DEV Community

Mark0 profile picture

Mark0

404 bio not found

Joined Joined on 
ShimBad the Sailor, Part 3
mark0_617b45cda9782a profile

ShimBad the Sailor, Part 3

#cybersecurity #infosec #windows #reverseengineering
1
Comments
1 min read
ChatGPT in your inbox? Investigating Entra apps that request unexpected permissions
mark0_617b45cda9782a profile

ChatGPT in your inbox? Investigating Entra apps that request unexpected permissions

#cybersecurity #infosec #azure #oauth
1
Comments
1 min read
The million-dollar front door and the tailgater: Why strong auth could fail at SaaS session integrity
mark0_617b45cda9782a profile

The million-dollar front door and the tailgater: Why strong auth could fail at SaaS session integrity

#cybersecurity #infosec #identity #infostealer
Comments
1 min read
From Access to Execution: Securing Identity in the Age of Autonomous Agents
mark0_617b45cda9782a profile

From Access to Execution: Securing Identity in the Age of Autonomous Agents

#cybersecurity #infosec #identity #ai
Comments
1 min read
CrowdStrike 2026 Global Threat Report: The Evasive Adversary Wields AI
mark0_617b45cda9782a profile

CrowdStrike 2026 Global Threat Report: The Evasive Adversary Wields AI

#cybersecurity #infosec #cloudsecurity #threatintelligence
Comments
1 min read
CrowdStrike FalconID Brings Phishing-Resistant MFA to Falcon Next-Gen Identity Security
mark0_617b45cda9782a profile

CrowdStrike FalconID Brings Phishing-Resistant MFA to Falcon Next-Gen Identity Security

#cybersecurity #infosec #mfa #identitysecurity
Comments
1 min read
New Dohdoor malware campaign targets education and health care
mark0_617b45cda9782a profile

New Dohdoor malware campaign targets education and health care

#cybersecurity #infosec #malware #dnsoverhttps
1
Comments
1 min read
Make The Most of Network Firewall Logs with Elastic Security
mark0_617b45cda9782a profile

Make The Most of Network Firewall Logs with Elastic Security

#cybersecurity #infosec #monitoring #network
1
Comments
1 min read
Malware Analysis: How to Analyze and Understand Malware
mark0_617b45cda9782a profile

Malware Analysis: How to Analyze and Understand Malware

#cybersecurity #infosec #malware #tutorial
Comments
1 min read
Building a Detection Foundation: Part 1 - The Single-Source Problem
mark0_617b45cda9782a profile

Building a Detection Foundation: Part 1 - The Single-Source Problem

#cybersecurity #infosec #windows #logging
Comments
1 min read
Zyxel warns of critical RCE flaw affecting over a dozen routers
mark0_617b45cda9782a profile

Zyxel warns of critical RCE flaw affecting over a dozen routers

#cybersecurity #infosec #networksecurity #vulnerability
Comments
1 min read
Trend Micro warns of critical Apex One code execution flaws
mark0_617b45cda9782a profile

Trend Micro warns of critical Apex One code execution flaws

#cybersecurity #infosec #vulnerability #patch
Comments
1 min read
Henry IV, Hotspur, Hal, and hallucinations
mark0_617b45cda9782a profile

Henry IV, Hotspur, Hal, and hallucinations

#cybersecurity #infosec #malware #threatintel
Comments
1 min read
Critical Cisco SD-WAN bug exploited in zero-day attacks since 2023
mark0_617b45cda9782a profile

Critical Cisco SD-WAN bug exploited in zero-day attacks since 2023

#cybersecurity #infosec #networking #vulnerability
1
Comments
1 min read
Caught in the Hook: RCE and API Token Exfiltration Through Claude Code Project Files | CVE-2025-59536 | CVE-2026-21852
mark0_617b45cda9782a profile

Caught in the Hook: RCE and API Token Exfiltration Through Claude Code Project Files | CVE-2025-59536 | CVE-2026-21852

#cybersecurity #infosec #ai #vulnerability
Comments
1 min read
A Deep Dive into the GetProcessHandleFromHwnd API
mark0_617b45cda9782a profile

