COHORT 3 - Resource Repo

Here is a compilation of all the useful resource links shared during recent discussions:

----Cohort Group Resources---

LinkedIn Group: https://www.dhirubhai.net/groups/9072552/

Facebook Group: https://www.facebook.com/groups/3255217948056825/

Links shared by Prof Shukla:

• Evil USB Cable Can Remotely Accept Commands From Hacker (12 Feb 2019)- https://in.pcmag.com/news/128571/evil-usb-cable-can-remotely-accept-commands-from-hacker
• Social Media Cyber Predators: Customers Beware (15 Feb 2021) - https://www.dhirubhai.net/pulse/social-media-cyber-predators-customers-beware-sandeep-shukla/?published=t
• Your Browser’s Favicons Could Be Used To Track You Online: Here’s How (12 Feb 2021) https://fossbytes.com/browsers-favicons-track-you-online/
• Brig Gen @RosenYaron, ex-@IDF cyber chief says world needs 'Cyber-WHO' for 180+ nations that lack #CyberCapabilities. Such body cant end attacks but may enhance capacity & #InfoSharing. #WorldEconomy facing losses worth $1 tn from cyberattacks underlines criticality of the claim. https://t.co/u7UzxvTzB7
• Cybersecurity CTFs: The power of competition in building attack-ready humans (17 Feb 2021) https://youtu.be/KL83YlXvpJY
• Dark Web Demystified: Explore the Criminal Underground Web for Mining Threat Intelligence ( 16 Feb 2021) https://go.recordedfuture.com/recordings/20210216
• Unchained Blockchain Security Conference (26 Feb, 2021) https://www.youtube.com/watch?v=hT7rxkWKXPA&ab_channel=RazzorSec
• Data Privacy in Cybersecurity with Dr. Sandeep Shukla, Professor Computer Science, IIT Kanpur (22 Feb 2021) https://youtu.be/30If71Uy4t8
• Indian Government Breached, Massive Amount of Critical Vulnerabilities (20 Feb 2021) https://johnjhacking.com/blog/indian-government-breached-massive-amount-of-critical-vulnerabilities/
• Error 302: Request for Cyber Privacy||Documentary on Cyber Security (20 Feb 2021) https://youtu.be/hLpxipTmIUA
• How to Use Wireshark: Comprehensive Tutorial + Tips (18 Sept 2020) https://www.varonis.com/blog/how-to-use-wireshark/
• How to Use Nmap: Commands and Tutorial Guide (20 May 2020) https://www.varonis.com/blog/nmap-commands/
• NETWORK ADDRESS TRANSLATION (NAT) CONCEPTS https://www.firewall.cx/networking-topics/network-address-translation-nat/227-nat-concepts.html
• DNS Lookup (DNS Checker) https://dnschecker.org/all-dns-records-of-domain.php
• Hackers Tied to Russia's GRU Targeted the US Grid for Years, Researchers Warn (24 Feb 2021) https://www.wired.com/story/russia-gru-hackers-us-grid/
• 40 Telangana sub-stations attacked by Chinese malware (3 March 2021) https://www.businesstoday.in/current/economy-politics/40-telangana-sub-stations-attacked-by-chinese-malware/story/432839.html
• The Most Serious Security Risk Facing the United States (9 Feb 2021) https://www-nytimes-com.cdn.ampproject.org/c/s/www.nytimes.com/2021/02/09/books/review/this-is-how-they-tell-me-the-world-ends-nicole-perlroth.amp.html
• Massive Supply-Chain Cyberattack Breaches Several Airlines (5 March 2021) https://threatpost.com/supply-chain-cyberattack-airlines/164549/
• Poison packages – “Supply Chain Risks” user hits Python community with 4000 fake modules (7 March 2021) https://nakedsecurity.sophos.com/2021/03/07/poison-packages-supply-chain-risks-user-hits-python-community-with-4000-fake-modules/amp/
