[ Android ]  Just published a new blog post in the zero-to-TrustZone series: https://bits-please.blogspot.com/2016/06/trustzone-kernel-privilege-escalation.html Qualcomm TrustZone Kernel privilege escalation!

[ Android ]  McAfee Labs discovers app collusion threats, increasing growth in mobile malware http://zpr.io/Kvfm https://t.co/eUd53v8Qoc

[ Android ]  Dalvik bytecode from tampering Principle and Implementation: http://drops.wooyun.org/mobile/16677 (Chinese) https://github.com/leonnewton/selfmodify

[ Attack ]  xDedic - an "eBay" for hacked servers: https://securelist.com/blog/research/75027/xdedic-the-shady-world-of-hacked-servers-for-sale/

[ Attack ]  IT threats during the 2016 Olympic Games in Brazil - Securelist http://ow.ly/V17G301gu7s

[ Attack ]  Mofang : A politically motivated information stealing adversary : https://foxitsecurity.files.wordpress.com/2016/06/fox-it_mofang_threatreport_tlp-white.pdf (pdf)

[ Attack ]  Over 45 Million passwords from Verticalscope 1,000 sites leaked online http://securityaffairs.co/wordpress/48404/deep-web/verticalscope-data-breach.html

[ Browser ]  Chrome - GPU process BufferManager double-read https://bugs.chromium.org/p/project-zero/issues/detail?id=787#c_ts1465984996

[ Browser ]  Safari will no longer reveal installed common plug-ins. No Flash, Java, Silverlight, QuickTime in navigator.plugins: https://webkit.org/blog/6589/next-steps-for-legacy-plug-ins/

[ Defend ]  ROPdefender: A Detection Tool to Defend Against Return-Oriented Programming Attacks : https://www.trust.informatik.tu-darmstadt.de/fileadmin/user_upload/Group_TRUST/PubsPDF/ropdefender.pdf (pdf)

[ Hardware ]  #Siemens SIMATIC S7-300 Denial-of-Service Vulnerability V3.2.12 Exploit causes device to go OOS reboot required https://ics-cert.us-cert.gov/advisories/ICSA-16-161-01 …

[ Hardware ]  Intel x86s hide another CPU that can take over your machine (you can't audit it) http://boingboing.net/2016/06/15/intel-x86-processors-ship-with.html

[ iOS ]  Liberation, a new iOS engine uses Keystone assembler inside for code injection! https://github.com/iOSCheaters/Liberation

[ macOS ]  Joker (#iOS10/#OSX 12 #kernel reversing aid) v3.0(β): now shows MACF hooks, syscalls, MIG. http://newosxbook.com/tools/joker.html#v3 https://t.co/WKDkscwhAT

[ Malware ]  Malware authors uses OLE embedding to deliver malicious files. #MMPC on ID and mitigation: http://ow.ly/p0od301gt5o https://t.co/Gx6f8H1SCw

[ Obfuscation ]  Deobfuscator - all-in-one Java deobfuscator which will deobfuscate code obfuscated by most Android obfuscators https://github.com/java-deobfuscator/deobfuscator

[ Others ]  Technical Details on the DNC hack via powershell backdoor : https://www.crowdstrike.com/blog/bears-midst-intrusion-democratic-national-committee/

[ Others ]  Face Authentication Bypassing – KeyLemon http://goo.gl/fb/YdzjJm #FullDisclosure

[ Others ]  Password DNA: https://www.unix-ninja.com/p/Password_DNA

[ Pentest ]  Where My Admins At? (GPO Edition) : http://www.harmj0y.net/blog/redteaming/where-my-admins-at-gpo-edition/ cc @ harmj0y

[ Popular Software ]  [CVE-2014-1520] NOT FIXED: privilege escalation via Mozilla's executable… http://goo.gl/fb/gWJ7FS #FullDisclosure

[ Popular Software ]  Telegram calls claims of bug in messaging service bogus - https://threatpost.com/telegram-calls-claims-of-bug-in-messaging-service-bogus/118678/

[ Popular Software ]  [local] - AdobeUpdateService 3.6.0.248 - Unquoted Service Path Privilege Escalation https://www.exploit-db.com/exploits/39954/

[ Popular Software ]  New post: Unsupported TeamViewer Versions Exploited For Backdoors, Keylogging http://bit.ly/239nP7P @ TrendMicro

[ ReverseEngineering ]  Extracting the master key from an iClass RFID reader by @ kchungco – PANDA makes a cameo appearance! https://blog.kchung.co/reverse-engineering-hid-iclass-master-keys/

[ Rootkit ]  (2012) Great slide deck from @ snare on building EFI-based rootkits http://ho.ax/downloads/De_Mysteriis_Dom_Jobsivs_Black_Hat_Slides.pdf

[ Sandbox ]  Here's the slides from my talk on unprivileged containers and sandboxes, huge shout out to asciinemia for the gifs https://docs.google.com/presentation/d/1FGhm7S7bm8AwzF6eD8hb9m6cjf68Vr3ej-HzfYpGiNA

[ Tools ]  RT @ bartblaze: Recover encrypted files by #Nemucod #Ransomware: https://github.com/Antelox/NemucodFR By: @ Antelox

[ Virtualization ]  CVE-2016-3642 - Java Deserialization in Solarwinds Virtualization Manager 6… http://goo.gl/fb/aHPuMo #FullDisclosure

[ Web Security ]  Revisiting XSS payloads in PNG IDAT chunks https://www.adamlogue.com/revisiting-xss-payloads-in-png-idat-chunks/

[ Windows ]  Hijacking Common Windows Shortcuts with Powershell : http://jerrygamblin.com/2016/06/12/hijacking-common-windows-shortcuts-with-powershell/ https://t.co/HG1O3SpPKW

[ Windows ]  Windows 7 win32k bitmap use-after-free https://bugs.chromium.org/p/project-zero/issues/detail?id=747#c_ts1465979557 (MS16-062)

[ Windows ]  Craft a malicious ETW Provider? Seems plausible... https://wychi.wordpress.com/2009/10/21/create-your-own-etw-provider-and-log-it-by-xperf/ My bet... someone has figured this out. https://t.co/bbOj8tw3qk

[ Windows ]  Ok #Bash & #WSL fans - drop everything! New post & video on Bash/WSL #filesystem features! https://blogs.msdn.microsoft.com/commandline/2016/06/15/new-post-and-video-on-wsl-filesystem-features/ https://t.co/GIePELQNIn