SharITSec

<style>/*<meta name='google-adsense-platform-account' content='ca-host-pub-1556223355139109'/>
<meta name='google-adsense-platform-domain' content='blogspot.com'/>

<script async src="https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-2460228594947362&host=ca-host-pub-1556223355139109" crossorigin="anonymous"></script>

<!-- data-ad-client=ca-pub-2460228594947362 -->

</head><body>*/</style>

Malware Analysis , News and Indicators - Latest topics , Malware

The Glasswing Paradox: The Thing That Can Break Everything Is Also The Thing That Fixes Everything

Introduction to Malware Binary Triage (IMBT) Course Looking to level up your skills? Get 10% off using coupon code: MWNEWS10 for any fl...

Sp123 8 Apr, 2026

Malware Analysis , News and Indicators - Latest topics , Malware

Jury Finds Meta, YouTube Liable in Addiction Case

A landmark U.S. court verdict has held Meta and YouTube accountable for designing addictive social media platforms that harmed a young user...

Sp123 8 Apr, 2026

Malware Analysis , News and Indicators - Latest topics , Malware

Mind the Gap Between Backup and Business Email Continuity

In this piece, we’re going to break down the difference between backup vs. business continuity, specifically where email is concerned. We’ll...

Sp123 7 Apr, 2026

Malware Analysis , News and Indicators - Latest topics , Malware

MacOS malware persistence 9: emond (The Event Monitor Daemon). Simple C example

﷽ Introduction to Malware Binary Triage (IMBT) Course Looking to level up your skills? Get 10% off using coupon code: MWNEWS10 for any ...

Sp123 7 Apr, 2026

Malware Analysis , News and Indicators - Latest topics , Malware

NYS school data incidents rose 72% in 2025, with 44 reported on Long Island

Lorena Mongelli reports: Reports of compromised student data and cybersecurity in schools surged statewide in 2025, according to education o...

Sp123 6 Apr, 2026

Malware Analysis , News and Indicators - Latest topics , Malware

How often are redirects used in phishing in 2026?, (Mon, Apr 6th)

In one of his recent diaries, Johannes discussed how open redirects are actively being sought out by threat actors[1], which made me wonder ...

Sp123 6 Apr, 2026

Malware Analysis , News and Indicators - Latest topics , Malware

Killer robots are here. Now what? (Lock and Code S07E07)

Big news : Lock and Code is nominated for a Webby Award! You can help us win the People’s Voice Award by voting here . Introduction to Mal...

Sp123 5 Apr, 2026

Malware Analysis , News and Indicators - Latest topics , Malware

Free at Last: Ditching TurboTax for FreeTaxUSA

I’ve been a contented TurboTax user for years — one of those “if it ain’t broke” loyalists who never questioned … Continue reading → Intr...

