SharITSec

<style>/*<meta name='google-adsense-platform-account' content='ca-host-pub-1556223355139109'/>
<meta name='google-adsense-platform-domain' content='blogspot.com'/>

<script async src="https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-2460228594947362&host=ca-host-pub-1556223355139109" crossorigin="anonymous"></script>

<!-- data-ad-client=ca-pub-2460228594947362 -->

</head><body>*/</style>

Malware Analysis , News and Indicators - Latest topics , Malware

Black Basta: Defense Evasion Capability Embedded in Ransomware Payload

BYOVD component included in ransomware payload itself, rather than as a separate tool. Introduction to Malware Binary Triage (IMBT) Course...

Sp123 5 Feb, 2026

Malware Analysis , News and Indicators - Latest topics , Malware

Broken Phishing URLs, (Thu, Feb 5th)

For a few days, many phishing emails that landed into my mailbox contain strange URLs. They are classic emails asking you to open a document...

Sp123 5 Feb, 2026

Malware Analysis , News and Indicators - Latest topics , Malware

Silent Push IDs More Than 10,000 Infected IPs as Part of SystemBC Botnet Malware Family

Key Findings Introduction to Malware Binary Triage (IMBT) Course Looking to level up your skills? Get 10% off using coupon code: MWNEWS1...

Sp123 4 Feb, 2026

Malware Analysis , News and Indicators - Latest topics , Malware

Why Most Cyber Incidents Do Not Escalate Into OT

Explore why most cyber incidents in OT-centric organizations do not escalate from IT into OT environments. Introduction to Malware Binary ...

Sp123 4 Feb, 2026

Malware Analysis , News and Indicators - Latest topics , Malware

CVE-2026-21509: APT28 Exploits Microsoft Office Zero-day Vulnerability

Introduction to Malware Binary Triage (IMBT) Course Looking to level up your skills? Get 10% off using coupon code: MWNEWS10 for any fl...

Sp123 4 Feb, 2026

Malware Analysis , News and Indicators - Latest topics , Malware

A fake cloud storage alert that ends at Freecash

Last week we talked about an app that promises users they can make money testing games , or even just by scrolling through TikTok. Introdu...

Sp123 3 Feb, 2026

Malware Analysis , News and Indicators - Latest topics , Malware

Enterprise Phishing: How Attackers Abuse Microsoft & Google Platforms

ANY.RUN observes a growing trend of phishing kit infrastructure being hosted on legitimate cloud and CDN platforms, rather than on newly re...

Sp123 3 Feb, 2026

Malware Analysis , News and Indicators - Latest topics , Malware

The Notepad++ supply chain attack — unnoticed execution chains and new IoCs

Introduction Introduction to Malware Binary Triage (IMBT) Course Looking to level up your skills? Get 10% off using coupon code: MWNEWS...

