Experimental News Clipping Site

Tag: reverse engineering

  • Cloud Blog: Cloud CISO Perspectives: New AI, cybercrime reports underscore need for security best practices

    by

    Kurt Seifried
    in

    Source URL: https://cloud.google.com/blog/products/identity-security/cloud-ciso-perspectives-new-ai-cybercrime-reports-underscore-need-security-best-practices/ Source: Cloud Blog Title: Cloud CISO Perspectives: New AI, cybercrime reports underscore need for security best practices Feedly Summary: Welcome to the first Cloud CISO Perspectives for February 2025. Stephanie Kiel, our head of cloud security policy, government affairs and public policy, discusses two parallel and important security conversations she had at…

  • Cloud Blog: Using capa Rules for Android Malware Detection

    by

    Kurt Seifried
    in

    Source URL: https://cloud.google.com/blog/topics/threat-intelligence/capa-rules-android-malware-detection/ Source: Cloud Blog Title: Using capa Rules for Android Malware Detection Feedly Summary: Mobile devices have become the go-to for daily tasks like online banking, healthcare management, and personal photo storage, making them prime targets for malicious actors seeking to exploit valuable information. Bad actors often turn to publishing and distributing malware…

  • Hacker News: ScatterBrain: Unmasking the Shadow of PoisonPlug’s Obfuscator

    by

    Kurt Seifried
    in

    Source URL: https://cloud.google.com/blog/topics/threat-intelligence/scatterbrain-unmasking-poisonplug-obfuscator Source: Hacker News Title: ScatterBrain: Unmasking the Shadow of PoisonPlug’s Obfuscator Feedly Summary: Comments AI Summary and Description: Yes **Summary**: The text provides a comprehensive analysis of the ScatterBrain obfuscating compiler, a sophisticated tool used in cyber espionage by China-nexus actors, particularly with the POISONPLUG.SHADOW malware. It highlights the advanced obfuscation techniques…

  • Cloud Blog: Adversarial Misuse of Generative AI

    by

    Kurt Seifried
    in

    Source URL: https://cloud.google.com/blog/topics/threat-intelligence/adversarial-misuse-generative-ai/ Source: Cloud Blog Title: Adversarial Misuse of Generative AI Feedly Summary: Rapid advancements in artificial intelligence (AI) are unlocking new possibilities for the way we work and accelerating innovation in science, technology, and beyond. In cybersecurity, AI is poised to transform digital defense, empowering defenders and enhancing our collective security. Large language…

  • Cloud Blog: ScatterBrain: Unmasking the Shadow of PoisonPlug’s Obfuscator

    by

    Kurt Seifried
    in

    Source URL: https://cloud.google.com/blog/topics/threat-intelligence/scatterbrain-unmasking-poisonplug-obfuscator/ Source: Cloud Blog Title: ScatterBrain: Unmasking the Shadow of PoisonPlug’s Obfuscator Feedly Summary: Written by: Nino Isakovic Introduction Since 2022, Google Threat Intelligence Group (GTIG) has been tracking multiple cyber espionage operations conducted by China-nexus actors utilizing POISONPLUG.SHADOW. These operations employ a custom obfuscating compiler that we refer to as “ScatterBrain," facilitating…

  • Hacker News: Reverse Engineering Call of Duty Anti-Cheat

    by

    Kurt Seifried
    in

    Source URL: https://ssno.cc/posts/reversing-tac-1-4-2025/ Source: Hacker News Title: Reverse Engineering Call of Duty Anti-Cheat Feedly Summary: Comments AI Summary and Description: Yes **Summary:** The text presents an in-depth analysis of the user-mode anti-cheat mechanism employed in the video game “Call of Duty: Black Ops Cold War,” referred to as TAC (Treyarch Anti-Cheat). It details the obfuscation…

  • Hacker News: GPON FTTH networks (in)security (2016)

    by

    system automation
    in

    Source URL: https://pierrekim.github.io/blog/2016-11-01-gpon-ftth-networks-insecurity.html#introduction Source: Hacker News Title: GPON FTTH networks (in)security (2016) Feedly Summary: Comments AI Summary and Description: Yes Summary: The text delves into the (in)security of GPON FTTH networks, particularly focusing on vulnerabilities inherent in devices like the Optical Network Terminal (ONT) used by major ISPs in France. It uncovers significant threats, including…

  • Threat Research Archives – Unit 42: Accelerating Analysis When It Matters

    by

    system automation
    in

    Source URL: https://unit42.paloaltonetworks.com/accelerating-malware-analysis/ Source: Threat Research Archives – Unit 42 Title: Accelerating Analysis When It Matters Feedly Summary: AI Summary and Description: Yes Summary: The text discusses the efficient methods for malware analysis implemented by security professionals, particularly through the use of automated tools like Advanced WildFire’s Malware Configuration Extraction (MCE). This process significantly accelerates…