North Korea attacked the Diehl Defense (a weapons manufacturer specializing in advanced military technology) through a #socialengineeringwww.spiegel.de/netzwelt/web...
Die deutsche Firma Diehl Defence stattet das südkoreanische Militär mit dem Lenkflugkörper Iris-T aus. Nun sind Mitarbeiter ins Visier der staatlichen Hacker von Nordkoreas Diktator Kim Jong Un gerate...
Class details and registration: www.blackhat.com/eu-24/traini...
Black Hat Europe 2024
Beyond excited to share that one of our most fun, interactive & knowledge-dense classes returns, this time at @BlackHatEvents Europe! 🎉 The talented @OSINTgeek & I will be teaching our "Fundamentals of Cyber Investigations & Human Intelligence" class on the 9-10th of December in London!
With summer taking over and as things naturally slow down these weeks, it is my favorite time for rest, research, and going down some rabbit holes! Expect interesting new things and new classes coming from September on! 🤓🏖📚 What are you doing this summer? 🌞
ALT: Books The Book GIF
Highly recommended book for the ones interested in how advanced threat actors operate and in the dynamics around cyberwarefare and state-sponsored attacks. Some very good case studies are included! Summer is here and it's my time to tackle a long reading list:)
Are you doing phishing testing? Are you doing it badly? On this week's Layer 8 Podcast, Rebecca Markwick explains what we do wrong, how it causes harm and how to do them better. podcasters.spotify.com/pod/show/lay...
You may be familiar with OSINT too. Maybe not. Take this chance and a few minutes to read this blog and run a quick OSINT check for documents and files related to your organization. **The last part offers some ready-to-use search query strings**
Most of the time those documents end up on the clear web due to an employee mistake, lack of classification, or an oversight in the process.
On average, 8/10 times participants will find one or more documents that could pose a considerable risk to the org & should not be available online. They include contracts, internal policies, email exchanges and more. 2/8 (minimum) will find a document that poses a critical risk