A Deep Dive into the GetProcessHandleFromHwnd API

#cybersecurity #infosec #windows #exploit
1
Comments
1 min read
Exposing the Undercurrent: Disrupting the GRIDTIDE Global Cyber Espionage Campaign
mark0_617b45cda9782a profile

Exposing the Undercurrent: Disrupting the GRIDTIDE Global Cyber Espionage Campaign

#cybersecurity #infosec #threatintelligence #malware
Comments
1 min read
ShimBad the Sailor, Part 3
mark0_617b45cda9782a profile

ShimBad the Sailor, Part 3

#cybersecurity #infosec #windows #shim
Comments
1 min read
Beyond Behaviors: AI-Augmented Detection Engineering with ES|QL COMPLETION
mark0_617b45cda9782a profile

Beyond Behaviors: AI-Augmented Detection Engineering with ES|QL COMPLETION

#cybersecurity #infosec #elasticsearch #ai
1
Comments
1 min read
ChatGPT in your inbox? Investigating Entra apps that request unexpected permissions
mark0_617b45cda9782a profile

ChatGPT in your inbox? Investigating Entra apps that request unexpected permissions

#cybersecurity #infosec #azure #oauth
1
Comments
1 min read
The million-dollar front door and the tailgater: Why strong auth could fail at SaaS session integrity
mark0_617b45cda9782a profile

The million-dollar front door and the tailgater: Why strong auth could fail at SaaS session integrity

#cybersecurity #infosec #identity #authentication
Comments
1 min read
From Access to Execution: Securing Identity in the Age of Autonomous Agents
mark0_617b45cda9782a profile

From Access to Execution: Securing Identity in the Age of Autonomous Agents

#cybersecurity #infosec #identity #ai
Comments
1 min read
Faking it on the phone: How to tell if a voice call is AI or not
mark0_617b45cda9782a profile

Faking it on the phone: How to tell if a voice call is AI or not

#cybersecurity #infosec #ai #fraud
Comments
1 min read
CrowdStrike 2026 Global Threat Report: The Evasive Adversary Wields AI
mark0_617b45cda9782a profile

CrowdStrike 2026 Global Threat Report: The Evasive Adversary Wields AI

#cybersecurity #infosec #threatintelligence #cloudsecurity
Comments
1 min read
Active exploitation of Cisco Catalyst SD-WAN by UAT-8616
mark0_617b45cda9782a profile

Active exploitation of Cisco Catalyst SD-WAN by UAT-8616

#cybersecurity #infosec #networking #vulnerability
Comments
1 min read
The Art of Deception: How Threat Actors Master Typosquatting Campaigns to Bypass Detection
mark0_617b45cda9782a profile

The Art of Deception: How Threat Actors Master Typosquatting Campaigns to Bypass Detection

#cybersecurity #infosec #phishing #security
Comments
1 min read
Make The Most of Network Firewall Logs with Elastic Security
mark0_617b45cda9782a profile

Make The Most of Network Firewall Logs with Elastic Security

#cybersecurity #infosec #networking #elastic
Comments
1 min read
Malware Analysis: How to Analyze and Understand Malware
mark0_617b45cda9782a profile

Malware Analysis: How to Analyze and Understand Malware

#cybersecurity #infosec #malware #tutorial
Comments
1 min read
Building a Detection Foundation: Part 1 - The Single-Source Problem
mark0_617b45cda9782a profile

Building a Detection Foundation: Part 1 - The Single-Source Problem

#cybersecurity #infosec #windows #blueteam
Comments
1 min read
Caught in the Hook: RCE and API Token Exfiltration Through Claude Code Project Files | CVE-2025-59536 | CVE-2026-21852
mark0_617b45cda9782a profile

Caught in the Hook: RCE and API Token Exfiltration Through Claude Code Project Files | CVE-2025-59536 | CVE-2026-21852

#cybersecurity #infosec #ai #rce
Comments
1 min read
Exposing the Undercurrent: Disrupting the GRIDTIDE Global Cyber Espionage Campaign
mark0_617b45cda9782a profile

