March 24, 2026, the #LiteLLM #Python package was compromised, one uses a .pth file in site-packages to execute malicious code on every Python startup. The mechanism behind this? Python's site module.

#Redteam #Hak5 #CyberNews #BlueTeam #OpSec #WebDev #CyberSecurity
youtu.be/XylwUXpxAcY?...

#BUTTERFLYEFFECT
#GEMINI
#EVOLUTION
#ENDCITIZENSUNITED
#LOCKTRUMPUP
#IGNORETRUMP
#NOKINGS
#NOKINGS3
#REVOLUTION
#FIGHTTHEPOWER
#STANDUP
#HERECOMESTHEBOOM
#JUSTICE
#INJUSTICE
#ELECTION
#VOTE
#DEMS
#BLUETEAM
#VOTINGRIGHTS
#WOMENSRIGHTS
#CIVILRIGHTS
#HUMANRIGHTS

youtu.be/lYHA_7vxrgc?...

#BUTTERFLYEFFECT
#EVOLUTION
#ENDCITIZENSUNITED
#LOCKTRUMPUP
#IGNORETRUMP
#NOKINGS
#NOKINGS3
#REVOLUTION
#FIGHTTHEPOWER
#STANDUP
#HERECOMESTHEBOOM
#JUSTICE
#INJUSTICE
#ELECTION
#VOTE
#DEMS
#BLUETEAM
#VOTINGRIGHTS
#WOMENSRIGHTS
#CIVILRIGHTS
#HUMANRIGHTS
#LIVINGWAGE

youtu.be/wP7U8USWPAw?...

Let's Go! #BlueTeam #JuntosPodemos #SiSePuede #DoSomething Follow & Support the ACLU. #Sábado #Pa'llaVoy #KYR #NoReyS #Saturday #March28 #Migente
bsky.app/profile/amer...

#blueteam

a group of people are standing next to each other in a hallway and one of them is holding a book . ALT: a group of people are standing next to each other in a hallway and one of them is holding a book .

Friends,🙏 Go out & talk to folks. Most of us on Substack & Bluesky already know about Saturday, but millions who are working two or three jobs don’t know, and the best way to inform them is to talk to them face-to-face.
#Sábado #BlueTeam #Saturday #March28 #WomenTalking #Shop #EatOut #GoodTrouble

Just Announced for BSides Luxembourg 2026!
𝗧𝗛𝗘 𝗦𝗣𝗬 𝗪𝗛𝗢 𝗟𝗢𝗚𝗚𝗘𝗗 𝗠𝗘 - 𝗪𝗛𝗘𝗡 𝗬𝗢𝗨𝗥 𝗫𝗗𝗥 𝗝𝗢𝗜𝗡𝗦 𝗧𝗛𝗘 𝗔𝗧𝗧𝗔𝗖𝗞𝗘𝗥𝗦 - Melina Phillips(@tx_princess )

Melina Phillips https://www.linkedin.com/in/melinaphillips-cissp/ is an Offensive Security Engineer with over 10 years of […]

[Original post on infosec.exchange]

🔴 Mar 25's Top Cyber News NOW! - Ep 1096 YouTube video by Simply Cyber - Gerald Auger, PhD

For speedrunning #CyberNews, #SimplyCyber - Gerald Auger, PhD, is a popular and well studied #CyberSecurity expert. He goes off the cuff and talks #Cyber threats on a #live broadcast.
#OpSec #Security #CVE #RedTeam #BlueTeam #CyberThreats

www.youtube.com/live/ZY2eNa1...

Dear Maricella 👑 @fireeyebooks.bsky.social Thank you so much for including me with so many great resisters and democracy defenders in your Starter Pack!

#BlueTeam #72

𝑿𝑶,💕
𝑯𝒂𝒍𝒐𝑺𝒕𝒂𝒓 💫 & 𝑫𝒊𝒂 🐶

bsky.app/profile/did:...

Almost forgot to remind everyone we're in this together. If we want leadership not owned by corporations and outside interests it's going to cost. Republicans are raising millions to stop us, it's up to us to stop them EVERYWHERE. $5 can go far for a #grassroots candidate. #BlueTeam #BlueWave

🎉 I passed AZ-900 (Azure Fundamentals) last week!

Building a strong defensive skill set: Security+, SAL1, BTL1, SPLK-1001 & Google Cybersecurity Cert.

Focused on log analysis, SOC workflows & Blue Team skills. Seeking entry-level SOC Analyst roles.

