SharITSec

<style>/*<meta name='google-adsense-platform-account' content='ca-host-pub-1556223355139109'/>
<meta name='google-adsense-platform-domain' content='blogspot.com'/>

<script async src="https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-2460228594947362&host=ca-host-pub-1556223355139109" crossorigin="anonymous"></script>

<!-- data-ad-client=ca-pub-2460228594947362 -->

</head><body>*/</style>

Malware , Malware Analysis , News and Indicators - Latest topics

Analysis of APT37 NarwhalRAT Leveraging MS-Themed Phishing and Dead-drop C2

Introduction to Malware Binary Triage (IMBT) Course Looking to level up your skills? Get 10% off using coupon code: MWNEWS...

Sp123 14 Jun, 2026

Malware , Malware Analysis , News and Indicators - Latest topics

ShinyHunters Claims Theft of 297GB of Council of Europe Data; Claims Unconfirmed As Yet

Bhaswati Guha Majumder reports: The cybercrime group ShinyHunters has claimed responsibility for a major breach involving the C...

Sp123 14 Jun, 2026

Malware , Malware Analysis , News and Indicators - Latest topics

My impression of OrangeCon 2026

This year marked the third edition of OrangeCon, a Dutch cybersecurity conference. As some of you might know, and as my top lev...

Sp123 14 Jun, 2026

Malware , Malware Analysis , News and Indicators - Latest topics

BlueHammer: The Unpatched Windows Privilege Escalation Exploit

Introduction to Malware Binary Triage (IMBT) Course Looking to level up your skills? Get 10% off using coupon code: MWNEWS...

Sp123 14 Jun, 2026

Malware , Malware Analysis , News and Indicators - Latest topics

Malware Analysis - PoisonX rootkit, Kernel driver rootkit markup in Ghidra

Introduction to Malware Binary Triage (IMBT) Course Looking to level up your skills? Get 10% off using coupon code: MWNEWS10...

Sp123 14 Jun, 2026

Malware , Malware Analysis , News and Indicators - Latest topics

South Korea Hands Coupang a Record-Breaking $409 Million Data Privacy Fine

DataBreaches has been impressed by South Korea’s response to data breaches ever since reading about how its financial regulator...

Sp123 13 Jun, 2026

Malware , Malware Analysis , News and Indicators - Latest topics

The Pulling of Mythos Offline: Why AI KYC Will Fail to Stop Cybercriminals

Introduction to Malware Binary Triage (IMBT) Course Looking to level up your skills? Get 10% off using coupon code: MWNEWS1...

Sp123 13 Jun, 2026

Malware , Malware Analysis , News and Indicators - Latest topics

Winget DSC and Self-Referencing LNK File Attack Explained

Introduction to Malware Binary Triage (IMBT) Course Looking to level up your skills? Get 10% off using coupon code: MWNEWS...