Exposing the Undercurrent: Disrupting the GRIDTIDE Global Cyber Espionage Campaign

#cybersecurity #infosec #malware #cloudsecurity
Comments
1 min read
Lazarus Group Uses Medusa Ransomware in Middle East and U.S. Healthcare Attacks
mark0_617b45cda9782a profile

Lazarus Group Uses Medusa Ransomware in Middle East and U.S. Healthcare Attacks

#cybersecurity #infosec #ransomware #lazarus
Comments
1 min read
Iran's MuddyWater Targets Orgs With Fresh Malware as Tensions Mount
mark0_617b45cda9782a profile

Iran's MuddyWater Targets Orgs With Fresh Malware as Tensions Mount

#cybersecurity #infosec #malware #muddywater
Comments
1 min read
MuddyWater Targets MENA Organizations with GhostFetch, CHAR, and HTTP_VIP
mark0_617b45cda9782a profile

MuddyWater Targets MENA Organizations with GhostFetch, CHAR, and HTTP_VIP

#cybersecurity #infosec #malware #rust
Comments
1 min read
Malicious OpenClaw Skills Used to Distribute Atomic MacOS Stealer
mark0_617b45cda9782a profile

Malicious OpenClaw Skills Used to Distribute Atomic MacOS Stealer

#cybersecurity #infosec #macos #ai
Comments 1
1 min read
Faking it on the phone: How to tell if a voice call is AI or not
mark0_617b45cda9782a profile

Faking it on the phone: How to tell if a voice call is AI or not

#cybersecurity #infosec #ai #deepfake
Comments
1 min read
Bring the Fight to the Edge: Turning Time Into an Advantage in OT Security
mark0_617b45cda9782a profile

Bring the Fight to the Edge: Turning Time Into an Advantage in OT Security

#cybersecurity #infosec #otsecurity #threatintelligence
Comments
1 min read
SEC Consult SA-20260218-0 :: Multiple Critical Vulnerabilities in NesterSoft WorkTime (on-prem/cloud)
mark0_617b45cda9782a profile

SEC Consult SA-20260218-0 :: Multiple Critical Vulnerabilities in NesterSoft WorkTime (on-prem/cloud)

#cybersecurity #infosec #vulnerability #rce
Comments
1 min read
Building a Detection Foundation: Part 1 - The Single-Source Problem
mark0_617b45cda9782a profile

Building a Detection Foundation: Part 1 - The Single-Source Problem

#cybersecurity #infosec #detection #sysmon
Comments
1 min read
Lazarus Group Uses Medusa Ransomware in Middle East and U.S. Healthcare Attacks
mark0_617b45cda9782a profile

Lazarus Group Uses Medusa Ransomware in Middle East and U.S. Healthcare Attacks

#cybersecurity #infosec #ransomware #threatintelligence
Comments
1 min read
Iran's MuddyWater Targets Orgs With Fresh Malware as Tensions Mount
mark0_617b45cda9782a profile

Iran's MuddyWater Targets Orgs With Fresh Malware as Tensions Mount

#cybersecurity #infosec #malware #threatintelligence
Comments
1 min read
MuddyWater Targets MENA Organizations with GhostFetch, CHAR, and HTTP_VIP
mark0_617b45cda9782a profile

MuddyWater Targets MENA Organizations with GhostFetch, CHAR, and HTTP_VIP

#cybersecurity #infosec #malware #threatintel
Comments
1 min read
Beyond Behaviors: AI-Augmented Detection Engineering with ES|QL COMPLETION
mark0_617b45cda9782a profile

Beyond Behaviors: AI-Augmented Detection Engineering with ES|QL COMPLETION

#cybersecurity #infosec #elastic #ai
Comments
1 min read
ChatGPT in your inbox? Investigating Entra apps that request unexpected permissions
mark0_617b45cda9782a profile

ChatGPT in your inbox? Investigating Entra apps that request unexpected permissions

#cybersecurity #infosec #azure #oauth
1
Comments
1 min read
2025: The Untold Stories of Check Point Research
mark0_617b45cda9782a profile

