Dark Reading

Storm-0249 Abuses EDR Processes in Stealthy Attacks

The initial access broker has been weaponizing endpoint detection and response (EDR) platforms and Windows utilities in ...
MUO on MSN

This portable Windows toolkit fits on a single USB and replaces dozens of apps

However, NirLauncher has improved my approach to Windows troubleshooting. This free portable toolkit bundles over 200 utilities from NirSoft into a single package that doesn't require installation.
The Hacker News

.NET SOAPwn Flaw Opens Door for File Writes and Remote Code Execution via Rogue WSDL

Research shows a .NET proxy design flaw enables file writes and RCE through attacker-supplied WSDL in multiple products.
The Hacker News

Active Attacks Exploit Gladinet's Hard-Coded Keys for Unauthorized Access and Code Execution

Huntress reports active attacks abusing Gladinet’s fixed cryptographic keys to forge tickets and gain remote code execution ...
Infosecurity Magazine

ClickFix Social Engineering Sparks Rise of CastleLoader Attacks

A new malware campaign has been identified using a Python-based delivery system to deploy CastleLoader malware ...