Sp123 13 Jun, 2026

<style>/*
<script type="text/javascript" src="https://www.blogger.com/static/v1/widgets/387437488-widgets.js"></script>
<script type='text/javascript'>
window['__wavt'] = 'AEUoTZo04jiqhHD6gOlu7dj5ln4_:1781457145849';_WidgetManager._Init('//www.blogger.com/rearrange?blogID\x3d5925999397593177003','//www.sharitsec.eu.org/','5925999397593177003');
_WidgetManager._SetDataContext([{'name': 'blog', 'data': {'blogId': '5925999397593177003', 'title': 'SharITSec', 'url': 'https://www.sharitsec.eu.org/', 'canonicalUrl': 'https://www.sharitsec.eu.org/', 'homepageUrl': 'https://www.sharitsec.eu.org/', 'searchUrl': 'https://www.sharitsec.eu.org/search', 'canonicalHomepageUrl': 'https://www.sharitsec.eu.org/', 'blogspotFaviconUrl': 'https://www.sharitsec.eu.org/favicon.ico', 'bloggerUrl': 'https://www.blogger.com', 'hasCustomDomain': true, 'httpsEnabled': true, 'enabledCommentProfileImages': true, 'gPlusViewType': 'FILTERED_POSTMOD', 'adultContent': false, 'analyticsAccountNumber': '', 'encoding': 'UTF-8', 'locale': 'en-GB', 'localeUnderscoreDelimited': 'en_gb', 'languageDirection': 'ltr', 'isPrivate': false, 'isMobile': false, 'isMobileRequest': false, 'mobileClass': '', 'isPrivateBlog': false, 'isDynamicViewsAvailable': true, 'feedLinks': '\x3clink rel\x3d\x22alternate\x22 type\x3d\x22application/atom+xml\x22 title\x3d\x22SharITSec - Atom\x22 href\x3d\x22https://www.sharitsec.eu.org/feeds/posts/default\x22 /\x3e\n\x3clink rel\x3d\x22alternate\x22 type\x3d\x22application/rss+xml\x22 title\x3d\x22SharITSec - RSS\x22 href\x3d\x22https://www.sharitsec.eu.org/feeds/posts/default?alt\x3drss\x22 /\x3e\n\x3clink rel\x3d\x22service.post\x22 type\x3d\x22application/atom+xml\x22 title\x3d\x22SharITSec - Atom\x22 href\x3d\x22https://www.blogger.com/feeds/5925999397593177003/posts/default\x22 /\x3e\n', 'meTag': '\x3clink rel\x3d\x22me\x22 href\x3d\x22https://www.blogger.com/profile/08645900966523004369\x22 /\x3e\n', 'adsenseClientId': 'ca-pub-2460228594947362', 'adsenseHostId': 'ca-host-pub-1556223355139109', 'adsenseHasAds': true, 'adsenseAutoAds': true, 'boqCommentIframeForm': true, 'loginRedirectParam': '', 'view': '', 'dynamicViewsCommentsSrc': '//www.blogblog.com/dynamicviews/4224c15c4e7c9321/js/comments.js', 'dynamicViewsScriptSrc': '//www.blogblog.com/dynamicviews/cd96ebb13b57568d', 'plusOneApiSrc': 'https://apis.google.com/js/platform.js', 'disableGComments': true, 'interstitialAccepted': false, 'sharing': {'platforms': [{'name': 'Get link', 'key': 'link', 'shareMessage': 'Get link', 'target': ''}, {'name': 'Facebook', 'key': 'facebook', 'shareMessage': 'Share to Facebook', 'target': 'facebook'}, {'name': 'BlogThis!', 'key': 'blogThis', 'shareMessage': 'BlogThis!', 'target': 'blog'}, {'name': 'X', 'key': 'twitter', 'shareMessage': 'Share to X', 'target': 'twitter'}, {'name': 'Pinterest', 'key': 'pinterest', 'shareMessage': 'Share to Pinterest', 'target': 'pinterest'}, {'name': 'Email', 'key': 'email', 'shareMessage': 'Email', 'target': 'email'}], 'disableGooglePlus': true, 'googlePlusShareButtonWidth': 0, 'googlePlusBootstrap': '\x3cscript type\x3d\x22text/javascript\x22\x3ewindow.___gcfg \x3d {\x27lang\x27: \x27en_GB\x27};\x3c/script\x3e'}, 'hasCustomJumpLinkMessage': false, 'jumpLinkMessage': 'Read more', 'pageType': 'index', 'pageName': '', 'pageTitle': 'SharITSec', 'metaDescription': 'Welcome to the website \x22sharitsec.eu.org\x22 a gathering place for information and learning news about hacking.'