for another episode of the Hackle Box—a monthly conversation between information security experts about new and noteworthy exploits.With Oscar out traveling, Pinky and Eric lead the discussion this month. Together, they discuss: A worm-driven USB attack strategy, Microsoft's disclosure of four zero-days in their September update, and the Scattered Spider ransomware group's sophisticated smishing and vishing campaigns on cloud services. They also open up to the live audience for questions!Links: Mustang Panda Feeds Worm-Driven USB Attack Strategyhttps://www.darkreading.com/cyberattacks-data-breaches/mustang-panda-worm-driven-usb-attackMicrosoft Discloses 4 Zero-Days in September Updatehttps://www.darkreading.com/application-security/microsoft-discloses-4-zero-days-in-september-updateSocially Savvy Scattered Spider Traps Cloud Admins in Webhttps://www.darkreading.com/cloud-security/socially-savvy-scattered-spider-traps-cloud-admins-in-webPlease like, subscribe, and follow us on social!About FRSecurehttps://frsecure.com/ FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can’t do it alone. Whether you’re wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

The guys are back for another episode of the Hackle Box—a monthly conversation between information security experts about new and noteworthy exploits. This time, they discuss Midnight Blizzard, a zero-click Outlook vulnerability, and CISA's takedown of Ivanti Systems.Links: Network Segmentation Saved TeamViewer From APT29 Attack https://www.darkreading.com/cyberattacks-data-breaches/teamviewer-network-segmentation-apt29-attackZero-Click Outlook RCE Vulnerability - Project Hyphaehttps://projecthyphae.com/threat/zero-click-outlook-rce-vulnerability/ CISA Takedown of Ivanti Systems Is a Wake-up Callhttps://www.darkreading.com/vulnerabilities-threats/cisa-takedown-ivanti-systems-is-wake-up-callPlease like, subscribe, and follow us on social! Facebook: https://www.facebook.com/frsecure/ Twitter: https://twitter.com/frsecure/ Instagram: https://www.instagram.com/frsecureofficial/  LinkedIn: https://www.linkedin.com/company/frsecure/ About FRSecurehttps://frsecure.com/ FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs.  These fundamentals are lacking in our industry, and while progress is being made, we can’t do it alone. Whether you’re wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

The guys are back for another episode of the Hackle Box—a monthly conversation between information security experts about new and noteworthy exploits. This time, they discuss critical Citrix flaws, fake journalists stealing data, Microsoft holding execs accountable for security, police trolling a ransomware gang, and more.Links: Citrix Addresses High-Severity Flaw in NetScaler ADC and Gatewayhttps://thehackernews.com/2023/10/critical-citrix-netscaler-flaw.htmlApt42 Pose As Journalists, Harvest Credentials, Access Cloud Datahttps://attackfeed.com/apt42-hackers-pose-as-journalists-to-harvest-credentials-and-access-cloud-data-infothehackernews-com-the-hacker-news/Microsoft Will Hold Execs Accountable for Cybersecurityhttps://www.darkreading.com/cloud-security/feds-microsoft-clean-up-cloud-security-actBurnout Is Pushing Workers to Use AI—Even If Their Boss Doesn’t Knowhttps://www.wired.com/story/ai-workers-burnout-microsoft-linkedin/Police Resurrect LockBit's Site and Troll the Ransomware Gang | TechCrunchhttps://techcrunch.com/2024/05/06/police-resurrect-lockbits-site-and-troll-the-ransomware-gang/US Indicts LockBit Ransomware Ringleader, Offers $10 Million Rewardhttps://www.theverge.com/2024/5/7/24151493/us-lockbit-ransomware-ringleader-indictment-rewardPlease like, subscribe, and follow us on social! Facebook: https://www.facebook.com/frsecure/ Twitter: https://twitter.com/frsecure/ Instagram: https://www.instagram.com/frsecureofficial/  LinkedIn: https://www.linkedin.com/company/frsecure/ About FRSecure https://frsecure.com/ FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can’t do it alone. Whether you’re wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