• Cyberattacks on Mumbai power continue! (9 March 2021) https://www.rediff.com/news/special/cyberattacks-on-mumbai-power-continue/20210309.htm
• India Formulates New Strategy to Counter China’s Cyber Threat (8 March 2021) https://www.bloombergquint.com/global-economics/china-hacking-concern-revives-india-focus-on-cybersecurity-plan
• 62.6 billion cybersecurity threats detected in 2020 (2 March 2021) https://www.technologydecisions.com.au/content/security/news/62-6-billion-cybersecurity-threats-detected-in-2020-416610312
• Cyber Attacks More Likely to Bring Down F-35 Jets Than Missiles (25 Feb 2021) https://amp-interestingengineering-com.cdn.ampproject.org/c/s/amp.interestingengineering.com/cyber-attacks-more-likely-to-bring-down-f-35-jets-than-missiles
• HAFNIUM and SolarWinds Attacks Highlight Lack of Accountability (8 March 2021) https://www.cybereason.com/blog/hafnium-and-solarwinds-attacks-highlight-lack-of-accountability
• ?DEPARTMENT OF?DEFENSE - TRUSTED COMPUTER?SYSTEM EVALUATION CRITERIA (15 Aug 1983) - https://fas.org/irp/nsa/rainbow/std001.htm
• Webinar 12th March : Cyber Security as a National Service (15 March 2021) https://www.youtube.com/watch?app=desktop&v=d00DCa_X0nQ&feature=youtu.be&ab_channel=C3iHub
• A Hacker Got All My Texts for $16 (15 March 2021) https://www.vice.com/en/article/y3g8wb/hacker-got-my-texts-16-dollars-sakari-netnumber
• Computer giant Acer hit by $50 million ransomware attack (19 March) https://www.bleepingcomputer.com/news/security/computer-giant-acer-hit-by-50-million-ransomware-attack/
• No life, no hobbies, burnout, lost childhood — the price students pay for a prized IIT seat (22 March 2021) https://theprint.in/india/education/no-life-no-hobbies-burnout-lost-childhood-the-price-students-pay-for-a-prized-iit-seat/625040/
• Why India shouldn’t use blockchain for GST. It will make planet hotter, for one (26 March 2021) https://theprint.in/opinion/why-india-shouldnt-use-blockchain-for-gst-it-will-make-planet-hotter-for-one/628587/
• Understanding the Data Diode is a key to Correctly-deployed ICS cyber defense (27 March) https://www.dhirubhai.net/pulse/understanding-data-diode-key-correctly-deployed-ics-cyber-ehrenreich/
• Ransomware gang leaks data from US military contractor the PDI Group (25 March 2021) https://therecord-media.cdn.ampproject.org/c/s/therecord.media/ransomware-gang-leaks-data-from-us-military-contractor-the-pdi-group/amp/
• Hackers spoofed biometric authentication videos to steal millions in China (31 March 2021) https://www.biometricupdate.com/202103/hackers-spoofed-biometric-authentication-videos-to-steal-millions-in-china
• Data of 553 million Facebook users from 106 countries, including India, leaked (4 April 2021) https://www.businesstoday.in/current/economy-politics/data-of-553-million-facebook-users-from-106-countries-including-india-leaked-for-free/story/435664.html
• Detecting Malicious Accounts in Permissionless Blockchains (3 May 2021) https://www.asiainnovationsummit.com/sandeep-shukla
• NMAP Commands Cheatsheet (15 Jan 2019) https://hackersonlineclub.com/nmap-commands-cheatsheet/
• New Cring ransomware deployed targeting unpatched Fortinet VPN devices (9 April 2021) https://therecord-media.cdn.ampproject.org/c/s/therecord.media/new-cring-ransomware-deployed-via-unpatched-fortinet-vpns/amp/