}}, {'name': 'features', 'data': {}}, {'name': 'messages', 'data': {'edit': 'Edit', 'linkCopiedToClipboard': 'Link copied to clipboard', 'ok': 'Ok', 'postLink': 'Post link'}}, {'name': 'template', 'data': {'name': 'custom', 'localizedName': 'Custom', 'isResponsive': true, 'isAlternateRendering': false, 'isCustom': true}}, {'name': 'view', 'data': {'classic': {'name': 'classic', 'url': '?view\x3dclassic'}, 'flipcard': {'name': 'flipcard', 'url': '?view\x3dflipcard'}, 'magazine': {'name': 'magazine', 'url': '?view\x3dmagazine'}, 'mosaic': {'name': 'mosaic', 'url': '?view\x3dmosaic'}, 'sidebar': {'name': 'sidebar', 'url': '?view\x3dsidebar'}, 'snapshot': {'name': 'snapshot', 'url': '?view\x3dsnapshot'}, 'timeslide': {'name': 'timeslide', 'url': '?view\x3dtimeslide'}, 'isMobile': false, 'title': 'SharITSec', 'description': 'Welcome to the website \x22sharitsec.eu.org\x22 a gathering place for information and learning news about hacking.', 'url': 'https://www.sharitsec.eu.org/', 'type': 'feed', 'isSingleItem': false, 'isMultipleItems': true, 'isError': false, 'isPage': false, 'isPost': false, 'isHomepage': true, 'isArchive': false, 'isLabelSearch': false}}, {'name': 'widgets', 'data': [{'title': 'Pagination', 'type': 'HTML', 'sectionId': 'upload-image', 'id': 'HTML8'}, {'title': 'Template License', 'type': 'HTML', 'sectionId': 'upload-image', 'id': 'HTML7'}, {'title': 'Popular', 'type': 'PopularPosts', 'sectionId': 'upload-image', 'id': 'PopularPosts1', 'posts': [{'title': 'Meta\u2019s AI support bot happily handed Instagram accounts to hackers', 'id': 3727197823558971927}, {'title': 'Own Goal? Piracy as an Attack Vector to Target Football Fans', 'id': 5001962553457515949}, {'title': 'MSP Onboarding Best Practices That Actually Scale', 'id': 6577686364987397319}]}, {'title': 'Your Css', 'type': 'HTML', 'sectionId': 'upload-image', 'id': 'HTML9'}, {'title': 'About Me', 'type': 'Profile', 'sectionId': 'upload-image', 'id': 'Profile1'}, {'title': 'Your Javascript', 'type': 'HTML', 'sectionId': 'upload-image', 'id': 'HTML6'}, {'title': 'Google analytics', 'type': 'HTML', 'sectionId': 'upload-image', 'id': 'HTML5'}, {'title': 'Navbar Menu', 'type': 'HTML', 'sectionId': 'upload-image', 'id': 'HTML2'}, {'title': 'Icons, Dark, Search', 'type': 'LinkList', 'sectionId': 'header-main', 'id': 'LinkList10'}, {'title': 'Menu', 'type': 'LinkList', 'sectionId': 'header-main', 'id': 'LinkList11'}, {'title': 'Featured Post', 'type': 'FeaturedPost', 'sectionId': 'before-blog', 'id': 'FeaturedPost1', 'postId': '5051819713860626137'}, {'title': 'Blog Posts', 'type': 'Blog', 'sectionId': 'blog-post', 'id': 'Blog1', 'posts': [{'id': '5051819713860626137', 'title': 'Analysis of APT37 NarwhalRAT Leveraging MS-Themed Phishing and Dead-drop C2', 'featuredImage': 'https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_vBDiCfkm9f6esx16qeni7a5iFLxbxRsSXtW5nJfkKyXZ9pq9-oxq0RtwQjNehHVqLidERP3G1jKyk0plOJk6rcrKbeYt_V0GJ5-nALpKK_W0OTopF7qvGL4FDglr_q9ygHSORi_h1DJGBgi-e33341IkyDk6TXRJEAQHpeH70bcu6wCtUsh2gYRJh_dkQ', 'showInlineAds': false}, {'id': '3268287500793867235', 'title': 'ShinyHunters Claims Theft of 297GB of Council of Europe Data; Claims Unconfirmed As Yet', 'featuredImage': 'https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_vNHa2kidIqZ6GPpVajhe02WUUSzZvU-i5TPcdqkIMQAFapz8na-prQ0IVl9czRqRBdBEfFIJfA6R8rPUHXQvt8mzQuLGnaF074key65699bZThwNEvg6wVTDwm1H4UPA9SNuryhBGJf_rvr9lYY9SsiQz-3_w3jAgpCzQv3kHDmeU_eCkDou7q3xeoX_SxrcNjIi0QDfYdP_tNNoJHWXGmil6TOh890egkoHUZ5yirDyABHYa0h1dR0uLbiPQHq4PE3qfWtTR89ipS8NUE3XzVYlBCO3E7M9nltRIHEUQP9tBHzN1z-85jo4nPLh6vbI0g7OCrEPScvsESy4VxWpulH1IrrydTI1ozHMaLnVaR_A4g5r2mM2LY-Rq4W4n0ipQmh2n3VkWIz687_BO-ql3o2PyU6kidwGBkuttRJ8Ct4T4x0cNicyNrQQFHT4QYfh2bAn8G20dyFhHRWBmwLi3PyHKolFwekDcO6ObRvXLLcjYIImMM85U0kkN-HlhKQ31_OxViVv4AtGg6uV8aN3rLeUyjG2lDgv_8vnQJTG7YihIEEiVSlqQ19Rtj6G0EekOhFZjgNIycSIrp5WteGDtKxVM3sRLheUi_nuGp7d4zYLwqGoNmC_xQRQR7QZd4NVVXbfjq9M6iQQRoUGn-xzvj-bv1eWW7OKmt6CVa6meDlxHleUlXZJqC-4nRdv-dVlTenAqgKG81ijhUS-xYeJ7rGX1mz6MkIvuLtNxYe0-XRQ', 