The guys are back for another episode of the Hackle Box—a monthly conversation between information security experts about new and noteworthy exploits.This time, they discuss AI-written malware, XZ Utils, and attackers targeting hospital IT help desks.Links:XZ Utils scare https://www.darkreading.com/application-security/xz-utils-scare-exposes-hard-truths-in-software-securityChange Healthcare hit with cyber extortion (again)https://www.infosecurity-magazine.com/news/change-healthcare-double-cyber/Health Department warns attackers targeting IT help desks https://www.bleepingcomputer.com/news/security/us-health-dept-warns-hospitals-of-hackers-targeting-it-help-desks/Malicious PowerShell script appears to be AI-written https://www.bleepingcomputer.com/news/security/malicious-powershell-script-pushing-malware-looks-ai-written/Please follow us on social!Facebook: https://www.facebook.com/frsecure/Twitter: https://twitter.com/frsecure/Instagram: https://www.instagram.com/frsecureofficial/LinkedIn: https://www.linkedin.com/company/frsecure/ About FRSecure https://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs.These fundamentals are lacking in our industry, and while progress is being made, we can’t do it alone. Whether you’re wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

The guys are back for another episode of the Hackle Box—a monthly conversation between information security experts about new and noteworthy exploits.This time, they discuss security risks in ChatGPT plugins, a major flaw in Google's Gemini AI, typosquatting, and a worldwide vishing epidemic.Links:ChatGPT Plugin Securityhttps://www.infosecurity-magazine.com/news/security-risks-chatgpt-plugins/Gemini AI Vulnerabilityhttps://www.darkreading.com/cyber-risk/google-gemini-vulnerable-to-content-manipulation-researchers-sayWorldwide Vishing Epidemichttps://www.darkreading.com/endpoint-security/sophisticated-vishing-campaigns-take-world-by-stormTyposquattinghttps://www.darkreading.com/threat-intelligence/typosquatting-wave-shows-no-signs-of-abatingPlease like, subscribe, and follow us on social!Facebook: https://www.facebook.com/frsecure/Twitter: https://twitter.com/frsecure/Instagram: https://www.instagram.com/frsecureofficial/LinkedIn: https://www.linkedin.com/company/frsecure/About FRSecure https://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs.These fundamentals are lacking in our industry, and while progress is being made, we can’t do it alone. Whether you’re wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

The guys are back for another episode of the Hackle Box—a monthly conversation between information security experts about new and noteworthy exploits.This time, they discuss compromised job boards where millions of resumes were stolen, AnyDesk's actions post-hack, an exploited SSRF flaw in Ivanti, and more.Links:Millions of resumes stolen via exploited job boards https://thehackernews.com/2024/02/hackers-exploit-job-boards-in-apac.htmlAnyDesk resets passwords/revokes certificates after hack https://techcrunch.com/2024/02/05/remote-access-giant-anydesk-resets-passwords-and-revokes-certificates-after-hack/SSRF flaw in Ivanti exploited https://thehackernews.com/2024/02/recently-disclosed-ssrf-flaw-in-ivanti.htmlFortinet reissues critical FortiSIEM vulnerabilities https://www.theregister.com/2024/02/06/fortinet_fortisiem_vulns/Please like, subscribe, and follow us on social!Facebook: https://www.facebook.com/frsecure/Twitter: https://twitter.com/frsecure/Instagram: https://www.instagram.com/frsecureofficial/LinkedIn: https://www.linkedin.com/company/frsecure/About FRSecure https://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs.These fundamentals are lacking in our industry, and while progress is being made, we can’t do it alone. Whether you’re wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

The guys are back for another episode of the Hackle Box—a monthly conversation between information security experts about new and noteworthy exploits. This time, they discuss the reduced cybersecurity funding observed in 2023 as well as new vulnerabilities, patches, and more.Links: Cybersecurity Funding Reduced https://www.securityweek.com/cybersecurity-funding-dropped-40-in-2023-analysis/ Critical Flaws in Windows Kerberos and Hyper-V https://securityweek.com/microsoft-ships-urgent-fixes-for-critical-flaws-in-windows-kerberos-hyper-v/ Pikabot Malware https://www.darkreading.com/cyberattacks-data-breaches/pikabot-malware-qakbot-replacement-black-basta-attacks Decryptor for Black Basta and Babuk's Tortilla Ransomware https://thehackernews.com/2024/01/free-decryptor-released-for-black-basta.html Please like, subscribe, and follow us on social! Facebook: https://www.facebook.com/frsecure/ Twitter: https://twitter.com/frsecure/ Instagram: https://www.instagram.com/frsecureofficial/ LinkedIn: https://www.linkedin.com/company/frsecure/ About FRSecure https://frsecure.com/ FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can’t do it alone. Whether you’re wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

