"Before migrating to YARA-X, timeouts affected roughly 2% of scanned files. With YARA-X, this number has dropped to under 0.2%"

Meta's WhatsApp says Israeli spyware company Paragon targeted users -

RT @StrikeReadyLabs: #dailyphish it's 10pm, do you know how your gateway handles ".searchConnector-ms" extensions? "Mechanism of data sha…

includes HoneyMyte plugX cleanup discussion. criticizes FBI announcement and "whatif" risks, but leaves out any comparison to the recent defective Crowdstrike update disaster (best current "whatif" and contractual comparisons). not a worm. good talk tho

FBI coordinates cleanup for some HoneyMyte plugX-infected systems in the US, c2: 45.142.166[.]112. Related APT activity spanned 2020-2022, afaik first focused on Myanmar and southeast Asian targets. Technically, not worm - required user interaction

<-- lots in there...i.e. fed networks required to lock down BGP, DNS encryption requirements, post-quantum crypto guidance from CISA... etc etc

FLARE's backscatter sounds cool. some AV vendors built such a thing maybe more than a decade ago? very valuable, but the scripts to seek config data can be incredibly complex and difficult to maintain

RT @ddimolfetta: Salt Typhoon sanctions coming, via @nakashimae - “The hackers … work for a Beijing-based firm, according to several offici…

@markpars0ns @bkMSFT nicely done

RT @RustyNoob619: #100DaysofYARA Day 10 A simple YARA rule to detect PE files that have time stamps from the future 🐧

RT @StrikeReadyLabs: interesting spin on browser-in-a-browser #apt thunderbird-production.up.railway[.]app

RT @cybercentre_ca: #CyberAlert | BeyondTrust security advisory A critical vulnerability has been discovered in BeyondTrust Privileged Rem…

@ShaneHuntley richard rorty would be pleased

RT @StrikeReadyLabs: If you're interested, feel free to download from here:

no powerlifter here. But spent a morning session with Zack McChesney and picked up 335 pounds easy with decent form. Next time we'll put more on the bar!

RT @haveibeenpwned: New breach: More than 90M rows of French citizen data with 28M unique email addresses was found publicly facing in Sep.…