Sp123 5 Apr, 2026

<style>/*
<script type="text/javascript" src="https://www.blogger.com/static/v1/widgets/344097953-widgets.js"></script>
<script type='text/javascript'>
window['__wavt'] = 'APlU3ly0zFmxjjii6cwypFK1HtUt:1775673239809';_WidgetManager._Init('//www.blogger.com/rearrange?blogID\x3d5925999397593177003','//www.sharitsec.eu.org/','5925999397593177003');
_WidgetManager._SetDataContext([{'name': 'blog', 'data': {'blogId': '5925999397593177003', 'title': 'SharITSec', 'url': 'https://www.sharitsec.eu.org/', 'canonicalUrl': 'https://www.sharitsec.eu.org/', 'homepageUrl': 'https://www.sharitsec.eu.org/', 'searchUrl': 'https://www.sharitsec.eu.org/search', 'canonicalHomepageUrl': 'https://www.sharitsec.eu.org/', 'blogspotFaviconUrl': 'https://www.sharitsec.eu.org/favicon.ico', 'bloggerUrl': 'https://www.blogger.com', 'hasCustomDomain': true, 'httpsEnabled': true, 'enabledCommentProfileImages': true, 'gPlusViewType': 'FILTERED_POSTMOD', 'adultContent': false, 'analyticsAccountNumber': '', 'encoding': 'UTF-8', 'locale': 'en-GB', 'localeUnderscoreDelimited': 'en_gb', 'languageDirection': 'ltr', 'isPrivate': false, 'isMobile': false, 'isMobileRequest': false, 'mobileClass': '', 'isPrivateBlog': false, 'isDynamicViewsAvailable': true, 'feedLinks': '\x3clink rel\x3d\x22alternate\x22 type\x3d\x22application/atom+xml\x22 title\x3d\x22SharITSec - Atom\x22 href\x3d\x22https://www.sharitsec.eu.org/feeds/posts/default\x22 /\x3e\n\x3clink rel\x3d\x22alternate\x22 type\x3d\x22application/rss+xml\x22 title\x3d\x22SharITSec - RSS\x22 href\x3d\x22https://www.sharitsec.eu.org/feeds/posts/default?alt\x3drss\x22 /\x3e\n\x3clink rel\x3d\x22service.post\x22 type\x3d\x22application/atom+xml\x22 title\x3d\x22SharITSec - Atom\x22 href\x3d\x22https://www.blogger.com/feeds/5925999397593177003/posts/default\x22 /\x3e\n', 'meTag': '\x3clink rel\x3d\x22me\x22 href\x3d\x22https://www.blogger.com/profile/08645900966523004369\x22 /\x3e\n', 'adsenseClientId': 'ca-pub-2460228594947362', 'adsenseHostId': 'ca-host-pub-1556223355139109', 'adsenseHasAds': true, 'adsenseAutoAds': true, 'boqCommentIframeForm': true, 'loginRedirectParam': '', 'view': '', 'dynamicViewsCommentsSrc': '//www.blogblog.com/dynamicviews/4224c15c4e7c9321/js/comments.js', 'dynamicViewsScriptSrc': '//www.blogblog.com/dynamicviews/5ddb33369fcd32d1', 'plusOneApiSrc': 'https://apis.google.com/js/platform.js', 'disableGComments': true, 'interstitialAccepted': false, 'sharing': {'platforms': [{'name': 'Get link', 'key': 'link', 'shareMessage': 'Get link', 'target': ''}, {'name': 'Facebook', 'key': 'facebook', 'shareMessage': 'Share to Facebook', 'target': 'facebook'}, {'name': 'BlogThis!', 'key': 'blogThis', 'shareMessage': 'BlogThis!', 'target': 'blog'}, {'name': 'X', 'key': 'twitter', 'shareMessage': 'Share to X', 'target': 'twitter'}, {'name': 'Pinterest', 'key': 'pinterest', 'shareMessage': 'Share to Pinterest', 'target': 'pinterest'}, {'name': 'Email', 'key': 'email', 'shareMessage': 'Email', 'target': 'email'}], 'disableGooglePlus': true, 'googlePlusShareButtonWidth': 0, 'googlePlusBootstrap': '\x3cscript type\x3d\x22text/javascript\x22\x3ewindow.___gcfg \x3d {\x27lang\x27: \x27en_GB\x27};\x3c/script\x3e'}, 'hasCustomJumpLinkMessage': false, 'jumpLinkMessage': 'Read more', 'pageType': 'index', 'pageName': '', 'pageTitle': 'SharITSec', 'metaDescription': 'Welcome to the website \x22sharitsec.eu.org\x22 a gathering place for information and learning news about hacking.'