The guys are back for another episode of the Hackle Box—a monthly conversation between information security experts about new and noteworthy exploits. This time, they discuss common social engineering attacks carried out around the holidays when key team members are out of the office or organizations are shut down for seasonal breaks. LinksSocial Engineeringhttps://thehackernews.com/2023/12/hacking-human-mind-exploiting.htmlCisco IOS XE Vuln Exploitationhttps://www.securityweek.com/exploitation-of-recent-cisco-ios-xe-vulnerabilities-spikes/Sierra:21 Attackshttps://thehackernews.com/2023/12/sierra21-flaws-in-sierra-wireless.htmlAtlassianhttps://www.darkreading.com/application-security/patch-now-critical-atlassian-bugs-endanger-enterprise-appsPlease follow us on social!Facebook: https://www.facebook.com/frsecure/Twitter: https://twitter.com/frsecure/Instagram: https://www.instagram.com/frsecureofficial/ LinkedIn: https://www.linkedin.com/company/frsecure/About FRSecurehttps://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can’t do it alone. Whether you’re wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

The guys are back for another episode of the Hackle Box—a monthly conversation between information security experts about new and noteworthy exploits.This time around, they discuss recent vulnerabilities in Confluence and Apache ActiveMQ.Follow us on social!Facebook: https://www.facebook.com/frsecure/Twitter: https://twitter.com/frsecure/Instagram: https://www.instagram.com/frsecureofficial/ LinkedIn: https://www.linkedin.com/company/frsecure/About FRSecure - https://frsecure.com/FRSecure is a mission-driven information security consultancy headquartered in Minneapolis, MN. Our team of experts is constantly developing solutions and training to assist clients in improving the measurable fundamentals of their information security programs. These fundamentals are lacking in our industry, and while progress is being made, we can’t do it alone. Whether you’re wondering where to start, or looking for a team of experts to collaborate with you, we are ready to serve.

The guys are back for a special, Friday the 13th episode of the Hackle Box—a monthly conversation between information security experts about new and noteworthy exploits. This time around, we're getting in the spooky spirit and telling scary stories from real-life IR cases. 🎃Please like, subscribe, and follow us on social!Facebook: https://www.facebook.com/frsecure/Twitter: https://twitter.com/frsecure/Instagram: https://www.instagram.com/frsecureofficial/ LinkedIn: https://www.linkedin.com/company/frsecure/

Oscar and Pinky are back for this month's session of the Hackle Box—a monthly conversation between the information security experts about new and noteworthy exploits.DISCUSSED THIS MONTH:Scattered Spider (MGM attack)https://hackdojo.io/articles/E59P05LKQ/-scattered-spider-behind-mgm-cyberattack-targets-casinosCaesers confirms ransomwarehttps://hackdojo.io/articles/73WL5VP9N/caesars-confirms-ransomware-hack-stolen-loyalty-program-databaseMGM hackers branching outhttps://hackdojo.io/articles/AEWED5DK7/mgm-hackers-broadening-targets-monetization-strategiesUNC3944 Smishing Ransomwarehttps://www.mandiant.com/resources/blog/unc3944-sms-phishing-sim-swapping-ransomwareLastPass iOS vulnerability (BLASTPASS)https://hackdojo.io/articles/AEWEDLDK7/blastpass-government-agencies-told-to-secure-iphones-against-spyware-attacksFollow us on social!Facebook: https://www.facebook.com/frsecure/Twitter: https://twitter.com/frsecure/Instagram: https://www.instagram.com/frsecureofficial/ LinkedIn: https://www.linkedin.com/company/frsecure/

Eric and Pinky are back with another session of the Hackle Box—a monthly conversation between the information security experts about new and noteworthy exploits.Discussed this monthDEFCON RecapEvilProxy campaignhttps://www.techrepublic.com/article/evilproxy-phishing-attack/QR Codes used for credential thefthttps://www.darkreading.com/attacks-breaches/qr-code-phishing-campaign-targets-top-u-s-energy-companyAI stealing passwords, listening to keystrokeshttps://www.darkreading.com/attacks-breaches/ai-model-can-replicate-password-listening-to-keystrokesFollow us on social!Facebook: https://www.facebook.com/frsecure/Twitter: https://twitter.com/frsecure/Instagram: https://www.instagram.com/frsecureofficial/ LinkedIn: https://www.linkedin.com/company/frsecure/

