🚨 Ongoing ClickFix Campaign Alert 🚨

Threat actors are using fake browser/app update prompts to trick users into running malicious PowerShell scripts (Win+R → Ctrl+V).

Block & monitor these defanged IoCs:

🔹 amalgama[.]lat
🔹 bearman[.]bond
🔹 burunduktracker[.]xyz
🔹 cosmostars[.]shop
🔹 lenders[.]digital
🔹 megamegalodon[.]click
🔹 merindashop[.]cyou
🔹 mob[.]lanjut[.]in
🔹 moll[.]lanjut[.]in

#ClickFix #ThreatIntel #CyberSecurity #InfoSec #Malware #IOC #DFIR #ThreatHunting #BlueTeam #SOC #CTI #DetectionEngineering #IncidentResponse #OSINT #PowerShell #WindowsSecurity

https://winbuzzer.com/2026/06/02/microsoft-backs-off-threats-against-security-researchers-xcxwbn/

Microsoft has ruled out action against security researchers after a backlash, narrowing legal risk around its wider disclosure dispute.

#SecurityResearch #Microsoft #Security #Cybersecurity #ZeroDay #MicrosoftWindows #WindowsSecurity #WindowsVulnerability #Windows11

https://winbuzzer.com/2026/06/01/github-ban-escalates-microsofts-yellowkey-dispute-xcxwbn/

GitHub appears to have banned the security researcher behind the YellowKey BitLocker exploit reveal, widening Microsoft's fight over public disclosures.

#GitHub #YellowKey #Microsoft #BitLocker #Windows11 #ZeroDay #Exploits #WindowsSecurity #Cybersecurity

What is Silver Ticket Attack: A Comprehensive Guide

In this article, I cover how Silver Ticket attacks work, common exploitation scenarios, detection techniques, and mitigation strategies.
https://denizhalil.com/2026/05/27/silver-ticket-attack-comprehensive-guide/

#CyberSecurity #ActiveDirectory #SilverTicket #Kerberos #CredentialAccess #RedTeam #BlueTeam #Pentesting #WindowsSecurity #InfoSec #ThreatDetection #DenizHalil

Kerbrute: Enumerating Active Directory Accounts

In this article, I cover how Kerberoasting works, common attack techniques, detection methods, and practical defense strategies.

🔗 https://denizhalil.com/2026/05/21/kerberoasting-attack-defense-guide/

#CyberSecurity #ActiveDirectory #Kerberoasting #Kerberos #CredentialAccess #RedTeam #BlueTeam #Pentesting #WindowsSecurity #InfoSec #ThreatDetection #DenizHalil

YellowKey: BitLocker Bypass or Backdoor

YellowKey, tracked as CVE-2026-45585, is a public BitLocker bypass that abuses WinRE/recovery-path behavior to expose a protected volume without the Windows password, recovery key, or AES cracking.

At the time of this post, the author’s GitHub and original YellowKey repo appear to be down.

Read more: https://forum.hashpwn.net/post/13339

#BitLocker #YellowKey #CVE202645585 #CyberSecurity #InfoSec #WindowsSecurity #TPM #FullDiskEncryption #hack #exploit #news #hashpwn

Basic Active Directory Enumeration: A Comprehensive Guide

In this article, I cover how Kerberoasting works, common attack techniques, detection methods, and practical defense strategies.
https://denizhalil.com/2025/05/05/basic-active-directory-enumeration-a-comprehensive-guide/

#CyberSecurity #ActiveDirectory #Kerberoasting #Kerberos #CredentialAccess #RedTeam #BlueTeam #Pentesting #WindowsSecurity #InfoSec #ThreatDetection #DenizHalil

A Windows 10 kernel off‑by‑one in the PagedPool allocator was showcased at WCTF 2018. By corrupting an I/O request packet the exploit gains arbitrary write in kernel space, opening the door to local privilege escalation or remote code execution. Microsoft patched it quickly, but the demo reminds us how subtle memory‑management bugs can break system trust.

#WindowsSecurity #KernelExploit #CTF #InfoSec #PatchTuesday

🔗 https://j00ru.vexillium.org/2018/07/exploiting-a-windows-10-pagedpool-off-by-one/

What is Kerberoasting Attack – Kerberoasting: A Comprehensive Guide

In this article, I cover how Kerberoasting works, common attack techniques, detection methods, and practical defense strategies.
https://denizhalil.com/2026/05/21/kerberoasting-attack-defense-guide/

#CyberSecurity #ActiveDirectory #Kerberoasting #Kerberos #CredentialAccess #RedTeam #BlueTeam #Pentesting #WindowsSecurity #InfoSec #ThreatDetection #DenizHalil