Qilin EDR killer infection chain https://infosec.pub/post/44480115 [https://infosec.pub/u/digicat] #blueteamsec

Autonomous Vulnerability Hunting with MCP https://infosec.pub/post/44479704 [https://infosec.pub/u/digicat] #blueteamsec

CTO at NCSC Summary: week ending April 5th https://infosec.pub/post/44479504 [https://infosec.pub/u/digicat] #blueteamsec

Mongoose: Preauth RCE and mTLS Bypass on Millions of Devices https://infosec.pub/post/44453859 [https://infosec.pub/u/digicat] #blueteamsec

Post Mortem: axios npm supply chain compromise https://infosec.pub/post/44452506 [https://infosec.pub/u/digicat] #blueteamsec

파이썬 기반 백도어를 유포하는 악성 LNK 및 유포 방식의 변화 (Kimsuky 그룹) - Malicious LNK distributing Python-based backdoors and changes in distribution methods (Kimsuky Group) https://infosec.pub/post/44452451 [https://infosec.pub/u/digicat] #blueteamsec

supply-chain-monitor: Automated monitoring of PyPI and npm for supply chain compromise. Polls registries for new releases, diffs against predecessor, uses an LLM to classify as benign or malicious https://infosec.pub/post/44452116 [https://infosec.pub/u/digicat] #blueteamsec

maude-hcs; generalized and modular toolchains for formally specifying and reasoning about Hidden Communication Systems (HCS) at real-world scales. https://infosec.pub/post/44451777 [https://infosec.pub/u/digicat] #blueteamsec

Cutting Through the Noise: A Technique-Based Approach to Hunting Web-Delivered Malware https://infosec.pub/post/44451211 [https://infosec.pub/u/digicat] #blueteamsec

New Whitepaper: Stealthy BPFDoor Variants are a Needle That Looks Like Hay https://infosec.pub/post/44450758 [https://infosec.pub/u/digicat] #blueteamsec