}}, {'name': 'features', 'data': {}}, {'name': 'messages', 'data': {'edit': 'Edit', 'linkCopiedToClipboard': 'Link copied to clipboard', 'ok': 'Ok', 'postLink': 'Post link'}}, {'name': 'template', 'data': {'name': 'custom', 'localizedName': 'Custom', 'isResponsive': true, 'isAlternateRendering': false, 'isCustom': true}}, {'name': 'view', 'data': {'classic': {'name': 'classic', 'url': '?view\x3dclassic'}, 'flipcard': {'name': 'flipcard', 'url': '?view\x3dflipcard'}, 'magazine': {'name': 'magazine', 'url': '?view\x3dmagazine'}, 'mosaic': {'name': 'mosaic', 'url': '?view\x3dmosaic'}, 'sidebar': {'name': 'sidebar', 'url': '?view\x3dsidebar'}, 'snapshot': {'name': 'snapshot', 'url': '?view\x3dsnapshot'}, 'timeslide': {'name': 'timeslide', 'url': '?view\x3dtimeslide'}, 'isMobile': false, 'title': 'SharITSec', 'description': 'Welcome to the website \x22sharitsec.eu.org\x22 a gathering place for information and learning news about hacking.', 'url': 'https://www.sharitsec.eu.org/', 'type': 'feed', 'isSingleItem': false, 'isMultipleItems': true, 'isError': false, 'isPage': false, 'isPost': false, 'isHomepage': true, 'isArchive': false, 'isLabelSearch': false}}, {'name': 'widgets', 'data': [{'title': 'Pagination', 'type': 'HTML', 'sectionId': 'upload-image', 'id': 'HTML8'}, {'title': 'Template License', 'type': 'HTML', 'sectionId': 'upload-image', 'id': 'HTML7'}, {'title': 'Popular', 'type': 'PopularPosts', 'sectionId': 'upload-image', 'id': 'PopularPosts1', 'posts': [{'title': 'Actively Exploited Microsoft SharePoint Deserialization of Untrusted Data Vulnerability', 'id': 7336405913127590235}, {'title': 'Perseus: DTO malware that takes notes', 'id': 4307222844789455355}, {'title': 'Libraries for Red Teaming Your GenAI Applications', 'id': 2704897469970914799}]}, {'title': 'Your Css', 'type': 'HTML', 'sectionId': 'upload-image', 'id': 'HTML9'}, {'title': 'About Me', 'type': 'Profile', 'sectionId': 'upload-image', 'id': 'Profile1'}, {'title': 'Your Javascript', 'type': 'HTML', 'sectionId': 'upload-image', 'id': 'HTML6'}, {'title': 'Google analytics', 'type': 'HTML', 'sectionId': 'upload-image', 'id': 'HTML5'}, {'title': 'Navbar Menu', 'type': 'HTML', 'sectionId': 'upload-image', 'id': 'HTML2'}, {'title': 'Icons, Dark, Search', 'type': 'LinkList', 'sectionId': 'header-main', 'id': 'LinkList10'}, {'title': 'Menu', 'type': 'LinkList', 'sectionId': 'header-main', 'id': 'LinkList11'}, {'title': 'Featured Post', 'type': 'FeaturedPost', 'sectionId': 'before-blog', 'id': 'FeaturedPost1', 'postId': '8344856500834456062'}, {'title': 'Blog Posts', 'type': 'Blog', 'sectionId': 'blog-post', 'id': 'Blog1', 'posts': [{'id': '8344856500834456062', 'title': 'The Glasswing Paradox: The Thing That Can Break Everything Is Also The Thing That Fixes Everything', 'featuredImage': 'https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_v0wsnsgjbaTEQMNKQhccU8CQ8ZFEKTlU1cImbylDBQ22fWJtG9Xob-fWtBzVqG122EeZCVOtJwMd2fY3nKDATxl6e_Q2e61V7lr7N67xGVnjw1a3WyizVkmTOe0wa30F__GSzCXXTN0gdjX_Pbu4WBppSckoo_x-zjdcbcRsevYXjIX4s', 'showInlineAds': false}, {'id': '7425702037125419265', 'title': 'Jury Finds Meta, YouTube Liable in Addiction Case', 