• Why iPhone, iPad And Mac Users Should Avoid Google Chrome’s FLoC Update (10 April 2021) https://www.forbes.com/sites/zakdoffman/2021/04/10/why-you-should-never-use-google-chrome-on-your-apple-iphone-ipad-imac-or-macbook/amp/
• Domino's India hacked? Credit card data of 10 lakh users on 'sale' for Rs 4 crore (19 April 2021) https://www.tribuneindia.com/news/nation/dominos-india-hacked-credit-card-data-of-10-lakh-users-on-sale-for-rs-4-crore-241206
• Take a Moment to Hug Your Friends & Family: RIP Dan Kaminsky (26 April 2021) https://securityboulevard.com/2021/04/take-a-moment-hug-your-friends-family-rip-dan-kaminsky/
• DigitalOcean Data breach; Customer billing data Exposed (29 April 2021) https://securereading.com/digitalocean-data-breach-customer-billing-data-exposed/?fbclid=IwAR1liOd6SfjjicKzim3K_flJafDnsbwYjY0HMWbrtRSe8DlfBXS2NI_ZyqM
• IT Explained: IP address https://www.paessler.com/it-explained/ip-address
• How I Could Send Any Text Message From Indian Government IDs (11 May 2021) https://kmskrishna.me/how-i-could-send-any-text-message-from-indian-government-ids-b61c5b8726c9
• 45 Lakh Affected In Massive Air India Data Breach Including Credit Cards - NDTV (22 May 2021) https://www.ndtv.com/india-news/massive-data-breach-at-air-india-around-45-lakh-customers-affected-report-2446873
• 2 crore lost as cops detect hacking at more Kolkata ATMs (1 June 2021) https://timesofindia.indiatimes.com/city/kolkata/2cr-lost-as-cops-detect-hacking-at-more-atms/articleshow/83126568.cms
• 6 Day's Short Term Training Programme (STTP) on CYBERSECURITY Day-1 Session-I (MAKAUT, WB) (14 June 2021) https://www.youtube.com/watch?v=Mt_Ij_qxFsM&ab_channel=MaulanaAbulKalamAzadUniversityofTechnology%2CWestBengal
• Cybersecurity Acronyms – A Practical Glossary https://www.uscybersecurity.net/cybersecurity-acronyms/
• Hackers Breached Colonial Pipeline Using Compromised Password (5 June 2021) https://www.bloomberg.com/news/articles/2021-06-04/hackers-breached-colonial-pipeline-using-compromised-password
• Chinese loan apps misuse KYC details of Indians to set up fake bank accounts (21 June 2021) https://www.thenewsminute.com/article/chinese-loan-apps-misuse-kyc-details-indians-set-fake-bank-accounts-151036
• Wormable DarkRadiation Ransomware Targets Linux and Docker Instances (22 June) https://thehackernews.com/2021/06/wormable-darkradiation-ransomware.html
• Cyber espionage by Chinese hackers in neighbouring nations is on the rise (18 June 2021) https://thehackernews.com/2021/06/cyber-espionage-by-chinese-hackers-in.html?m=1
• D3FEND Matrix - A knowledge graph of cybersecurity countermeasures https://d3fend.mitre.org/
• Antivirus Pioneer John McAfee Dies Hrs After Court Allows Extradition; Probe Team Says Could be Suicide (24 June 2021) https://www.news18.com/news/business/john-mcafee-software-pioneer-turned-fugitive-dead-at-75-3884507.html
• ANOM sting operation https://en.wikipedia.org/wiki/ANOM
• ANOM: Hundreds arrested in massive global crime sting using messaging app (8 June 2021) https://www.bbc.com/news/world-57394831
• Suspected Pakistani Actor Compromises Indian Power Company With New ReverseRat (22 June 2021) https://blog.lumen.com/suspected-pakistani-actor-compromises-indian-power-company-with-new-reverserat/
• CYBELLUM - VULNERABILITY MANAGEMENT https://cybellum.com/vulnerability-management/
