/
Navigation
C
Chronicles
Browse all articles
C
E
Explore
Semantic exploration
E
R
Research
Entity momentum
R
N
Nexus
Correlations & relationships
N
~
Story Arc
Topic evolution
S
Drift Map
Semantic trajectory animation
D
P
Posts
Analysis & commentary
P
Browse
@
Entities
Companies, people, products, technologies
Domains
Browse by publication source
Handles
Browse by social media handle
Detection
?
Concept Search
Semantic similarity search
!
High Impact Stories
Top coverage by position
+
Sentiment Analysis
Positive/negative coverage
*
Anomaly Detection
Unusual coverage patterns
Analysis
vs
Rivalry Report
Compare two entities head-to-head
/\
Semantic Pivots
Narrative discontinuities
!!
Crisis Response
Event recovery patterns
Connected
Nav: C E R N
Search: /
Command: ⌘K
Embeddings: large
VOICE ARCHIVE

Kurt Baumgartner

@k_sec
10 posts
2024-08-28
Black Lotus Labs has observed the zero-day exploitation of Versa Director servers, now assigned CVE-2024-39717, dating back to at least June 12, 2024. This exploitation campaign has remained highly targeted https://blog.lumen.com/...
2024-08-28 View on X
Washington Post

Sources: China-linked hackers penetrated deep into two big US ISPs and several smaller ones in recent months, using a zero-day flaw in Versa Networks software

Joseph Menn / Washington Post :

View original
2024-08-27
Black Lotus Labs has observed the zero-day exploitation of Versa Director servers, now assigned CVE-2024-39717, dating back to at least June 12, 2024. This exploitation campaign has remained highly targeted https://blog.lumen.com/...
2024-08-27 View on X
Washington Post

Sources: China-linked hackers penetrated deep into two big US ISPs and several smaller ones in recent months, using a zero-day flaw in Versa Networks software

Beijing's hacking effort has “dramatically stepped up from where it used to be,” says former top U.S cybersecurity official.

View original
2023-06-23
we go deeper yet into OpTriangulation... https://securelist.com/... funny thing, it reminds me of a simple string xor decoder that i wrote for purple lambert research a few years ago. course, many malware families use the same obfuscation... #include <stdio.h> #include... https://twitter.com/...
2023-06-23 View on X
BleepingComputer

Apple patches three zero-days in macOS, iOS, iPadOS, and watchOS, exploited by the Triangulation iMessage spyware reported by Kaspersky earlier in June 2023

https://www.macrumors.com/... Twitter: Daniel Monastersky / @identidadrobada : Apple fixes software flaws behind hacks that Russia blamed on the United States - The Washington Post...

View original
2023-06-22
we go deeper yet into OpTriangulation... https://securelist.com/... funny thing, it reminds me of a simple string xor decoder that i wrote for purple lambert research a few years ago. course, many malware families use the same obfuscation... #include <stdio.h> #include... https://twitter.com/...
2023-06-22 View on X
BleepingComputer

Apple patches three zero-days in macOS, iOS, iPadOS, and watchOS, exploited by the Triangulation iMessage spyware reported by Kaspersky earlier in June 2023

Apple addressed three new zero-day vulnerabilities exploited in attacks installing Triangulation spyware on iPhones via iMessage zero-click exploits.

View original
2021-05-09
walled gardens fail big when they fail https://twitter.com/...
2021-05-09 View on X
VICE

Apple emails disclosed in Epic trial show that 128M iPhone users, of which 18M were in the US and 55% in China, downloaded apps with XCodeGhost malware in 2015

As part of the trial against Epic Games, Apple released emails that show that 128 million users, of which 18 million were in the U.S. …

View original
2021-05-08
walled gardens fail big when they fail https://twitter.com/...
2021-05-08 View on X
VICE

Apple emails disclosed in Epic trial show that 128M iPhone users, of which 18M were in the US and 55% in China, downloaded apps with XCodeGhost malware in 2015

Lorenzo Franceschi-Bicchierai / VICE :

View original
walled gardens fail big when they fail https://twitter.com/...
2021-05-08 View on X
9to5Mac

Court docs detail Apple's app review process: 500+ people review ~100K apps/week, app rejection rate is less than 40%, less than 1% of rejections are appealed

As the Epic Games v. Apple court case goes forward, we have been learning more details about internal discussions within each company about their business models and more.

View original
2020-04-29
.@alexey_firsh on APT that goes after android users in SouthEast Asian countries with determination since at least 2016, distributes via Google Play and other markets into 2020 https://securelist.com/...
2020-04-29 View on X
Wired

Kaspersky researchers detail a targeted espionage campaign via Play Store spyware apps, aimed at a few hundred users in Vietnam, Bangladesh, Indonesia, India

Andy Greenberg / Wired :

View original
2019-11-06
“We assess with medium confidence that DarkUniverse is a part of the ItaDuke set of activities due to unique code overlaps” “We recorded around 20 victims geolocated in Syria, Iran, Afghanistan, Tanzania, Ethiopia, Sudan, Russia, Belarus and UAE” https://securelist.com/...
2019-11-06 View on X
ZDNet

Kaspersky identifies DarkUniverse, an APT that had been active from 2009 but went silent after a mention in Shadow Brokers' 2017 leak, and details 20 victims

aka the DarkUniverse APT https://www.zdnet.com/... https://twitter.com/...

View original
2019-09-12
most interesting trending in this list on the targeted side seems to be lazarus' increasing efforts on macos https://securelist.com/...
2019-09-12 View on X
Securelist

In-depth overview of threats faced by macOS users around the world shows phishing attempts, especially those using Apple's brand, are on the rise

Securelist :

View original