Sp123 3 Feb, 2026

<style>/*
<script type="text/javascript" src="https://www.blogger.com/static/v1/widgets/2028843038-widgets.js"></script>
<script type='text/javascript'>
window['__wavt'] = 'AOuZoY5e26I9IJ47FqU2Ubd3U7a6atWpiQ:1770326160835';_WidgetManager._Init('//www.blogger.com/rearrange?blogID\x3d5925999397593177003','//www.sharitsec.eu.org/','5925999397593177003');
_WidgetManager._SetDataContext([{'name': 'blog', 'data': {'blogId': '5925999397593177003', 'title': 'SharITSec', 'url': 'https://www.sharitsec.eu.org/', 'canonicalUrl': 'https://www.sharitsec.eu.org/', 'homepageUrl': 'https://www.sharitsec.eu.org/', 'searchUrl': 'https://www.sharitsec.eu.org/search', 'canonicalHomepageUrl': 'https://www.sharitsec.eu.org/', 'blogspotFaviconUrl': 'https://www.sharitsec.eu.org/favicon.ico', 'bloggerUrl': 'https://www.blogger.com', 'hasCustomDomain': true, 'httpsEnabled': true, 'enabledCommentProfileImages': true, 'gPlusViewType': 'FILTERED_POSTMOD', 'adultContent': false, 'analyticsAccountNumber': '', 'encoding': 'UTF-8', 'locale': 'en-GB', 'localeUnderscoreDelimited': 'en_gb', 'languageDirection': 'ltr', 'isPrivate': false, 'isMobile': false, 'isMobileRequest': false, 'mobileClass': '', 'isPrivateBlog': false, 'isDynamicViewsAvailable': true, 'feedLinks': '\x3clink rel\x3d\x22alternate\x22 type\x3d\x22application/atom+xml\x22 title\x3d\x22SharITSec - Atom\x22 href\x3d\x22https://www.sharitsec.eu.org/feeds/posts/default\x22 /\x3e\n\x3clink rel\x3d\x22alternate\x22 type\x3d\x22application/rss+xml\x22 title\x3d\x22SharITSec - RSS\x22 href\x3d\x22https://www.sharitsec.eu.org/feeds/posts/default?alt\x3drss\x22 /\x3e\n\x3clink rel\x3d\x22service.post\x22 type\x3d\x22application/atom+xml\x22 title\x3d\x22SharITSec - Atom\x22 href\x3d\x22https://www.blogger.com/feeds/5925999397593177003/posts/default\x22 /\x3e\n', 'meTag': '\x3clink rel\x3d\x22me\x22 href\x3d\x22https://www.blogger.com/profile/08645900966523004369\x22 /\x3e\n', 'adsenseClientId': 'ca-pub-2460228594947362', 'adsenseHostId': 'ca-host-pub-1556223355139109', 'adsenseHasAds': true, 'adsenseAutoAds': true, 'boqCommentIframeForm': true, 'loginRedirectParam': '', 'view': '', 'dynamicViewsCommentsSrc': '//www.blogblog.com/dynamicviews/4224c15c4e7c9321/js/comments.js', 'dynamicViewsScriptSrc': '//www.blogblog.com/dynamicviews/c4009cb6aca69435', 'plusOneApiSrc': 'https://apis.google.com/js/platform.js', 'disableGComments': true, 'interstitialAccepted': false, 'sharing': {'platforms': [{'name': 'Get link', 'key': 'link', 'shareMessage': 'Get link', 'target': ''}, {'name': 'Facebook', 'key': 'facebook', 'shareMessage': 'Share to Facebook', 'target': 'facebook'}, {'name': 'BlogThis!', 'key': 'blogThis', 'shareMessage': 'BlogThis!', 'target': 'blog'}, {'name': 'X', 'key': 'twitter', 'shareMessage': 'Share to X', 'target': 'twitter'}, {'name': 'Pinterest', 'key': 'pinterest', 'shareMessage': 'Share to Pinterest', 'target': 'pinterest'}, {'name': 'Email', 'key': 'email', 'shareMessage': 'Email', 'target': 'email'}], 'disableGooglePlus': true, 'googlePlusShareButtonWidth': 0, 'googlePlusBootstrap': '\x3cscript type\x3d\x22text/javascript\x22\x3ewindow.___gcfg \x3d {\x27lang\x27: \x27en_GB\x27};\x3c/script\x3e'}, 'hasCustomJumpLinkMessage': false, 'jumpLinkMessage': 'Read more', 'pageType': 'index', 'pageName': '', 'pageTitle': 'SharITSec', 'metaDescription': 'Welcome to the website \x22sharitsec.eu.org\x22 a gathering place for information and learning news about hacking.'}}, {'name': 'features', 'data': {}}, {'name': 'messages', 'data': {'edit': 'Edit', 'linkCopiedToClipboard': 'Link copied to clipboard', 'ok': 'Ok', 'postLink': 'Post link'}}, {'name': 'template', 'data': {'name': 'custom', 'localizedName': 'Custom', 'isResponsive': true, 'isAlternateRendering': false, 'isCustom': true}}, {'name': 'view', 'data': {'classic': {'name': 'classic', 'url': '?view\x3dclassic'}, 'flipcard': {'name': 'flipcard', 'url': '?view\x3dflipcard'}, 'magazine': {'name': 'magazine', 'url': '?view\x3dmagazine'}, 'mosaic': {'name': 'mosaic', 'url': '?view\x3dmosaic'}, 'sidebar': {'name': 'sidebar', 'url': '?view\x3dsidebar'}, 'snapshot': {'name': 'snapshot', 'url': '?view\x3dsnapshot'}, 'timeslide': {'name': 'timeslide', 'url': '?view\x3dtimeslide'}, 'isMobile': false, 'title': 'SharITSec', 'description': 'Welcome to the website \x22sharitsec.eu.org\x22 a gathering place for information