• LinkedIn Suffers Massive Data Breach, Personal Details of 92 Percent Users Being Sold Online: Report (29 June 2021) https://gadgets.ndtv.com/apps/news/linkedin-data-breach-hack-700-million-92-percent-users-personal-information-sold-online-report-2475268
• New ransomware attack targets key IT vendor (3 July 2021) https://edition.cnn.com/2021/07/02/tech/ransomware-cybersecurity-attack-kaseya/index.html
• Director Education Workshop Session on Cyber Security for Board of Directors - Sandeep Shukla (15 Aug 2020)(webinar) https://www.youtube.com/watch?v=PenWCbME5dc&ab_channel=SandeepShukla
• Cyber Security for Critical Infrastructure Cyber Physical Systems for the uninitiated (10 May 2020) (webinar) https://www.youtube.com/watch?v=QV3OCww09-4&ab_channel=SandeepShukla
• A short talk on Software Supply Chain Attack and Solarwind Orion Situation (30 Dec 2020) (webinar) https://www.youtube.com/watch?v=FG4erbIZyNU&ab_channel=SandeepShukla
• Malicious Node Detection in Permissionless Blockchain (27 Feb 2021) (webinar) https://www.youtube.com/watch?v=UB9ObGhgZtA&ab_channel=SandeepShukla
• Cyber Physical Systems, Cyber Security and Machine Learning (5 Oct 2020) (webinar) https://www.youtube.com/watch?v=Ef8e2oEo230&ab_channel=SandeepShukla
• 94% Of Organizations Have Suffered Insider Data Breaches, Egress Research Reveals (13 July 2021) https://www.businesswire.com/news/home/20210713005123/en/94-Of-Organizations-Have-Suffered-Insider-Data-Breaches-Egress-Research-Reveals
• Asia Innovation Summit - Showcasing Implementable and Scalable Innovation (14 July 2021) https://www.youtube.com/watch?v=WQrN-QBCB-k&ab_channel=LumosLabs
• Rising Value and Visibility of Coinbase Attracts Impersonators https://www.inky.com/blog/rising-value-and-visibility-of-coinbase-attracts-impersonators
• SolarWinds Cybersecurity Risk Management and Assessment Tool https://www.solarwinds.com/access-rights-manager/use-cases/cybersecurity-risk-management
• 5 Essential Cybersecurity Risk Assessment Tools (6 Jan 2021) https://securityscorecard.com/blog/essential-cybersecurity-risk-assessment-tools
• 94% Of Organizations Have Suffered Insider Data Breaches, Egress Research Reveals (13 July 2021) https://www.businesswire.com/news/home/20210713005123/en/94-Of-Organizations-Have-Suffered-Insider-Data-Breaches-Egress-Research-Reveals
• National Blockchain Project https://blockchain.cse.iitk.ac.in/
• C3i Hub Live 23 July 2021 (startup fest) https://youtu.be/4m9MqEboxKY
• Beware!! Fake Windows 11 Installer Drop Malware on Your Computer https://gbhackers.com/fake-windows-11-installer/amp/
• HoneyPot – To Increase Network Security https://hackersonlineclub.com/honeypot/
• Zerodium Exploit Acquisition Program https://zerodium.com/program.html
• Old Dogs New Tricks: Attackers Adopt Exotic Programming Languages (July 26, 2021) https://blogs.blackberry.com/en/2021/07/old-dogs-new-tricks-attackers-adopt-exotic-programming-languages

Links shared by Prof Negi:

• Install https://www.virtualbox.org/
• https://images.kali.org/virtual-images/kali-linux-2020.4-vbox-amd64.ova
• Entrepreneurship and Start Up Incubation Program (https://siicincubator.com/programs/c3i-hub) for Cybersecurity and Cybersecurity of Cyber physical systems. https://bit.ly/3biWefH
• Permissions in Linux (30 Jan 2019) https://www.geeksforgeeks.org/permissions-in-linux/
