Finding XSS in a million websites (cPanel CVE-2023-29489) – Assetnote
https://blog.assetnote.io/2023/04/26/xss-million-websites-cpanel/![Finding XSS in a million websites (cPanel CVE-2023-29489) – Assetnote](/image/screenshot/ae04f1245e08d49c9433d59f6a91baff.png)
abuse.ch on Twitter: "SERVICE UPDATE | Today, Twitter has revoked our access to their authentication API. The impact is submissions to the https://t.co/b7WQ1Ihzpw platforms cannot be made. We are urgently working to find a different authentication method. Please bear with us - we'll update again…" / Twitter
https://twitter.com/i/web/status/1651535977368678401![abuse.ch on Twitter: "SERVICE UPDATE | Today, Twitter has revoked our access to their authentication API. The impact is submissions to the https://t.co/b7WQ1Ihzpw platforms cannot be made. We are urgently working to find a different authentication method. Please bear with us - we'll update again…" / Twitter](/image/screenshot/7099f7111812b51376874ae839557e5d.png)
vx-underground on Twitter: "Today Lockbit ransomware group ransomed a day care center. When Lockbit ransomware group administration discovered the victim they issued an apology and claim to have fired the affiliate. "I am ashamed" - Lockbit administration https://t.co/n836hnDKwZ" / Twitter
https://twitter.com/vxunderground/status/1651384225692786689![vx-underground on Twitter: "Today Lockbit ransomware group ransomed a day care center. When Lockbit ransomware group administration discovered the victim they issued an apology and claim to have fired the affiliate. "I am ashamed" - Lockbit administration https://t.co/n836hnDKwZ" / Twitter](/image/screenshot/b48cfe03b1fbc5285216ea3b31c5a56b.png)
Qakbot/Qakbot_obama257_27.04.2023.txt at main · pr0xylife/Qakbot · GitHub
https://github.com/pr0xylife/Qakbot/blob/main/Qakbot_obama257_27.04.2023.txt![Qakbot/Qakbot_obama257_27.04.2023.txt at main · pr0xylife/Qakbot · GitHub](/image/screenshot/c40b2c9fc01395a5cb74f47024993e3c.png)
Evasive Panda APT group delivers malware via updates for popular Chinese software | WeLiveSecurity
https://www.welivesecurity.com/2023/04/26/evasive-panda-apt-group-malware-updates-popular-chinese-software/![Evasive Panda APT group delivers malware via updates for popular Chinese software | WeLiveSecurity](/image/screenshot/662fb02e2722e3b133691dcc4206e2f5.png)
![GitHub - TheD1rkMtr/BlockOpenHandle: Block any Process to open HANDLE to your process , only SYTEM is allowed to open handle to your process ,with that you can avoid remote memory scanners](/image/screenshot/68da02cb3f24a25e7d6d33b3e9066886.png)
Unleashing the Power of Shimcache with Chainsaw | WithSecure™ Labs
https://withsecure.smh.re/19H![Unleashing the Power of Shimcache with Chainsaw | WithSecure™ Labs](/image/screenshot/899eb71a909782ea4016b5d4a8b29cee.png)
Avast Anti-Virus privileged arbitrary file create on virus quarantine (CVE-2023-1585 and CVE-2023-1587) | the-deniss.github.io
https://the-deniss.github.io/posts/2023/04/26/avast-privileged-arbitrary-file-create-on-quarantine.html![Avast Anti-Virus privileged arbitrary file create on virus quarantine (CVE-2023-1585 and CVE-2023-1587) | the-deniss.github.io](/image/screenshot/43fd34cde24cd84586f1127107d7c96b.png)
Clop, LockBit ransomware gangs behind PaperCut server attacks
https://www.bleepingcomputer.com/news/security/clop-lockbit-ransomware-gangs-behind-papercut-server-attacks/![Clop, LockBit ransomware gangs behind PaperCut server attacks](/image/screenshot/59e7cc970c31cd610399eb34f1f4aa7c.png)
S3cur3Th1sSh1t on Twitter: "You want to check all Processes for an AV/EDR DLL not being loaded? Maybe a good process to inject into or force Load your implant into? Maybe there are even exclusions for some Processes due to false positive rates? Here's a Script for it: https://t.co/2D8ikEkUZl https://t.co/XuMqz6SSRd" / Twitter
https://twitter.com/ShitSecure/status/1646431713227055105![S3cur3Th1sSh1t on Twitter: "You want to check all Processes for an AV/EDR DLL not being loaded? Maybe a good process to inject into or force Load your implant into? Maybe there are even exclusions for some Processes due to false positive rates? Here's a Script for it: https://t.co/2D8ikEkUZl https://t.co/XuMqz6SSRd" / Twitter](/image/screenshot/642b59ab81efc770b935f9b08e570739.png)
Procedural Detections to Uncover PsExec Style Lateral Movement | by Ankith Bharadwaj | Apr, 2023 | Medium
https://bherunda.medium.com/procedural-detections-to-uncover-psexec-style-lateral-movement-5e83932eeb7e![Procedural Detections to Uncover PsExec Style Lateral Movement | by Ankith Bharadwaj | Apr, 2023 | Medium](/image/screenshot/a90020d7cf174810ac60a62aea5261a9.png)
GitHub - Kudaes/Bin-Finder: Detect EDR's exceptions by inspecting processes' loaded modules
https://github.com/Kudaes/Bin-Finder![GitHub - Kudaes/Bin-Finder: Detect EDR's exceptions by inspecting processes' loaded modules](/image/screenshot/df7d4bf53100fa504a5e79be13994401.png)