and learning news about hacking.', 'url': 'https://www.sharitsec.eu.org/', 'type': 'feed', 'isSingleItem': false, 'isMultipleItems': true, 'isError': false, 'isPage': false, 'isPost': false, 'isHomepage': true, 'isArchive': false, 'isLabelSearch': false}}, {'name': 'widgets', 'data': [{'title': 'Pagination', 'type': 'HTML', 'sectionId': 'upload-image', 'id': 'HTML8'}, {'title': 'Template License', 'type': 'HTML', 'sectionId': 'upload-image', 'id': 'HTML7'}, {'title': 'Popular', 'type': 'PopularPosts', 'sectionId': 'upload-image', 'id': 'PopularPosts1', 'posts': [{'title': 'Ex-teen hackers warn parents are clueless as children steal \u2018millions\u2019', 'id': 6972157235598410560}, {'title': 'Automatic Script Execution In Visual Studio Code, (Wed, Jan 21st)', 'id': 6172560431137112185}, {'title': 'Quickpost: USB-C Rechargeable Batteries', 'id': 62995681511521103}]}, {'title': 'Your Css', 'type': 'HTML', 'sectionId': 'upload-image', 'id': 'HTML9'}, {'title': 'About Me', 'type': 'Profile', 'sectionId': 'upload-image', 'id': 'Profile1'}, {'title': 'Your Javascript', 'type': 'HTML', 'sectionId': 'upload-image', 'id': 'HTML6'}, {'title': 'Google analytics', 'type': 'HTML', 'sectionId': 'upload-image', 'id': 'HTML5'}, {'title': 'Navbar Menu', 'type': 'HTML', 'sectionId': 'upload-image', 'id': 'HTML2'}, {'title': 'Icons, Dark, Search', 'type': 'LinkList', 'sectionId': 'header-main', 'id': 'LinkList10'}, {'title': 'Menu', 'type': 'LinkList', 'sectionId': 'header-main', 'id': 'LinkList11'}, {'title': 'Featured Post', 'type': 'FeaturedPost', 'sectionId': 'before-blog', 'id': 'FeaturedPost1', 'postId': '4287468319702690462'}, {'title': 'Blog Posts', 'type': 'Blog', 'sectionId': 'blog-post', 'id': 'Blog1', 'posts': [{'id': '4287468319702690462', 'title': 'Black Basta: Defense Evasion Capability Embedded in Ransomware Payload', 'showInlineAds': false}, {'id': '1053902127428237389', 'title': 'Broken Phishing URLs, (Thu, Feb 5th)', 'showInlineAds': false}, {'id': '2814587027617443828', 'title': 'Silent Push IDs More Than 10,000 Infected IPs as Part of SystemBC Botnet Malware Family', 'featuredImage': 'https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_vpdsnag14yn0jHOCSMdf0KEXVuqeujDhcV8tkm2arIEhYIREWvxh17WNXNgn2guJbIAYItBuxG5fJkPYnhzuFpZUbABzNuM-CFGPCO3dVueOoiCyywZnWQNjd4zBg8wQeToVo-IoyaQdbBPw', 'showInlineAds': false}, {'id': '7114881039456615791', 'title': 'Why Most Cyber Incidents Do Not Escalate Into OT', 'showInlineAds': false}, {'id': '8446119235614250002', 'title': 'CVE-2026-21509: APT28 Exploits Microsoft Office Zero-day Vulnerability', 'featuredImage': 'https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_tJSbfqhfO03Hcmm9m7H2DvXpA98cQ8Un3-6swvySKvAtGb69kgvFxogY7Da9DZKemFJ5M_C9eSmo_mYAbzWLDSP7-M0GP5o3d09-XEeLke41R95kmb5D42zbbV6U11yCuclYHP', 'showInlineAds': false}, {'id': '267709614209083049', 'title': 'A fake cloud storage alert that ends at Freecash', 'featuredImage': 'https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_uowFz0ucm22lxJ-sOCodybVs_rqlZCYoDRD_KdFwaYe05i4h76Ivs_awZgBlw39KeUyDikV4daO9ZFeGz1cVzXNT-NGTVJ6a17vHkgYU71gOBr4u1Y5hOUKVQPR87vq5yCvFxReuqdzBbsazN2MNGFcVToJEBj0kWUWaqBMJWGwA', 'showInlineAds': false}, {'id': '2569677147120759925', 'title': 'Enterprise Phishing: How Attackers Abuse Microsoft \x26 Google Platforms', 'showInlineAds': false}, {'id': '7541121549028831820', 'title': 'The Notepad++ supply chain attack \u2014 unnoticed execution chains and new IoCs', 'featuredImage': 'https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_trUk8mCxxbvy9KaxB-idRBcOV6swq3oTq5Pf_1HR_Y0KXwbslvpgrRLs2YbRew2JgoLlg5NlLpXEvfFoonVjDt9v-UI5G_wfWObPY9NVWqgNE7WOW0pUvTK2Xk-Sx7xS32R-GT4m7vuxFIZn6b1LM_rZ7NS_bwbqVFwtw3kyRwNcHfwfAvSq-I7s_-nbh9VbRBDCqceh7savMSVzot9uDkLoZa3SrgQIBcptE29Q', 'showInlineAds': false}], 'headerByline': {'regionName': 'header1', 'items': [{'name': 'author', 'label': 'Posted by'}, {'name': 'timestamp', 'label': 'd MMM, yyyy'}, {'name': 'share', 'label': ''}]}, 'footerBylines': [{'regionName': 'footer2', 'items': [{'name': 'labels', 'label': 'Labels:'}]}], 'allBylineItems': [{'name': 'author', 'label': 'Posted by'}, {'name': 'timestamp', 'label': 'd MMM, yyyy'}, {'name': 'share', 'label': ''}, {'name': 'labels', 'label': 'Labels:'}]}, {'title': '#You may also like', 'type': 'HTML', 'sectionId': 'ads-post', 'id': 'HTML15'}, {'title': 'Popular Posts', 'type': 'PopularPosts', 