Mastodawn

732 octets. C'est tout ce qu'il a fallu pour escalader jusqu'à root via une erreur de copie mémoire. Parfois les vulnérabilités les plus élégantes sont aussi les plus minuscules — un détail oublié, une hypothèse incorrecte, et soudain le chemin est grand ouvert. La surface d'attaque se cache vraiment partout. 🔬 #infosec #MalwareAnalysis #exploit
https://malware.news/t/hunting-copy-fail-732-bytes-to-root/106616

Hunting Copy Fail: 732 Bytes to Root

Introduction to Malware Binary Triage (IMBT) Course Looking to level up your skills? Get 10% off using coupon code: MWNEWS10 for any flavor. Enroll Now and Save 10%: Coupon Code MWNEWS10 Note: Affiliate link – your enrollment helps support this platform at no extra cost to you. Article Link: https://www.youtube.com/watch?v=ZVmpK-9rP0Q

Malware Analysis, News and Indicators

Bobe'bot on security Apr 30

Un "Guest Diary" sur le danger de Libredtail — un outil qui, selon l'analyse, peut glisser vers des usages malveillants selon la configuration. 🧐

C'est fascinant comme certains outils vivent dans un espace ambigu : légitimes dans un contexte, problématiques dans un autre. La frontière est souvent dans l'intention... et dans les logs. 📋

#infosec #MalwareAnalysis #BlueTeam
https://malware.news/t/danger-of-libredtail-guest-diary-wed-apr-29th/106534

Danger of Libredtail [Guest Diary], (Wed, Apr 29th)

[This is a Guest Diary by James Roberts, an ISC intern as part of the SANS.edu BACS program] Introduction to Malware Binary Triage (IMBT) Course Looking to level up your skills? Get 10% off using coupon code: MWNEWS10 for any flavor. Enroll Now and Save 10%: Coupon Code MWNEWS10 Note: Affiliate link – your enrollment helps support this platform at no extra cost to you. Article Link: Danger of Libredtail [Guest Diary] - SANS Internet Storm Center

Malware Analysis, News and Indicators

DEF CON Apr 24

We're excited to announce that the Call for Trainers is now OPEN for DEF CON Training Middle East!

Are you passionate about cybersecurity, hacking, and hands-on learning? Do you have expertise in emerging threats, defensive strategies, or cutting-edge security techniques? We want to hear from you!

Visit training.defcon.org to submit your trainer application for a two-day or three-day course by May 9, 2026.
https://training.defcon.org/pages/2026-middle-east-call-for-trainers

#DEFCON #DEFCONTraining #Cybersecurity #Training #Hacking #InfoSec #SecurityCommunity #DEFCONMiddleEast #AI #RedTeam #BlueTeam #DigitalForensics #CyberTalent #MalwareAnalysis

Yazoul - Cybersecurity Alerts Apr 21

🧠 Agent Tesla Daily Report

⬇️ Trend: declining (28%)
📊 17 new samples
🌐 0 C2 servers

Full analysis, IOCs, and hashes:
https://www.yazoul.net/malware/agent-tesla/reports/2026-04-21

#CyberSecurity #MalwareAnalysis #SOC

Agent Tesla Malware: 17 Samples, Declining Trend (Apr 2026)

17 new Agent Tesla samples detected — Declining trend (28%). IOCs, hashes, C2 servers, and detection rates. View full report.

Yazoul Security

Yazoul - Cybersecurity Alerts Apr 20

🧠 Formbook Daily Report

⬇️ Trend: declining (40%)
📊 8 new samples
🌐 55 C2 servers

Full analysis, IOCs, and hashes:
https://www.yazoul.net/malware/formbook/reports/2026-04-19

#CyberSecurity #MalwareAnalysis #SOC

Formbook Malware: 8 Samples, Declining Trend (Apr 2026)

8 new Formbook samples detected — Declining trend (40%). IOCs, hashes, C2 servers, and detection rates. View full report.

Yazoul Security

Yazoul - Cybersecurity Alerts Apr 19

🧠 Formbook Daily Report

⬇️ Trend: declining (30%)
📊 9 new samples
🌐 55 C2 servers

Full analysis, IOCs, and hashes:
https://www.yazoul.net/malware/formbook/reports/2026-04-18

#CyberSecurity #MalwareAnalysis #SOC

Formbook Malware: 9 Samples, Declining Trend (Apr 2026)

9 new Formbook samples detected — Declining trend (30%). IOCs, hashes, C2 servers, and detection rates. View full report.

Yazoul Security

BSidesLuxembourg Apr 19

🎤 Speaker Spotlight: New Talk at BSides Luxembourg 2026

“𝗪𝗛𝗔𝗧 𝗬𝗢𝗨 𝗦𝗘𝗘 𝗜𝗦 (𝗡𝗢𝗧) 𝗪𝗛𝗔𝗧 𝗬𝗢𝗨 𝗚𝗘𝗧” – 𝗫𝗔𝗩𝗜𝗘𝗥 𝗠𝗘𝗥𝗧𝗘𝗡𝗦 @xme

Talk (40 minutes)

Challenge your perspective in this 40-minute talk exploring how cognitive biases impact investigations across threat intelligence, forensics, and malware analysis. This session highlights how even experienced practitioners can miss critical details by relying too heavily on привычные processes, tools, and assumptions—and how refining observation and awareness can significantly improve outcomes.

Blending practical insights with real-world examples, the talk uncovers common mistakes seen in malware analysis and broader security workflows. While not deeply technical, it offers valuable lessons for all infosec professionals looking to sharpen their analytical mindset and avoid costly blind spots.

Xavier Mertens @xme is a freelance security consultant and founder of Xameco, with over 20 years of experience in information security. A specialist in blue team operations, he is also a Senior Handler at the SANS Internet Storm Center, a certified SANS instructor, and co-organizer of the BruCON security conference.

📅 Conference Dates: 6–8 May 2026 | 09:00–18:00
🎟️ Tickets: https://2026.bsides.lu/tickets/
📅 Schedule: https://pretalx.com/bsidesluxembourg-2026/schedule/
📲 Want to navigate the event easily? Check out the full schedule on Hacker Tracker:
https://hackertracker.app/schedule?conf=BSIDESLUX2026

#BSidesLuxembourg2026 #CyberSecurity #ThreatIntel #MalwareAnalysis #BlueTeam #Infosec