This month, we're doing a crossover episode with the Unsecurity Podcast!For those who are not yet aware, Unsecurity is another FRSecure podcast focused on the business impact of current events and happenings within the security industry. It's hosted several times a month by Oscar and Brad Nigh, FRSecure's Principal Information Security Consultant.Discussed this month: MOVEit AttacksMicrosoft Patch Tuesday: Six 0-DaysFortinet InfinityPlease like, subscribe, and follow us on social! Facebook: https://www.facebook.com/frsecure/Twitter: https://twitter.com/frsecure/Instagram: https://www.instagram.com/frsecureofficial/ LinkedIn: https://www.linkedin.com/company/frsecure/

Oscar, Eric, and Pinky are back with another session of the Hackle Box—a monthly conversation between the information security experts about new and noteworthy exploits.Discussed this monthDo's and don'ts of SIEM implementationThe recent Dragos incidenthttps://www.bleepingcomputer.com/news/security/cybersecurity-firm-dragos-discloses-cybersecurity-incident-extortion-attempt/Please follow us on social! Facebook: https://www.facebook.com/frsecure/Twitter: https://twitter.com/frsecure/Instagram: https://www.instagram.com/frsecureofficial/ LinkedIn: https://www.linkedin.com/company/frsecure/

Eric and Pinky are back with another session of the Hackle Box—a monthly conversation between the information security experts about new and noteworthy exploits.Discussed this month:Windows zero-day exploited in the wild https://projecthyphae.com/threat/windows-zero-day-being-exploited-in-ransomware-attacks/3CX Supply Chain Attack https://thehackernews.com/2023/03/3cx-supply-chain-attack-heres-what-we.htmlNo evidence of…oh wait, your data was stolen (Yum! Brands breach) https://www.bleepingcomputer.com/news/security/kfc-pizza-hut-owner-discloses-data-breach-after-ransomware-attack/Patch quick hitsAdobe: https://www.cisa.gov/news-events/alerts/2023/04/11/adobe-releases-security-updates-multiple-products Apple: https://www.bleepingcomputer.com/news/security/cisa-orders-govt-agencies-to-update-iphones-macs-by-may-1st/Cisco: https://www.cisa.gov/news-events/alerts/2023/03/23/cisco-releases-security-advisories-multiple-products Fortinet: https://www.cisa.gov/news-events/alerts/2023/04/11/fortinet-releases-april-2023-vulnerability-advisories Microsoft: https://www.bleepingcomputer.com/news/microsoft/microsoft-april-2023-patch-tuesday-fixes-1-zero-day-97-flaws/SAP: https://www.bleepingcomputer.com/news/security/sap-releases-security-updates-for-two-critical-severity-flaws/ Follow us on social!Facebook: https://www.facebook.com/frsecure/Twitter: https://twitter.com/frsecure/Instagram: https://www.instagram.com/frsecureofficial/ LinkedIn: https://www.linkedin.com/company/frsecure/

This week, Oscar and Brad sit down to catch up on all the latest in security news. Links:The Sound of Silence Critical Microsoft Outlook Vulnerability https://projecthyphae.com/threat/the-sound-of-silence-critical-microsoft-outlook-vulnerability/Fastest Ransomware Encryption in Historyhttps://gbhackers.com/rorschach/'Operation Cookie Monster': International police action seizes dark web market https://www.reuters.com/world/uk/operation-cookie-monster-international-police-action-seizes-dark-web-market-2023-04-05/Check your hackhttps://www.politie.nl/en/information/checkyourhack.htmlSend any questions, comments, or feedback to [email protected]. Don't forget to like and subscribe!