'showInlineAds': false}, {'id': '4433193814345947229', 'title': 'Mind the Gap Between Backup and Business Email Continuity', 'showInlineAds': false}, {'id': '5360562867893430238', 'title': 'MacOS malware persistence 9: emond (The Event Monitor Daemon). Simple C example', 'featuredImage': 'https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_teWt0de4HySVpoFGRnMuPqf58i1DrZnsj5vbwwjjDTkCH9yz19T5Drh4RIya46Qvlor1l0VaSRKxJRiIh8eWDiM21gNv-nzD3fac5qydRR291xVrETg50tF6i4qm8_FsXQO1VU3LQ', 'showInlineAds': false}, {'id': '55982561744342924', 'title': 'NYS school data incidents rose 72% in 2025, with 44 reported on Long Island', 'featuredImage': 'https://lh3.googleusercontent.com/blogger_img_proxy/AEn0k_u_ymn0NZcvBPDoHCLTAunCdTREUN8Ewd3HBE5mcZzeqCc4q_PR1-tTf5-zcMQtqGcrGCAo4XLTuUXVQQZ58Z_bBm4bIcXC313MKYpxa5MZu9oQiOKudtwk3dn14qgvx7w0J5twgph90Q3qmUPP1tR3zEaiOmg3J5DeDP6G9hYXvWtVHc_7oEEhIVmJ0hr7ftOz_A8Kbwd0wP-TV8RsyFqsrmzIA3u1PIpdfqQymXPQL5otq1WRTULasqWJunYY-9V-qnMevv9Td7Rb16QJ5XwZOJbabhnpG-FZ-yz25XFap7WlPLvgqFOn2OjsietSLP7f4dum86wc6_L9IIJfah2xQTfJ7Gn9rYGYVpObhiD81ATmVKyyHYMphGoKDAi7RGiMj4cDbsj8wdQOks1gLgw6IbsQqhs-txt-Vn6zp2HHvCbYsfk6Z-sHTT5ga_AZvU5AbyajZ5cjfOvbP2ZPl5l6mrTUMGSBDJ2kpI51lPDf9gSVbxn2M81yliHIfp_34o0co8eVBwadUhQtIUi6vIsr03SJ-GTvnGsBAsAroOWgF9O-nt3MY5UGxl49MViLFKLbzjUpUFvCg1r0bl2n7H2Tji1dFtDzzffHj_IzQDMh1gk7kwflPolqpVH4DpPb6rbkKzQVF415UwgF1-TY', 'showInlineAds': false}, {'id': '1957116102979719043', 'title': 'How often are redirects used in phishing in 2026?, (Mon, Apr 6th)', 'showInlineAds': false}, {'id': '4918921207030203582', 'title': 'Killer robots are here. Now what? (Lock and Code S07E07)', 'showInlineAds': false}, {'id': '2968134140042434898', 'title': 'Free at Last: Ditching TurboTax for FreeTaxUSA', 'showInlineAds': false}], 'headerByline': {'regionName': 'header1', 'items': [{'name': 'author', 'label': 'Posted by'}, {'name': 'timestamp', 'label': 'd MMM, yyyy'}, {'name': 'share', 'label': ''}]}, 'footerBylines': [{'regionName': 'footer2', 'items': [{'name': 'labels', 'label': 'Labels:'}]}], 'allBylineItems': [{'name': 'author', 'label': 'Posted by'}, {'name': 'timestamp', 'label': 'd MMM, yyyy'}, {'name': 'share', 'label': ''}, {'name': 'labels', 'label': 'Labels:'}]}, {'title': '#You may also like', 'type': 'HTML', 'sectionId': 'ads-post', 'id': 'HTML15'}, {'title': '', 'type': 'HTML', 'sectionId': 'sidebar-static', 'id': 'HTML25'}, {'title': 'Popular Posts', 'type': 'PopularPosts', 'sectionId': 'sidebar-static', 'id': 'PopularPosts10', 'posts': [{'title': 'What Is Data Exfiltration?', 'id': 7330688186385146512}, {'title': 'The Week in Vulnerabilities: AI Frameworks, VMware, and Critical ICS Exposure', 'id': 3726369080213391157}, {'title': 'Up to EUR 50 000 for a passage to the UK: 19 suspected migrant smugglers arrested', 'id': 8871766870743653531}, {'title': 'Analysis of cifrat: could this be an evolution of a mobile RAT?', 'id': 1607950044306412206}, {'title': 'CVE-2026-20093: Critical Cisco IMC Flaw Allows Unauthenticated Admin Access to UCS Servers', 'id': 7005641909808940313}, {'title': 'Application Control Bypass for Data Exfiltration, (Tue, Mar 31st)', 'id': 3077788234771723734}, {'title': 'AI Threat Landscape Digest January-February 2026', 'id': 5406557754653915139}, {'title': 'DarkSword threatens unupdated iPhones', 'id': 2810467984250862716}, {'title': 'A malicious