#cybersecurity #SOCAnalyst #BlueTeam

Splunk 2 TryHackMe Writeup (Part 1) — BOTS v2 SOC Investigation (100 & 200 Series) Practical Log Analysis from the Boss of the SOC (BOTS v2) Dataset

My new post on my TryHackMe Splunk 2 (Bots v2) investigation covers:

• Data collection & filtering
• Deep-dive into raw event logs
• Pattern recognition & correlation
• Identifying phishing & exfiltration activity

A practical look at real SOC investigation workflows.

#InfoSec #BlueTeam #Splunk

Architecting an Enterprise SOC Foundation using Proxmox VE and Hardened Debian 13 Trixie Nodes Build a resilient Proxmox VE SOC infrastructure. Secure your environment with hardened Debian 13 nodes, network isolation, and high availability clusters.

Build a resilient Proxmox VE SOC infrastructure. Secure your environment with hardened Debian 13 nodes, network isolation, and high availability clusters.

#cybersecurity #proxmox #solideinfo #packprotv #soc #blueteam #debian

Probably just vaporware but I wanna take a look juuuuust in case.

www.securityweek.com/raven-emerges-from-steal...

#cloud #blueteam

VEN0m Ransomware: BYOVD Detection Guide | Focused Hunts Analysis of VEN0m ransomware leveraging BYOVD driver exploitation with Splunk and KQL hunting queries. Includes MITRE ATT&CK mappings and behavioral detection.

VEN0m ransomware uses BYOVD (IMFForceDelete.sys) to kill AV/EDR before encrypting files.

We provide a summary of the threat to help your teams from executive to analysts.

www.focusedhunts.com/blog/hunting...

#ThreatHunting #Ransomware #BYOVD #BlueTeam #FocusedHunts #HuntingOffTheRed #HOTR

The fast and furious fall of Ohio House Speaker Cliff Rosenberger COLUMBUS, Ohio -- Cliff Rosenberger stepped into the job of Ohio House speaker in January 2015 with the largest GOP majority in nearly half a century and what appeared to be a long political career ah...

Ginni Ragan is how she's listed as a donor of $10k to Troy Balderson's PAC (aka Your Ohio Republican Team based in....Maryland) in #OhioDistrict12. #Flipthe12th #BlueWave #BlueTeam

The fast and furious fall of Ohio House Speaker Cliff Rosenberger share.google/3xVGOpkaFiAX...

🎯 New #BSidesLuxembourg2026 Session Reveal!

A Phishing Trip with Fancy Bear – Analyze APT28 Malware Together! (2h Workshop) with 𝗠𝗔𝗥𝗜𝗨𝗦 𝗚𝗘𝗡𝗛𝗘𝗜𝗠𝗘𝗥

Join this beginner-friendly 2h workshop to walk through a real Fancy Bear (APT28) attack chain: targeted […]

[Original post on infosec.exchange]

BaseFortify CVE report showing CVE-2026-22171 with HIGH severity 8.8 for a path traversal vulnerability in OpenClaw Feishu media download.

Technical summary:

Weakness: CWE-22 (Path Traversal)

Untrusted input is used to build file paths without proper sanitization.

Impact:
• Arbitrary file write
• Potential remote code execution
• Tampering with application files

Affected: OpenClaw < 2026.2.19

#ThreatIntel #BlueTeam #Security

"The IP 195.211.190[.]189 was hosted on infrastructure from Railnet LLC — a legal front for Russia-based bulletproof hosting provider Virtualine."

Full report 👇
thedfirreport.com/2025/11/17/c...

#DFIR #Ransomware #ThreatIntel #BlueTeam #CyberSecurity

SecInterview | AI-Powered Cyber Interview Simulator Dominate your next cybersecurity interview with SecInterview. AI-powered technical simulations for Red Teaming, SOC, and Cloud roles. Get expert-level feedback on deep-dive scenarios like CRTP and OSC...

The early access link for my AI, SecInterview which will make you sweat with scenarios like this in interviews—is also at the end of the article! 🚀

Link: secinterview.framer.website

#CyberSecurity #RedTeam #BlueTeam #ActiveDirectory

The Ultimate AD Backdoor: Weaponizing a Built-in Windows Feature for Persistence In a scenario where all Domain Admin passwords have been reset, can the most privileged door in the internal network still be opened or…

In the real world, cybersecurity isn't about running nmap; it's about turning the system itself into a weapon.
I've explained the details of DSRM exploitation step-by-step in my new Medium post.
To read: medium.com/@civanonur8/...