Eric and Pinky are back with another session of the Hackle Box—a monthly conversation between the information security experts about new and noteworthy exploits.Discussed this month:Microsoft Word vulnerability goes publichttps://projecthyphae.com/threat/microsoft-word-vulnerability-goes-public-users-wondering-if-a-rtf-means-risky-text-file/Emotet is back (again) after another hiatushttps://www.darkreading.com/threat-intelligence/emotet-resurfaces-yet-again-after-three-month-hiatusSecurity concerns over employees feeding ChatGPT sensitive datahttps://www.darkreading.com/risk/employees-feeding-sensitive-business-data-chatgpt-raising-security-fearsFollow us on social!Facebook: https://www.facebook.com/frsecure/Twitter: https://twitter.com/frsecure/Instagram: https://www.instagram.com/frsecureofficial/ LinkedIn: https://www.linkedin.com/company/frsecure/

Oscar and Pinky are back with another session of the Hackle Box—a monthly conversation between the information security experts about new and noteworthy exploits.Discussed this month:Developer pleads guilty to hacking his own company https://www.theverge.com/2023/2/3/23584414/ubiquiti-developer-guilty-extortion-hack-security-breach-bitcoin-ransomGoogle plagued with 'malvertisers' in January 2023 https://arstechnica.com/information-technology/2023/02/until-further-notice-think-twice-before-using-google-to-download-software/Follow us on social!Facebook: https://www.facebook.com/frsecure/Twitter: https://twitter.com/frsecure/Instagram: https://www.instagram.com/frsecureofficial/ LinkedIn: https://www.linkedin.com/company/frsecure/

Oscar, Eric, and Pinky are back with another session of the Hackle Box—a monthly conversation between the three cybersecurity experts about new and noteworthy threats, attacks, security breaches, and exploits.Discussed this month:Rackspace Ransomware Incident Highlights Risks of Relying on Mitigation Alone https://www.darkreading.com/vulnerabilities-threats/rackspace-ransomware-incident-highlights-risks-mitigation-aloneAttackers Are Already Exploiting ChatGPT to Write Malicious Code https://www.darkreading.com/attacks-breaches/attackers-are-already-exploiting-chatgpt-to-write-malicious-code98 Patches: Microsoft Greets New Year With Zero-Day Security Fixes https://www.darkreading.com/vulnerabilities-threats/microsoft-new-year-patches-98-security-fixesPlease like, subscribe, and follow us on social!Facebook: https://www.facebook.com/frsecure/Twitter: https://twitter.com/frsecure/Instagram: https://www.instagram.com/frsecureofficial/ LinkedIn: https://www.linkedin.com/company/frsecure/

Oscar and Pinky are back with another session of the Hackle Box—a monthly conversation between the three cybersecurity experts about new and noteworthy threats, attacks, breaches, exploits, and (of course) how to avoid them.Discussed this month: Russian Actors Use Compromised Healthcare Networks Against Ukrainian Orgshttps://www.darkreading.com/threat-intelligence/russian-actors-compromised-healthcare-networks-ukrainian-orgsMalware Authors Inadvertently Take Down Own Botnethttps://www.darkreading.com/attacks-breaches/malware-authors-inadvertently-takdown-own-botnetAll You Need to Know About Emotet in 2022https://thehackernews.com/2022/11/all-you-need-to-know-about-emotet-in.htmlWhat the CISA Reporting Rule Means for Your IT Security Protocolhttps://thehackernews.com/2022/12/what-cisa-reporting-rule-means-for-your.htmlRackspace Ransomware Attack Outagehttps://www.bleepingcomputer.com/news/security/rackspace-confirms-outage-was-caused-by-ransomware-attack/Report: Air-Gapped Networks Vulnerable to DNS Attackshttps://www.darkreading.com/attacks-breaches/report-air-gapped-networks-vulnerable-dns-attacksPlease like, subscribe, and follow us on social!Facebook: https://www.facebook.com/frsecure/Twitter: https://twitter.com/frsecure/Instagram: https://www.instagram.com/frsecure/LinkedIn: https://www.linkedin.com/company/frsecure/

Oscar, Pinky, and Eric are back with another session of the Hackle Box—a monthly conversation between the three cybersecurity experts about new and noteworthy threats, attacks, breaches, exploits, and (of course) how to avoid them.Discussed this month: Critical Citrix, VMware Bugs threaten remote workspaceshttps://www.darkreading.com/vulnerabilities-threats/patch-asap-critical-citrix-vmware-bugs-remote-workspaces-takeoverLong Island midterm votes delayed due to cyberattackhttps://www.darkreading.com/attacks-breaches/long-island-midterm-votes-delayed-due-to-cyberattack-after-effectsMicrosoft Exchange vulnerability updateHealthcare sector: Security threat landscape updateFacebook: https://www.facebook.com/frsecure/Twitter: https://twitter.com/frsecure/Instagram: https://www.instagram.com/frsecure/LinkedIn: https://www.linkedin.com/company/frsecure/