'sectionId': 'sidebar-static', 'id': 'PopularPosts10', 'posts': [{'title': 'Ex-teen hackers warn parents are clueless as children steal \u2018millions\u2019', 'id': 6972157235598410560}, {'title': 'Fog Ransomware: Unusual Toolset Used in Recent Attack', 'id': 8529695133147627060}, {'title': '[\uc77c\ubcf8 \uc560\ub2c8\uba54\uc774\uc158]\u4e16\u754c\u6700\u9ad8\u306e\u6697\u6bba\u8005\u3001\u7570\u4e16\u754c\u8cb4\u65cf\u306b\u8ee2\u751f\u3059\u308b(\uc138\uacc4 \ucd5c\uace0\uc758 \uc554\uc0b4\uc790, \uc774\uc138\uacc4 \uadc0\uc871\uc73c\ub85c \uc804\uc0dd\ud558\ub2e4 (2021))', 'id': 8398697388491963633}, {'title': 'Does working from home come with cybersecurity challenges?', 'id': 8663529400963004562}, {'title': 'Frozen yucca, hidden cocaine: drug route from Costa Rica to Europe dismantled', 'id': 5933371592753095212}, {'title': 'Under Pressure: Exploring the effect of legal and criminal threats on security researchers and journalists', 'id': 1549544391013017389}, {'title': 'How fake party invitations are being used to install remote access tools', 'id': 3710123018034659388}, {'title': 'This company says AI can help design sustainable smart home appliances', 'id': 5638594119735772493}, {'title': 'Quickpost: USB-C Rechargeable Batteries', 'id': 62995681511521103}, {'title': 'Threat Intelligence Snapshot: Week 46, 2024', 'id': 8478115954724756274}]}, {'title': 'Archive', 'type': 'BlogArchive', 'sectionId': 'sidebar-static', 'id': 'BlogArchive10'}, {'title': '#Recent Post', 'type': 'HTML', 'sectionId': 'sidebar-static', 'id': 'HTML19'}, {'title': 'Copyright', 'type': 'HTML', 'sectionId': 'copyright', 'id': 'HTML23'}, {'title': 'SVG Icons', 'type': 'HTML', 'sectionId': 'jet-options', 'id': 'HTML24'}]}]);
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML8', 'upload-image', document.getElementById('HTML8'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML7', 'upload-image', document.getElementById('HTML7'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_PopularPostsView', new _WidgetInfo('PopularPosts1', 'upload-image', document.getElementById('PopularPosts1'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML9', 'upload-image', document.getElementById('HTML9'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_ProfileView', new _WidgetInfo('Profile1', 'upload-image', document.getElementById('Profile1'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML6', 'upload-image', document.getElementById('HTML6'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML5', 'upload-image', document.getElementById('HTML5'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML2', 'upload-image', document.getElementById('HTML2'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_LinkListView', new _WidgetInfo('LinkList10', 'header-main', document.getElementById('LinkList10'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_LinkListView', new _WidgetInfo('LinkList11', 'header-main', document.getElementById('LinkList11'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_FeaturedPostView', new _WidgetInfo('FeaturedPost1', 'before-blog', document.getElementById('FeaturedPost1'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_BlogView', new _WidgetInfo('Blog1', 'blog-post', document.getElementById('Blog1'), {'cmtInteractionsEnabled': false, 'lightboxEnabled': true, 'lightboxModuleUrl': 'https://www.blogger.com/static/v1/jsbin/2054998584-lbx__en_gb.js', 'lightboxCssUrl': 'https://www.blogger.com/static/v1/v-css/828616780-lightbox_bundle.css'}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML15', 'ads-post', document.getElementById('HTML15'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_PopularPostsView', new _WidgetInfo('PopularPosts10', 'sidebar-static', document.getElementById('PopularPosts10'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_BlogArchiveView', new _WidgetInfo('BlogArchive10', 'sidebar-static', document.getElementById('BlogArchive10'), {'languageDirection': 'ltr', 'loadingMessage': 'Loading\x26hellip;'}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML19', 'sidebar-static', document.getElementById('HTML19'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML23', 'copyright', document.getElementById('HTML23'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML24', 'jet-options', document.getElementById('HTML24'), {}, 'displayModeFull'));
</script>
</body>*/</style>