💜💜💜

delivr.to’s Top 10 Payloads (July ‘25): FileFix, Zip Smuggling and QRLJacking The fifth iteration of the delivr.to Top 10, including FileFix, Zip Smuggling and QRLJacking

It's here.

The latest iteration of our Top 10 includes the most important developments in initial access tradecraft; from macOS targeting of ClickFix, to Zip Smuggling, to QRLJacking.

Blog:

Practical Purple Teaming This practical introduction to collaborative security testing, or “purple teaming,” is a hands-on, lab-based guide to key methodologies for cybersecurity practitioners in any field.

With a process that began two and a half years ago, I'm very excited to announce that I've written a book with @nostarchpress.bsky.social! 🎉

"Practical Purple Teaming" tells you all you need to know to get started with collaborative offensive testing.

nostarch.com/purple-teaming

Home | delivr.to Bringing purple teaming to email. Emulate the latest offensive techniques to measure your stack's effectiveness, track improvement, and quantify the threats that can reach your users.

⚠️ CVE-2025-21298 - A vuln in Windows could enable remote code execution via a crafted RTF file, just by the user previewing the file in Outlook

🛡️ We've added a POC to delivr.to to test deliverability: delivr.to/?id=d22c9632...

🔍 Detect RTFs with our Sublime rule: sublime.security/feeds/delivr...

Twice a year we take a deep dive into the latest, notable tradecraft that has caught our attention in the world of phishing and initial access over the past six months. From Pastejacking, to image-less QR codes, to zip concatenation.

📚 Read our new Top 10: blog.delivr.to/delivr-tos-t...

Blue Team Con 2025. Training + Conference. September 4-7. Fairmont Chicago. www.blueteamcon.com

The Nearest Neighbor Attack: How A Russian APT Weaponized Nearby Wi-Fi Networks for Covert Access In early February 2022, notably just ahead of the Russian invasion of Ukraine, Volexity made a discovery that led to one of the most fascinating and complex incident investigations Volexity had ever w...

@volexity.com’s latest blog post describes in detail how a Russian APT used a new attack technique, the “Nearest Neighbor Attack”, to leverage Wi-Fi networks in close proximity to the intended target while the attacker was halfway around the world. 
 
Read more here: www.volexity.com/blog/2024/11...

I made a Detection Engineering starter pack, will be adding more as more folks jump over to bluesky! go.bsky.app/HenXJUR

New place, same content from delivr.to 🦋😁

This is a really simple, but effective, initial access technique for evading mail filtering and delivering blocked file types (the original sample straight-up delivers an EXE 👀). Great research from Perception Point!

hey hey! 👋