Oscar, Pinky, and Eric are back with another session of the Hackle Box—a monthly conversation between the three cybersecurity experts about new and noteworthy threats, attacks, breaches, exploits, and (of course) how to avoid them.Discussed this month: Fortinet Authentication BypassZeroDay: ProxyShell 2 (or 3?)Microsoft Addresses Zero-Days, Exchange Server Exploit Chain Remains UnpatchedPhishing Attacks Improving DramaticallyEmotet is BackPlease like, subscribe, and follow us on social!Facebook: https://www.facebook.com/frsecure/Twitter: https://twitter.com/frsecure/Instagram: https://www.instagram.com/frsecure/LinkedIn: https://www.linkedin.com/company/frsecure/

Oscar, Pinky, and Eric are back with another session of the Hackle Box—a monthly conversation between the three cybersecurity experts about new and noteworthy threats, attacks, breaches, exploits, and (of course) how to avoid them.This month's episode includes:Defcon RecapEvilProxyTeslaGunBroken Ice Cream Machines and McDonaldsPlease like, subscribe, and follow us on social!Facebook: https://www.facebook.com/frsecure/Twitter: https://twitter.com/frsecure/Instagram: https://www.instagram.com/frsecure/LinkedIn: https://www.linkedin.com/company/frsecure/

Oscar, Pinky, and Eric are back with another session of the Hackle Box—a monthly conversation between the three cybersecurity experts about new and noteworthy threats, attacks, breaches, exploits, and (of course) how to avoid them.This month's episode includes:NPM supply chain attack impacts hundreds of websites and appshttps://www.bleepingcomputer.com/news/security/npm-supply-chain-attack-impacts-hundreds-of-websites-and-apps/PyPi sending stolen AWS keys to unsecured siteshttps://www.bleepingcomputer.com/news/security/pypi-python-packages-caught-sending-stolen-aws-keys-to-unsecured-sites/NPM packages involved in crypto mininghttps://thehackernews.com/2022/07/over-1200-npm-packages-found-involved.htmlCISA alert for North Korean APT targeting the healthcare sectorhttps://www.cisa.gov/uscert/ncas/current-activity/2022/07/06/north-korean-state-sponsored-cyber-actors-use-maui-ransomwarehttps://thehackernews.com/2022/07/north-korean-maui-ransomware-actively.htmlMicrosoft Edge WebView2 manipulated for cookie thefthttps://projecthyphae.com/threat/microsoft-edge-webview2-manipulated-for-theft-of-cookies/Criminals are filling job applicant pools with deepfakeshttps://projecthyphae.com/threat/criminals-are-filling-tech-job-applicant-pools-with-deepfakes/Please like, subscribe, and follow us on social!Facebook: https://www.facebook.com/frsecure/Twitter: https://twitter.com/frsecure/Instagram: https://www.instagram.com/frsecure/LinkedIn: https://www.linkedin.com/company/frsecure/

Oscar, Pinky, and Eric are back with another session of the Hackle Box—a monthly conversation between the three cybersecurity experts about new and noteworthy threats, attacks, breaches, exploits, and (of course) how to avoid them.This month's episode includes:02:14 Atlassian Confluence – CVE-2022-26134https://packetstormsecurity.com/files/167430/Confluence-OGNL-Injection-Remote-Code-Execution.html13:25 Follinahttps://threatpost.com/follina-exploited-by-state-sponsored-hackers/179890/32:40 Paid a ransom? Now you’re a target.https://threatpost.com/paying-ransomware-bullseye-back/179915/47:30 Chinese State Attackers Breached Telcoshttps://www.bleepingcomputer.com/news/security/us-chinese-govt-hackers-breached-telcos-to-snoop-on-network-traffic/52:50 Kali team offering free penetration testing course on Twitch!https://www.bleepingcomputer.com/news/security/kali-linux-team-to-stream-free-penetration-testing-course-on-twitch/Please like, subscribe, and follow us on social!Facebook: https://www.facebook.com/frsecure/Twitter: https://twitter.com/frsecure/Instagram: https://www.instagram.com/frsecure/LinkedIn: https://www.linkedin.com/company/frsecure/