• Install Peda https://github.com/longld/peda
• ICS Advisory (ICSA-19-290-01) AVEVA Vijeo Citect and Citect SCADA (Update A) - (19 December 2019) https://us-cert.cisa.gov/ics/advisories/icsa-19-290-01
• c3i lab at IITK (YouTube Video) (2 March 2021) https://www.youtube.com/watch?v=s95KRTo5I0M&t=23s&ab_channel=IITKANPUR (via tweet: https://twitter.com/C3iCenter/status/1376194423759859714)
• 'the neXt big security thing'?: NULLCON @ CiCenter https://twitter.com/cyber_developer/status/1377269092130844674
• Rohit’s Activity #C3iCenter https://lnkd.in/d7bXTqG
• SCADA https://en.wikipedia.org/wiki/SCADA
• Data Recovery-How Does Data Recovery Software Works https://www.dr-fone.com/articles/how-does-data-recovery-software-works.html
• Cyber Security In The Power Grid https://event.cisoplatform.com/best-of-the-world-in-security-2021/
• Cyber Security In The Power Grid https://twitter.com/C3iCenter/status/1387722229585117190
• Pegasus Spyware is a 'Big Black Hole', No Escape From Its Attack: Cyber Expert (24 July 2021) |?https://www.thequint.com/news/india/pegasus-spyware-malware-attack-nso-group-cyber-security-bjp-india-whatsapp
• Major roles and job titles in the cyber security sector (July 27, 2021) https://www.dhirubhai.net/feed/update/urn:li:activity:6825809648835162112/
• The U.S. Bureau of Labor Statistics' Information Security Analyst's Outlook predicts cybersecurity jobs will grow 31% through 2029, over seven times faster than the national average job growth of 4%. (July 29,2021) https://www.dhirubhai.net/feed/update/urn:li:activity:6826378966190825472/

Links shared by Prof Handa:

• Safe Kernel Programming with Rust (14 Aug 2018) https://www.diva-portal.org/smash/get/diva2:1238890/FULLTEXT01.pdf

Links shared by Prof Venkatesh:

• Decoding the data in /proc/net/tcp - proc_net_tcp_decode (24 March 2021) https://gist.github.com/jkstill/5095725
• Exporting public key from GnuPG fails with “WARNING: nothing exported” (9 Sept 2015) https://stackoverflow.com/questions/32475460/exporting-public-key-from-gnupg-fails-with-warning-nothing-exported
• Go vs C++ Compared and Contrasted (6 Aug 2020) https://careerkarma.com/blog/go-vs-c-plus-plus/
• Fragment and Forge: Breaking Wi-Fi Through Frame Aggregation and Fragmentation https://papers.mathyvanhoef.com/usenix2021.pdf
• Logstash-input-beats - File does not contain valid private key (april 2020) https://discuss.elastic.co/t/logstash-input-beats-file-does-not-contain-valid-private-key/228140
• VLAN Hopping Security (23 Sept 2019) https://www.n-able.com/blog/vlan-hopping-security
• A new way to encrypt photos on the cloud (19 July 2021) https://www.thehindu.com/sci-tech/technology/encrypting-photos-on-the-cloud/article35402258.ece

Other links shared:

• Hackers Hide Magecart Script in Favicon Image's EXIF Metadata, Exfiltrate Credit Cards Details (7 July 2020) (By Vishal) https://cyware.com/news/hackers-hide-magecart-script-in-favicon-images-exif-metadata-exfiltrate-credit-cards-details-822f8515
• Cyber Security. Books, Tools, News, Leaks (18 Feb) (By Gauresh) https://www.facebook.com/groups/357334614719782/permalink/1123582118095024/?sfnsn=wiwspwa
• Step 2 for Kali Linux download (by Tulika) https://images.kali.org/virtual-images/kali-linux-2020.4-vbox-i386.ova
• Keyboard Shortcuts For Tmux ~ A Useful Guide!! (17 Oct 2020) (by Neelakshi) https://shortcutbuzz.com/keyboard-shortcuts-for-tmux-a-useful-guide/
