Commercial software has regular updates, of course the bad guys have updates as well. Agent Tesla Updates SMTP Data Exfiltration Technique – SANS Internet Storm Centre
Log4j updates
Latest update about Log4j from SANS Internet Diary. Log4j 2 Security Vulnerabilities Update Guide – SANS Internet Storm Centre
Did the Polish government use Pegasus?
The Guardian has an article investigating the claim that the Polish government has used the Pegasus spyware against its opposition. There have been calls for an investigation by the opposition leader Donald Tusk. Claims Polish government used spyware is ‘crisis for democracy’, says opposition | Poland | The Guardian
Software abuse at source
Hackers are abusing the MSBuild environment to embedded malicious code into applications to evade detection. Attackers are abusing MSBuild to evade defences and implant Cobalt Strike beacons – SANS Internet Storm Centre
Installing crypto miners using Log4Shell vulnerabilities
Example of how attackers are trying to push crypto miners via Log4Shell – SANS Internet Storm Centre