Oscar, Pinky, and Eric are back with another session of the Hackle Box—a monthly conversation between the three cybersecurity experts about new and noteworthy threats, attacks, breaches, exploits, and (of course) how to avoid them.Please like, subscribe, and follow us on social!Facebook: https://www.facebook.com/frsecure/Twitter: https://twitter.com/frsecure/Instagram: https://www.instagram.com/frsecure/LinkedIn: https://www.linkedin.com/company/frsecure/

Oscar, Pinky, and Eric are back with another session of the Hackle Box—a monthly conversation between the three cybersecurity experts about new and noteworthy threats, attacks, breaches, exploits, and (of course) how to avoid them.This month's episode includes:- Hackers Gaining Power of Subpoena Via Fake “Emergency Data Requests”- Forged Signatures: Not Just For Troubled Youths Anymore. #Nvidia- Sophos firewalls require an URGENT new flame shield- CISA Warns of Active Exploitation of Critical Spring4Shell VulnerabilityPlease like, subscribe, and follow us on social!Facebook: https://www.facebook.com/frsecure/Twitter: https://twitter.com/frsecure/Instagram: https://www.instagram.com/frsecure/LinkedIn: https://www.linkedin.com/company/frsecure/

Oscar, Pinky, and Eric are back with another session of the Hackle Box—a monthly conversation between the three cybersecurity experts about new and noteworthy threats, attacks, breaches, exploits, and (of course) how to avoid them.This month's episode includes:- AutoWarp vulnerability in Microsoft Azure- APC's Burning Down- Dirty Pipe- Russian Attack on UkrainePlease like, subscribe, and follow us on social!Facebook: https://www.facebook.com/frsecure/Twitter: https://twitter.com/frsecure/Instagram: https://www.instagram.com/frsecure/LinkedIn: https://www.linkedin.com/company/frsecure/

Oscar, Pinky, and Eric are back with another session of the Hackle Box—a monthly conversation between the three cybersecurity experts about new and noteworthy threats, attacks, breaches, exploits, and (of course) how to avoid them.This month's episode includes:- EyeMed fined $600k in data breach- Attackers reviving a 20-year-old tactic in Microsoft 365 phishing campaigns- Google auto-enables two-step verification for more than 150 Million users- A new tactic for data exfil using Power Automate in Microsoft 365Please like, subscribe, and follow us on social!Facebook: https://www.facebook.com/frsecure/Twitter: https://twitter.com/frsecure/Instagram: https://www.instagram.com/frsecure/LinkedIn: https://www.linkedin.com/company/frsecure/

Oscar, Pinky, and Eric are back with another session of the Hackle Box—a monthly conversation between the three cybersecurity experts about new and noteworthy threats, attacks, breaches, exploits, and (of course) how to avoid them.This month, the trio dives into:• Log4j Overview and updates • CSA advisory on Russian Cyber Threat to US Critical Infrastructure.• Norton and Cryptominers in your AV • Patch Tuesday: 96 patches to start 2022Please like, subscribe, and follow us on social!Facebook: https://www.facebook.com/frsecure/Twitter: https://twitter.com/frsecure/Instagram: https://www.instagram.com/frsecure/LinkedIn: https://www.linkedin.com/company/frsecure/

Oscar, Pinky, and Eric are back with another session of the Hackle Box—a monthly conversation between the three cybersecurity experts about new and noteworthy threats, attacks, breaches, exploits, and (of course) how to avoid them.This month, the trio dives into:• Cyber Actors Exploiting Microsoft Exchange in Furtherance of Malicious Activities• FBI Website exploited resulting in hoax email blast• Quakbot strikes again with QuakNightmare ExploitationIn addition to the newsworthy topics, they also have a couple of recurring segments:Phishing Report - ACH Fraud in Proxylogon attack chainHacker Tip of the MonthPlease like, subscribe, and follow us on social!Facebook: https://www.facebook.com/frsecureTwitter: https://twitter.com/FRSecureInstagram: https://www.instagram.com/frsecure/LinkedIn: https://www.linkedin.com/company/frse...