• Windows Registry Analysis – Tracking Every Activity That You Do on the Windows System (22 Feb 2021) (by Tulika) https://gbhackers.com/windows-registry-analysis-tracking-everything-you-do-on-the-system/
• FPO IP Research (by Partha) https://www.freepatentsonline.com/
• Privilege Escalation Attacks: Types, Examples, And Prevention (11 Aug) (by Neelakshi) https://purplesec.us/privilege-escalation-attacks/
• A method to change effective user id of a running program? (by Shrijith) https://stackoverflow.com/a/2512634
• China appears to warn India: Push too hard and the lights could go out (by ~S.. S)?https://www.moneycontrol.com/news/world/china-appears-to-warn-india-push-too-hard-and-the-lights-could-go-out-6586241.html
• WhatsAppChatAnalyser tool (by Partha) https://partha.shinyapps.io/WhatsAppChatAnalyser/
• HAFNIUM targeting Exchange Servers with 0-day exploits (2 March 2021) (by Kunaal) https://www.microsoft.com/security/blog/2021/03/02/hafnium-targeting-exchange-servers/
• The Daily Swig: Prime-factor mathematical foundations of RSA cryptography ‘broken’, claims cryptographer (4 March) (by Lakshmi) https://portswigger.net/daily-swig/prime-factor-mathematical-foundations-of-rsa-cryptography-broken-claims-cryptographer
• Nmap Cheat Sheet (1 May 2020) (by Gauresh) https://www.stationx.net/nmap-cheat-sheet/
• Nmap Tutorial For Beginners | How to Scan Your Network Using Nmap?(25 Jan 2019) (by Gauresh) https://youtu.be/IoIsTrKrl-0
• Use Nmap for Tactical Network Reconnaissance (3 Jan 2019) (by Gauresh) https://youtu.be/ltEFbi_I2KY
• Nmap | Top 10 commands | You should know (17 May 2019) (by Gauresh) https://youtu.be/kY8Kv0iEd1w
• How to extract ftp files from wireshark packet - Reconstructing files from Wireshark Packets (6 June 2013) (by Suman) https://shankaraman.wordpress.com/tag/how-to-extract-ftp-files-from-wireshark-packet/
• Wireshark Tutorial: Exporting Objects from a Pcap (10 July 2019) (by Vishal) https://unit42.paloaltonetworks.com/using-wireshark-exporting-objects-from-a-pcap/
• Malicious Code Bombs Target Amazon, Lyft, Slack, Zillow (3 March 2021) (by Vishal) https://threatpost.com/malicious-code-bombs-amazon-lyft-slack-zillow/164455/
• Hackers breach 1.5 lakh security cameras, exposing Tesla, police dept, hospitals (10 March 2021) (by Alok) https://www.livemint.com/news/world/hackers-breach-1-5-lakh-security-cameras-exposing-tesla-police-dept-hospitals-11615338749919.html
• Security researchers find backdoor in Chinese IoT devices (by Tulika) https://internetofbusiness.com/security-chinese-iot-devices/
• Webinar on Getting started with Data Science by IMT CDL Alumnus Partha Majumdar (11 Dec 2020) (by Partha) https://www.youtube.com/watch?v=EiBewsathyw&t=98s
• Presenting to Senior Executives (28 Oct 2020) (by Partha) https://www.dhirubhai.net/learning/presenting-to-senior-executives
• Microsoft Exchange Servers Face APT Attack Tsunami (11 March 2021) (by Vishal) https://threatpost.com/microsoft-exchange-servers-apt-attack/164695/
• Exchange servers under siege from at least 10 APT groups (10 Mar 2021) (by Vishal) https://www.welivesecurity.com/2021/03/10/exchange-servers-under-siege-10-apt-groups/
• Home-C3iHUB (by Partha) https://c3ihub.org/
• CourseHero (by Partha) https://www.coursehero.com?