'showInlineAds': false}, {'id': '4235822300403327263', 'title': 'My impression of OrangeCon 2026', 'showInlineAds': false}, {'id': '4756963260671868482', 'title': 'BlueHammer: The Unpatched Windows Privilege Escalation Exploit', 'featuredImage': 'https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_tUCc1kEfaORMwpo2A2qGbokKhn3P3ZPFtbGIDDiLhhniygB9654W9ozwnw5Q3vvonmrDOE53rGcLioLo7Vc-os6qviZsHuG3RtT-upEJvArNbV2nahSfYZHClNndZda8NPXZ2IQroI0OWB5cClGwvcwpXBXFm8AF46tjGE_gq8cWmOL_w5qkO3Gu79l78', 'showInlineAds': false}, {'id': '1361253820086477527', 'title': 'Malware Analysis - PoisonX rootkit, Kernel driver rootkit markup in Ghidra', 'showInlineAds': false}, {'id': '3067398471804421458', 'title': 'South Korea Hands Coupang a Record-Breaking $409 Million Data Privacy Fine', 'featuredImage': 'https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_tYKB45ok2Giykwt6LXbLuf6uz9V_d_u98wvNmJDOdAZHLy47F6HK0o5QiQBICjdN8RqIJ9z6tMka2bIsAEFU_4nNImDOUHoDzepLF7oH4a8EVFkX6wIdQTAA2KByFupAM-2ThAotjwR-x9R5uxkLnmDKgVteC3U-1dFEERl0ZAT4nEBL8bs6ZkZhvA5sxnTTnwiQw-OZkl5SUnMPZZzt2td3_XDyZzG_10yiUlQnBfdpcz0sUiRlYCGMjJAgn6_fekWVTLWFD1-kvTq2qNF9B4fOrDnTqiiWu78YTb0UFHilB-HSfFPv0z9H0YrCPEuUuJxvp_63eQ8xDHsknIJxlZtiTn1qnKrjijPrahTweNiCpLd2P2MYlK9eVbXSGI4V3CYs3-2asTB-60vqPLIbsBEXee7rIRx6gPhZl80LsaQg6VTeGMAnNREWa89vM-WbaHivQXt4uz43FvDvbZZo5p3zD_7Ga4Mk7o6xg86Q1OAP3KU-HAvvCN62sSYqWb-nEqCJ078S75GSL8Qa-ctcybzATG6mLeWBzbdS1Wz_3bXyHoQrV-Le9xyrDSOMaZykDbjmsLTLgI5cxxjR05cJU0I7ndEK4PBochcbS7LvorKZ-68Lvwa8_FdUD5Et8dFciN3uzhR3pFUJYc_zuwp2cjyK4Jrd9unkd-ql9kKA1oz7CT2g', 'showInlineAds': false}, {'id': '1136279607069386672', 'title': 'The Pulling of Mythos Offline: Why AI KYC Will Fail to Stop Cybercriminals', 'showInlineAds': false}, {'id': '636738171500759887', 'title': 'Winget DSC and Self-Referencing LNK File Attack Explained', 'featuredImage': 'https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_tXMIoKA19-HAZidJV1FxK3EC0zpoPPqCw25t1Ztlnm0Ryl19iZ4fMM9bHDstAqxSuVoan5ue7DleW1Bbl9rLngphkDAoEsEPDs5MsbgR7dbQ4gCRN6yckuBZP9si7X2LStc2NZescZ7BJw1p4ev-zP3nzCLqAd9AfMwCPU0Quoxz2dS1fTirl7pAmaT_Gp6JwHxw', 'showInlineAds': false}], 'headerByline': {'regionName': 'header1', 'items': [{'name': 'author', 'label': 'Posted by'}, {'name': 'timestamp', 'label': 'd MMM, yyyy'}, {'name': 'share', 'label': ''}]}, 'footerBylines': [{'regionName': 'footer2', 'items': [{'name': 'labels', 'label': 'Labels:'}]}], 'allBylineItems': [{'name': 'author', 'label': 'Posted by'}, {'name': 'timestamp', 'label': 'd MMM, yyyy'}, {'name': 'share', 'label': ''}, {'name': 'labels', 'label': 'Labels:'}]}, {'title': '#You may also like', 'type': 'HTML', 'sectionId': 'ads-post', 'id': 'HTML15'}, {'title': '', 'type': 'HTML', 'sectionId': 'sidebar-static', 'id': 'HTML25'}, {'title': 'Popular Posts', 'type': 'PopularPosts', 'sectionId': 'sidebar-static', 'id': 'PopularPosts10', 'posts': [{'title': 'Pirated PC games are delivering password-stealing malware', 'id': 4000629304060358976}, {'title': 'FTC Gives Final Approval to Order Against Illuminate Settling Allegations It Failed to Secure Students\u2019 Personal Data', 'id': 1992963435097785975}, {'title': 'What Is an Autonomous Penetration Testing Platform?', 'id': 2396877047238491868}, {'title': 'Customer case study: How Intelligence Center\u2122 helps CTI teams cut through noise and act with confidence', 'id': 725482563105750696}, {'title': 'Autonomous Pentesting vs Breach and Attack Simulation (BAS): What\x27s the Difference?', 