Oscar, Eric, and Pinky are back with another session of the Hackle Box, a series where they break down current cybersecurity threats, breaches, vulnerabilities, and more. This month, the trio discusses:Phishing Report – Holiday Phishing Trends Hacker Tip of the MonthNews Topics: ‘Trojan Source’ Bug Threatens the Security of All Code https://krebsonsecurity.com/2021/11/trojan-source-bug-threatens-the-security-of-all-code/ FBI Raids Chinese Point-of-Sale Giant PAX Technology https://krebsonsecurity.com/2021/10/fbi-raids-chinese-point-of-sale-giant-pax-technology/ Microsoft Fixes Exchange Server Zero-Day https://www.darkreading.com/vulnerabilities-threats/microsoft-s-nov-security-update-contains-fix-for-exchange-server-0-day SolarWinds Vulnerability Exploited in First Stage of Clop Ransomware Attacks https://www.darkreading.com/attacks-breaches/rise-in-clop-ransomware-attacks-tied-to Researcher Details Vulnerabilities Found in AWS API Gateway https://www.darkreading.com/vulnerabilities-threats/researcher-details-vulnerabilities-found-in-aws-api-gateway RYUK is back! https://thedfirreport.com/2020/10/08/ryuks-return/ https://thedfirreport.com/2020/10/18/ryuk-in-5-hours/ QR Codes Help Attackers Sneak Emails Past Security Controls https://www.darkreading.com/attacks-breaches/qr-codes-help-attackers-sneak-emails-past-security-controls Please like, subscribe, and follow us on social!Facebook: https://www.facebook.com/frsecureTwitter: https://twitter.com/FRSecureInstagram: https://www.instagram.com/frsecure/LinkedIn: https://www.linkedin.com/company/frsecure

Team Ambush members Oscar, Eric, and Pinky are back with another session of the Hackle Box—a series where they break down new and noteworthy breaches, vulnerabilities, exploits, and more over the last month.This month's topics:Microsoft going “passwordless”https://arstechnica.com/gadgets/2021/09/starting-today-you-can-remove-your-password-from-your-microsoft-account/OMIGOD—an exploitable hole in Microsoft open-source codehttps://nakedsecurity.sophos.com/2021/09/16/omigod-an-exploitable-hole-in-microsoft-open-source-code/New Azure Active Directory password brute-forcing flaw has no fixhttps://arstechnica.com/information-technology/2021/09/new-azure-active-directory-password-brute-forcing-flaw-has-no-fix/?amp=1Does your organization have a Security.txt file?https://krebsonsecurity.com/2021/09/does-your-organization-have-a-security-txt-file/CISA releases tool to help orgs fend off insider threat riskshttps://www.bleepingcomputer.com/news/security/cisa-releases-tool-to-help-orgs-fend-off-insider-threat-risks/?utm_content=182136940&utm_medium=social&utm_source=twitter&hss_channel=tw-71605818The REBOL Yell—novel exploit using REBOL for command-and-controlhttps://frsecure.com/blog/the-rebol-yell-new-rebol-exploit/Teasing Project HyphaeAs always, the session ends with the Hacker Tip of the Month from Eric and the Phishing Report with Pinky.Give this session a watch or listen, and feel free to send any comments, questions, or topic suggestions to [email protected] please like and subscribe!

The boys are back with another session of the Hackle Box. This month features in-depth discussion on four vulnerabilities/exploits that have gained the attention of Oscar, Pinky, and Eric over the last month or so.IDN Phishing — Outlook emails showing legitimate contact cards from lookalike domainshttps://arstechnica.com/information-technology/2021/09/microsoft-outlook-shows-real-persons-contact-info-for-idn-phishing-emails/Razer Mouse Bug — The bug allows admin privileges in Windows 10https://www.bleepingcomputer.com/news/security/razer-bug-lets-you-become-a-windows-10-admin-by-plugging-in-a-mouse/T-Mobile Breach — 48 million social security numbers accessed from a pool of 50 million affected customershttps://www.zdnet.com/article/t-mobile-hack-everything-you-need-to-know/Hacking the Hackers — New exploit available for download lets hackers crash Cobalt Strike team servershttps://arstechnica.com/gadgets/2021/08/critical-cobalt-strike-bug-leaves-botnet-servers-vulnerable-to-takedown/As always, the session ends with the Hacker Tip of the Month from Eric and the Phishing Report with Pinky.Give this session a watch or listen, and feel free to send any comments, questions, or topic suggestions to [email protected] please like and subscribe!