• SolarWinds and Microsoft hacks spark debate over western retaliation (by Vishal) https://www.ft.com/content/0548b0fb-4dce-4b9e-ab4b-4fac2f5ec111
• Attacks on firms using Microsoft email servers tripled in 72 hrs (15 March 2021) (by Narinder) https://cio.economictimes.indiatimes.com/news/digital-security/attacks-on-firms-using-microsoft-email-servers-tripled-in-72-hrs/81509633
• Ransomware attack on Pimpri Chinchwad Smart City servers managed by Tech Mahindra (15 March 2021) (by Narinder) https://economictimes.indiatimes.com/tech/information-tech/ransomware-attack-on-pimpri-chinchwad-smart-city-servers-managed-by-tech-mahindra/articleshow/81514435.cms?from=mdr
• Your OTP may not be safe as new SMS attack redirects texts to hackers (16 March 2021) (by Alok) https://www.indiatoday.in/technology/news/story/your-otp-may-not-be-safe-as-new-sms-attack-redirects-texts-to-hackers-1779805-2021-03-16
• Google says it’s too easy for hackers to find new security flaws ( Feb 2021) (by Partha) https://www.technologyreview.com/2021/02/03/1017242/google-project-zero-day-flaw-security/
• iOS, Android, Windows devices infected by hackers: Here’s what happened (20 March 2021) (by Neelakshi) https://www.msn.com/en-in/money/topstories/ios-android-windows-devices-infected-by-hackers-here-s-what-happened/ar-BB1eKaj3
• Largest ransomware demand now stands at $30 million as crooks get bolder (17 March 2021) (by Vishal) https://www.zdnet.com/article/largest-ransomware-demand-now-stands-at-30-million-as-crooks-get-bolder/
• How to remove OMFL ransomware (Virus Removal Guide) (19 Dec 2020) (by Vishal) https://malwaretips.com/blogs/remove-omfl-virus/
• DDoS booters now abuse DTLS servers to amplify attacks (21 March 2021) (by Vishal) https://www.bleepingcomputer.com/news/security/ddos-booters-now-abuse-dtls-servers-to-amplify-attacks/
• ISRO Makes A Quantum Communication Breakthrough: India Joins An Elite List Of Nations (23 March 2021) (by Biswaranjan) https://analyticsindiamag.com/isro-quantum-communication-breakthrough-india-qkd/
• DNS hijacks at two cryptocurrency sites point the finger at GoDaddy, again (15 March 2021) (by Vishal) https://therecord.media/two-cryptocurrency-portals-are-experiencing-a-dns-hijack-at-the-same-time/
• OpenSSL fixes severe DoS, certificate validation vulnerabilities (March 25 2021) (by Vishal) https://www.bleepingcomputer.com/news/security/openssl-fixes-severe-dos-certificate-validation-vulnerabilities/
• Ransomware Attack Foils IoT Giant Sierra Wireless (24 March 2021) (by Ashis) https://threatpost.com/ransomware-iot-sierra-wireless/165003/
• Automated Priv Esclation Cheat Sheet (29 March 2021) (by Gauresh) https://www.dhirubhai.net/posts/hackingarticles_automated-priv-esc-cheatsheet-activity-6782164477736439808-VBgd/
• China-linked RedEcho APT took down part of its C2 domains?(29 March 2021) (by Vishal) https://securityaffairs.co/wordpress/116094/apt/redecho-apt-c2-shutdown.html
• Analyzing Dark Crystal RAT, a C# Backdoor (for Malware Reverse Engineering) (12May 2020) (by Vishal) https://www.fireeye.com/blog/threat-research/2020/05/analyzing-dark-crystal-rat-backdoor.html
• APT Groups and operations (by Vishal) https://docs.google.com/spreadsheets/u/1/d/1H9_xaxQHpWaa4O_Son4Gx0YOIzlcBWMsdvePFX68EKU/pubhtml#
• PHP Infiltrated with Backdoor Malware (29 March 2021) (by Alok) https://threatpost.com/php-infiltrated-backdoor-malware/165061/
• Google: North Korean hackers target security researchers again (31 March 2021) (by Vishal) https://www.bleepingcomputer.com/news/security/google-north-korean-hackers-target-security-researchers-again/