LNK that spreads a Python-based backdoor and how it\u2019s spreading (Kimsuky group)', 'id': 8963331020679565361}, {'title': 'Mutation testing for the agentic era', 'id': 331369334062866709}]}, {'title': 'Archive', 'type': 'BlogArchive', 'sectionId': 'sidebar-static', 'id': 'BlogArchive10'}, {'title': '#Recent Post', 'type': 'HTML', 'sectionId': 'sidebar-static', 'id': 'HTML19'}, {'title': 'Copyright', 'type': 'HTML', 'sectionId': 'copyright', 'id': 'HTML23'}, {'title': 'SVG Icons', 'type': 'HTML', 'sectionId': 'jet-options', 'id': 'HTML24'}]}]);
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML8', 'upload-image', document.getElementById('HTML8'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML7', 'upload-image', document.getElementById('HTML7'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_PopularPostsView', new _WidgetInfo('PopularPosts1', 'upload-image', document.getElementById('PopularPosts1'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML9', 'upload-image', document.getElementById('HTML9'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_ProfileView', new _WidgetInfo('Profile1', 'upload-image', document.getElementById('Profile1'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML6', 'upload-image', document.getElementById('HTML6'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML5', 'upload-image', document.getElementById('HTML5'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML2', 'upload-image', document.getElementById('HTML2'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_LinkListView', new _WidgetInfo('LinkList10', 'header-main', document.getElementById('LinkList10'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_LinkListView', new _WidgetInfo('LinkList11', 'header-main', document.getElementById('LinkList11'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_FeaturedPostView', new _WidgetInfo('FeaturedPost1', 'before-blog', document.getElementById('FeaturedPost1'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_BlogView', new _WidgetInfo('Blog1', 'blog-post', document.getElementById('Blog1'), {'cmtInteractionsEnabled': false, 'lightboxEnabled': true, 'lightboxModuleUrl': 'https://www.blogger.com/static/v1/jsbin/671862423-lbx__en_gb.js', 'lightboxCssUrl': 'https://www.blogger.com/static/v1/v-css/828616780-lightbox_bundle.css'}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML15', 'ads-post', document.getElementById('HTML15'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML25', 'sidebar-static', document.getElementById('HTML25'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_PopularPostsView', new _WidgetInfo('PopularPosts10', 'sidebar-static', document.getElementById('PopularPosts10'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_BlogArchiveView', new _WidgetInfo('BlogArchive10', 'sidebar-static', document.getElementById('BlogArchive10'), {'languageDirection': 'ltr', 'loadingMessage': 'Loading\x26hellip;'}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML19', 'sidebar-static', document.getElementById('HTML19'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML23', 'copyright', document.getElementById('HTML23'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML24', 'jet-options', document.getElementById('HTML24'), {}, 'displayModeFull'));
</script>
</body>*/</style>