2025: The Untold Stories of Check Point Research

#cybersecurity #infosec #threatintelligence #malware
Comments
1 min read
Malicious OpenClaw Skills Used to Distribute Atomic MacOS Stealer
mark0_617b45cda9782a profile

Malicious OpenClaw Skills Used to Distribute Atomic MacOS Stealer

#cybersecurity #infosec #malware #macos
Comments
1 min read
Faking it on the phone: How to tell if a voice call is AI or not
mark0_617b45cda9782a profile

Faking it on the phone: How to tell if a voice call is AI or not

#cybersecurity #infosec #ai #deepfake
Comments
1 min read
Bring the Fight to the Edge: Turning Time Into an Advantage in OT Security
mark0_617b45cda9782a profile

Bring the Fight to the Edge: Turning Time Into an Advantage in OT Security

#cybersecurity #infosec #otsecurity #threatintelligence
Comments
1 min read
CrowdStrike 2026 Global Threat Report: The Evasive Adversary Wields AI
mark0_617b45cda9782a profile

CrowdStrike 2026 Global Threat Report: The Evasive Adversary Wields AI

#cybersecurity #infosec #threatintelligence #ai
Comments
1 min read
SEC Consult SA-20260218-0 :: Multiple Critical Vulnerabilities in NesterSoft WorkTime (on-prem/cloud)
mark0_617b45cda9782a profile

SEC Consult SA-20260218-0 :: Multiple Critical Vulnerabilities in NesterSoft WorkTime (on-prem/cloud)

#cybersecurity #infosec #vulnerability #rce
Comments
1 min read
The Art of Deception: How Threat Actors Master Typosquatting Campaigns to Bypass Detection
mark0_617b45cda9782a profile

The Art of Deception: How Threat Actors Master Typosquatting Campaigns to Bypass Detection

#cybersecurity #infosec #phishing #typosquatting
Comments
1 min read
Lazarus Group Uses Medusa Ransomware in Middle East and U.S. Healthcare Attacks
mark0_617b45cda9782a profile

Lazarus Group Uses Medusa Ransomware in Middle East and U.S. Healthcare Attacks

#cybersecurity #infosec #malware #ransomware
Comments
1 min read
Iran's MuddyWater Targets Orgs With Fresh Malware as Tensions Mount
mark0_617b45cda9782a profile

Iran's MuddyWater Targets Orgs With Fresh Malware as Tensions Mount

#cybersecurity #infosec #malware #threatintelligence
Comments
1 min read
MuddyWater Targets MENA Organizations with GhostFetch, CHAR, and HTTP_VIP
mark0_617b45cda9782a profile

MuddyWater Targets MENA Organizations with GhostFetch, CHAR, and HTTP_VIP

#cybersecurity #infosec #malware #threatintelligence
Comments
1 min read
OSINT: How to Find, Use, and Control Open-Source Intelligence
mark0_617b45cda9782a profile

OSINT: How to Find, Use, and Control Open-Source Intelligence

#cybersecurity #infosec #osint #privacy
Comments
1 min read
macOS JIT Memory
mark0_617b45cda9782a profile

macOS JIT Memory

#cybersecurity #infosec #macos #exploitation
Comments
1 min read
AI in the Middle: Turning Web-Based AI Services into C2 Proxies & The Future Of AI Driven Attacks
mark0_617b45cda9782a profile

AI in the Middle: Turning Web-Based AI Services into C2 Proxies & The Future Of AI Driven Attacks

#cybersecurity #infosec #malware #ai
Comments
1 min read
The Immutable Illusion: Pwning Your Kernel with Cloud Files
mark0_617b45cda9782a profile

The Immutable Illusion: Pwning Your Kernel with Cloud Files

#cybersecurity #infosec #windows #exploit
Comments
1 min read
AI platforms can be abused for stealthy malware communication
mark0_617b45cda9782a profile

AI platforms can be abused for stealthy malware communication

#cybersecurity #infosec #ai #malware
Comments
1 min read
Side-Channel Attacks Against LLMs
mark0_617b45cda9782a profile

Side-Channel Attacks Against LLMs

#cybersecurity #infosec #ai #networksecurity
Comments
1 min read
loading...