'id': 2199229901743773232}, {'title': 'Own Goal? Piracy as an Attack Vector to Target Football Fans', 'id': 5001962553457515949}, {'title': 'The Interesting Case of WSL for Payload Staging', 'id': 5708918485891248787}, {'title': 'Ex-Threat Intel Exec Accuses IBM and AT\x26T of Hiding Hacks', 'id': 2173137900547093287}, {'title': 'Fake document factory dismantled in Spain: around 800 IDs seized', 'id': 4658178695955907991}, {'title': 'MSP Onboarding Best Practices That Actually Scale', 'id': 6577686364987397319}]}, {'title': 'Archive', 'type': 'BlogArchive', 'sectionId': 'sidebar-static', 'id': 'BlogArchive10'}, {'title': '#Recent Post', 'type': 'HTML', 'sectionId': 'sidebar-static', 'id': 'HTML19'}, {'title': 'Copyright', 'type': 'HTML', 'sectionId': 'copyright', 'id': 'HTML23'}, {'title': 'SVG Icons', 'type': 'HTML', 'sectionId': 'jet-options', 'id': 'HTML24'}]}]);
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML8', 'upload-image', document.getElementById('HTML8'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML7', 'upload-image', document.getElementById('HTML7'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_PopularPostsView', new _WidgetInfo('PopularPosts1', 'upload-image', document.getElementById('PopularPosts1'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML9', 'upload-image', document.getElementById('HTML9'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_ProfileView', new _WidgetInfo('Profile1', 'upload-image', document.getElementById('Profile1'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML6', 'upload-image', document.getElementById('HTML6'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML5', 'upload-image', document.getElementById('HTML5'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML2', 'upload-image', document.getElementById('HTML2'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_LinkListView', new _WidgetInfo('LinkList10', 'header-main', document.getElementById('LinkList10'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_LinkListView', new _WidgetInfo('LinkList11', 'header-main', document.getElementById('LinkList11'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_FeaturedPostView', new _WidgetInfo('FeaturedPost1', 'before-blog', document.getElementById('FeaturedPost1'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_BlogView', new _WidgetInfo('Blog1', 'blog-post', document.getElementById('Blog1'), {'cmtInteractionsEnabled': false, 'lightboxEnabled': true, 'lightboxModuleUrl': 'https://www.blogger.com/static/v1/jsbin/1793375781-lbx__en_gb.js', 'lightboxCssUrl': 'https://www.blogger.com/static/v1/v-css/828616780-lightbox_bundle.css'}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML15', 'ads-post', document.getElementById('HTML15'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML25', 'sidebar-static', document.getElementById('HTML25'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_PopularPostsView', new _WidgetInfo('PopularPosts10', 'sidebar-static', document.getElementById('PopularPosts10'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_BlogArchiveView', new _WidgetInfo('BlogArchive10', 'sidebar-static', document.getElementById('BlogArchive10'), {'languageDirection': 'ltr', 'loadingMessage': 'Loading\x26hellip;'}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML19', 'sidebar-static', document.getElementById('HTML19'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML23', 'copyright', document.getElementById('HTML23'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML24', 'jet-options', document.getElementById('HTML24'), {}, 'displayModeFull'));
</script>
</body>*/</style>