ForceMemo Campaign: Stealthy Takeover Compromises Hundreds of Python Repositories in Ongoing Supply Chain Assault

https://www.neuracybintel.com/articles/forcememo-campaign-stealthy-takeover-compromises-hundreds-of-python-repositories-in-ongoing-supply-chain-assault

Short summary: https://hackerworkspace.com/article/neuracyb-cybersecurity-intelligence-investigation-1

#cybersecurity #incidentresponse #threatintelligence

🎮 The Return of Malware & Monsters: Collaborative IR Gaming (2h Workshop) on May 6th!

𝗚𝗢𝗧𝗧𝗔 𝗖𝗢𝗡𝗧𝗔𝗜𝗡 '𝗘𝗠 𝗔𝗟𝗟: 𝗖𝗢𝗟𝗟𝗔𝗕𝗢𝗥𝗔𝗧𝗜𝗩𝗘 𝗜𝗡𝗖𝗜𝗗𝗘𝗡𝗧 𝗥𝗘𝗦𝗣𝗢𝗡𝗦𝗘 𝗧𝗥𝗔𝗜𝗡𝗜𝗡𝗚 𝗧𝗛𝗥𝗢𝗨𝗚𝗛 𝗚𝗔𝗠𝗜𝗡𝗚 with Klaus Agnoletti (@klausagnoletti) & 𝗚𝗟𝗘𝗡 𝗦𝗢𝗥𝗘𝗡𝗦𝗘𝗡 - 6 May, 9AM - 11AM

Back by popular demand after last year's hit! Ditch dull tabletops for Malware & Monsters – tabletop RPG meets creature-collecting where teams hunt/contain digital threats in story-driven scenarios with MITRE ATT&CK-mapped malware "malmons." Experience real IR chaos: coordination under pressure, incomplete intel, stakeholder drama. Take roles like Hunter, Analyst, Forensicator, Communicator to see how teams actually collaborate. Learn mechanics, build custom scenarios from real malware history, run live sims with "type effectiveness" for defenses and evolution for escalating attacks. Walk away with free, ready-to-use materials for fun, effective IR training.

Led by Klaus Agnoletti https://pretalx.com/orga/event/bsidesluxembourg-2026/speakers/SQVVHK/ (infosec pro since 2004, BSides København co-founder, storytelling cyber advisor, neurodiversity advocate) & Glen Sorensen https://pretalx.com/orga/event/bsidesluxembourg-2026/speakers/J3PRCC/ (Recovering CISO, DeleteMe Solutions Engineer, OSINT/AI expert, HackBack Gaming Incident Master).

📅 Conference dates and time: 6–8 May 2026 | 9AM - 6PM
📍 Venue: 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/
📅 Schedule: https://pretalx.com/bsidesluxembourg-2026/schedule/

Game your way to better IR skills – popular return engagement! 🎲

#BSidesLuxembourg2026 #IncidentResponse #CyberSecurityTraining #BlueTeam #GameBasedLearning #MITREATTACK #BSides #DnD #DFIR

🔵 THREAT INTELLIGENCE

CISA Flags Actively Exploited Wing FTP Vulnerability Leaking Server Paths

Vulnerability | CRITICAL
CVEs: CVE-2025-47813

CISA warned U.S. government agencies to secure their Wing FTP Server instances against an actively exploited vulnerability that may be chained in...

Full analysis:
https://www.yazoul.net/news/news/cisa-flags-actively-exploited-wing-ftp-vulnerability-leaking-server-paths

#ThreatIntel #SecurityNews #IncidentResponse

Boggy Serpens Threat Assessment

https://unit42.paloaltonetworks.com/boggy-serpens-threat-assessment/

Short summary: https://hackerworkspace.com/article/boggy-serpens-threat-assessment

#malware #cybersecurity #incidentresponse

Two playlists every day on hacking & defense. Discover the latest tools and techniques now. 🎥 https://www.youtube.com/playlist?list=PLXqx05yil_md7S1-8rQLzaZZ3BiXVYaXK

#CyberSecurity #IncidentResponse #CloudSecurity #Hacking #Phishing

Difference Between APTs and Malware: Understanding Advanced Cyber Threats | Huntress

https://www.huntress.com/malware-guide/difference-between-apts-and-malware

Short summary: https://hackerworkspace.com/article/difference-between-apts-and-malware-understanding-advanced-cyber-threats-huntress

#malware #cybersecurity #incidentresponse

Fancy Tools From Fancy Bear, Another Proxy Network Takedown, and A Look Ahead

https://decipher.sc/podcasts/fancy-tools-from-fancy-bear-another-proxy-network-takedown-and-a-look-ahead/

Short summary: https://hackerworkspace.com/article/fancy-tools-from-fancy-bear-another-proxy-network-takedown-and-a-look-ahead

#malware #cybersecurity #incidentresponse