To learn more, read the full article: thehackernews.com/2024/04/popula…

'The overall compromise spanned over two years,' SentinelOne researchers Sarthak Misraa and Antonio Pirozzi  said in an analysis published last week. 'Under the alias Jia Tan, the actor began contributing to the xz project on October 29, 2021.'

'Initially, the commits were…

🚪 Our analysis of the xz backdoor and subtle changes in the code commits suggest that further backdoors were being planned. In our latest blog post by Sarthak Misraa and Antonio Pirozzi, we provide a technical breakdown.

Read more: sentinelone.com/blog/xz-utils-…

Our analysis on the intriguing #liblzma supply chain case 🔥
By following all the interactions we provided an interesting angle on the TA's motivations and plan to Inject Further Vulnerabilities. It was a pleasure to work with duckie on this!!
sentinelone.com/blog/xz-utils-…

Nessuna donna ha calpestato il suolo lunare. Eppure, a portare l’umanità sulla luna ha contribuito in maniera determinante una donna, Katherine Johnson, la matematica che ha calcolato a mano le traiettorie di volo. Se ti dicono che la scienze non è per ragazze, tu non credergli!

Seems that the #anydesk compromised cert is still valid..
AnyDesk Software Who are you waiting for to revoke the certificate?🤔

Aperte le immatricolazioni per l’Anno Accademico 23/24. Anche quest’anno #unisannio investe sul futuro dei giovani confermando l’esenzione totale per tutti i redditi fino a 28.000 Euro e prevedendo ulteriori riduzioni per i redditi fino a 30.000 Euro e per gli studenti meritevoli

After 3 years at Google TAG, I'm delighted to announce an exciting new chapter in my career. I'm joining Cisco Talos Intelligence Group to conduct threat intelligence research and counter threat actors. Looking forward to collaborating with brilliant minds and growing in this new adventure.

Morning

Think if Ransomware operators gonna publish exfiltrated data with a 10 hours video on YouTube 😵‍💫
Infinite storage space at no costs 🥳

🔥 Brace yourself #LocalPotato is out 🥔
Our new NTLM reflection attack in local authentication allows for arbitrary file read/write & elevation of privilege.
Patched by Microsoft, but other protocols may still be vulnerable.
cc ap

Enjoy! 👇
localpotato.com/localpotato_ht…

#BlackBasta #Ransomware back to business with a new TOR domain

Ext: .[random_9_chars]
Ransom Note: instructions_read_me.txt
TOR: https://bastad5huzwkepdixedg2gekg7jk22ato24zyllp6lnjx7wdtyctgvyd[.]onion/

Sample 👇
virustotal.com/gui/file/2558d…

🌐 Hive #Ransomware team website seized and shut down 🚨

#Hive

Fa piacere vedere che il nostro articolo “A systematic literature review of blockchain and smart contract development: techniques, tools, and open challenges” è fra gli articoli più citati del Journal Of Systems and Software negli ultimi tre anni
doi.org/10.1016/j.jss.…

✨On #SentinelLabs ! Black Basta operational #TTPs revealing new tools and techniques and a link to FIN7. By Antonio Cocomazzi and Antonio Pirozzi.

sentinelone.com/labs/black-bas…

#ADFind #PrintNightmare #ZeroLogon and #NoPac #privilegeescalation .

Glad to share our latest research about #BlackBasta #ransomware group which we found to have a connection with the #FIN7 group 🔥

Our analysis here 👇

cc Antonio Pirozzi

sentinelone.com/labs/black-bas…

🔥🔥🔥Glad to share our latest research piece that I coauthored with Antonio Cocomazzi which unveils strong connections between #BlackBasta and #FIN7 based on exclusive shared tools. Moreover we revealed previously unknown tools and techniques.
SentinelLabs Brian Bartholomew Phil Stokes ⫍🐠⫎

Find the full report:
#BlackBasta #Ransomware | Attacks deploy custom #EDR #evasion tools tied to #FIN7
assets.sentinelone.com/sentinellabs22…

✨New on #SentinelLabs ! Black Basta operational #TTPs revealing new tools and techniques and a link to FIN7. By Antonio Cocomazzi and Antonio Pirozzi.

sentinelone.com/labs/black-bas…

#ADFind #PrintNightmare #ZeroLogon and #NoPac #privilegeescalation .

The SentinelOne team is deeply saddened by the sudden loss of our former teammate, & friend of so many, Vitali Kremez. Vitali was a founding member of SentinelLabs & made numerous contributions to the security community. Our thoughts are with his family.