#CyberSecurity #RedTeam #BlueTeam #ActiveDirectory

🎮 The Return of Malware & Monsters: Collaborative IR Gaming (2h Workshop) on May 6th!

𝗚𝗢𝗧𝗧𝗔 𝗖𝗢𝗡𝗧𝗔𝗜𝗡 '𝗘𝗠 𝗔𝗟𝗟: 𝗖𝗢𝗟𝗟𝗔𝗕𝗢𝗥𝗔𝗧𝗜𝗩𝗘 𝗜𝗡𝗖𝗜𝗗𝗘𝗡𝗧 𝗥𝗘𝗦𝗣𝗢𝗡𝗦𝗘 𝗧𝗥𝗔𝗜𝗡𝗜𝗡𝗚 𝗧𝗛𝗥𝗢𝗨𝗚𝗛 𝗚𝗔𝗠𝗜𝗡𝗚 with Klaus Agnoletti (@klausagnoletti) & Glen Sorensen - 6 May, 9AM - 11AM

Back by popular […]

[Original post on infosec.exchange]

The top of the image features the text "SCRATCH NEWS AUSTRALIA”, the title "SPY VS SECURITY”. A black and white cartoon drawing shows two people facing each other engaged in a clandestine conflict. Both people are wearing wide-brimmed fedora hats and long, high-collared trench coats. At the bottom of the image is “SECURITY TOOLS & NEWS" and yellow-highlighted text "scratchnews.io” The image promotes Scratch News Australia, scratchnews.io

Catch up with the latest #security topics, #test your #cybersecurity & #infosec readiness

News
👉 scratchnews.io/tag/Security...

Events
👉 scratchnews.io/category/587

Tools
👉 scratchnews.io/tag/Security...

#Australia #NZ
#hacking #redteam #blueteam #appsec #cloud #ai #devops

🚨 Speaker Announcement – #BSidesPrague2026

🎤 Nicol Daňková
(Security) Operations Fuckups
Epic security ops fails & WTF moments from real life. Not just for laughs—this talk shows how failures help newcomers learn and grow in cybersecurity.

#CyberSecurity #BlueTeam #Bsides

BaseFortify CVE report page showing CVE-2026-28431 with CRITICAL 9.2 severity for insufficient permission checks in the Misskey platform.

Weakness: CWE-285 (Improper Authorization)

Misskey servers fail to properly enforce permission checks, allowing attackers to access data they should not be able to retrieve.

Impact:
• Unauthorized data access
• Potential data breach

#ThreatIntel #BlueTeam #Security

BaseFortify CVE report page showing CVE-2026-3630 with CRITICAL 9.8 severity score for a stack-based buffer overflow in Delta Electronics COMMGR2.

Product: Delta Electronics COMMGR2
Severity: CRITICAL (9.8)

The vulnerability is a stack-based buffer overflow where excessive input can overwrite adjacent memory on the stack.

Potential impact:
• Application crash
• System instability

#ThreatIntel #VulnerabilityManagement #BlueTeam #Security

Invite Only: A Threat Intelligence Investigation and Malware Analysis writeup A practical SOC analyst investigation of malicious hashes, phishing techniques, and malware delivery chains from the Invite Only TryHackMe…

New Cyber Threat Intelligence Write-Up 🔎

I investigated a suspicious artifact in a threat intel scenario — pivoting from IOCs to uncover malware behavior, infrastructure, and attacker activity.

#cybersecurity #threatintel #malwareanalysis #threathunting #socanalyst #infosec #dfir #blueteam

Come on now, Howard! They're just joshin' around like all cool white millionaire populist podcaster frat bros do!

They're on the #BlueTeam!

They're totally for *us*!, remember?

BaseFortify CVE report page showing CVE-2026-27441 with CRITICAL 9.5 severity score for OS command injection in SEPPmail Secure Email Gateway.

Product: SEPPmail Secure Email Gateway
Affected: Versions before 15.0.1

Weakness: CWE-78 (OS Command Injection)

User-controlled input from a PDF password can reach the OS command layer without sanitization, allowing command execution.

#ThreatIntel #VulnerabilityManagement #BlueTeam #Security

Democrats maintain House majority, winning Allegheny and Lehigh county special elections • Pennsylvania Capital-Star Tuesday’s elections were the 13th time House Democrats have defended their majority since winning control of the chamber for the first time in 12 years in 2022.

Yes, the #IranWar is a major event, but #BlueTeam needs to also keep working for Dem Candidates. So far, so good. Next Special Election is Tues Mar 17

penncapital-star.com/campaigns-el...