• Aadhaar Data Breach Largest in the World, Says WEF’s Global Risk Report and Avast (19 February 2019) (by Vishal) https://www.biometricupdate.com/202103/hackers-spoofed-biometric-authentication-videos-to-steal-millions-in-china
• ‘Let’s try that again…’ iPhone X facial recognition fails at launch – video (12 Sept 2017) (by Vishal) https://www.theguardian.com/technology/video/2017/sep/12/apple-iphone-x-facial-recognition-face-id-fail-launch-video
• Ransomware’s evolving tools and technical tactics confuse forensic analysis (12 April 2021) (by Vishal) https://www.scmagazine.com/home/security-news/ransomware/ransomwares-evolving-tools-and-technical-tactics-confuse-forensic-analysis/
• Major WhatsApp Warning: Your WhatsApp May Be Hacked And There’s Nothing You Can Do (13 April 2021) (by Alok) https://www.news18.com/news/tech/major-whatsapp-warning-your-whatsapp-may-be-hacked-and-theres-nothing-you-can-do-3635069.html
• NATO prepares for world's largest cyber war game - with focus on grey zone ( 13 April 2021) (by Sheetal) https://news.sky.com/story/nato-prepares-for-worlds-largest-cyber-war-game-with-focus-on-grey-zone-12274488
• How a fish tank helped hack a casino (21 July 2017) (by Sheetal) https://www.washingtonpost.com/news/innovations/wp/2017/07/21/how-a-fish-tank-helped-hack-a-casino/
• Major BGP leak disrupts thousands of networks globally (17 April 2021) (by Vishal) https://www.bleepingcomputer.com/news/security/major-bgp-leak-disrupts-thousands-of-networks-globally/
• New WhatsApp flaw puts users’ data at risk; Check details (19 April 2021) (by Neelakshi) https://www.msn.com/en-in/money/technology/new-whatsapp-flaw-puts-users-data-at-risk-check-details/ar-BB1fNB4H?ocid=msedgdhp
• Vaccine For All Above 18 Starting May 1 (20 April) (by Prateek) https://www.ndtv.com/india-news/those-above-18-eligible-to-get-covid-vaccine-from-may-1-centre-2417262
• Hundreds of networks reportedly hacked in Codecov supply-chain attack (20 April 2021) (by Vishal) https://www.bleepingcomputer.com/news/security/hundreds-of-networks-reportedly-hacked-in-codecov-supply-chain-attack/
• How to Generate and Manage GPG Keys on Ubuntu 18.04 | 16.04 (by Vishal) https://websiteforstudents.com/how-to-generate-and-manage-gpg-keys-on-ubuntu-18-04-16-04/
• Hackers attack Apple and demand $50 million ransom, leak design of unreleased MacBook (22 April 2021) (by Ashish) https://www.indiatoday.in/technology/news/story/hackers-attack-apple-and-demand-50-million-ransom-leak-design-of-unreleased-macbook-1793868-2021-04-22
• Installing Backports Wireless Drivers - DON'T USE BACKPORTS ANYMORE! (15 Sept 2014) (by Vishal) https://forum.aircrack-ng.org/index.php?topic=753.0
• Corona: IIT ?? ??????????? ?? ????, ??? ?? ????? 48 ??? ?? ???? ??? ?????? ??? (26 April 2021) (by ~.) https://zeenews.india.com/hindi/india/iit-kanpur-research-over-corona-active-cases-daily-corona-new-cases-latest-update/890331
• Co-WIN Application (by Ranveer) https://selfregistration.cowin.gov.in
• With Over 58 Active Cases on Campus, IIT Kanpur Asks Students to Vacate Hostels (23 April 2021) (by Ranveer) https://livewire.thewire.in/campus/with-over-58-active-cases-on-campus-iit-kanpur-asks-students-to-vacate-hostels/
• Andre Agassi tennis hack against Boris Becker (19 Jan 2017) (by Syed) https://www.youtube.com/watch?v=57BMzCM6hQI&ab_channel=vohanjanyan
• IF YOU BUILD IT, THEY WILL LOSE: COMPETING WITH CHINA REQUIRES NEW INFORMATION WARFARE TOOLS (5 April 2021) (by Tulika) https://cimsec.org/if-you-build-it-they-will-lose-competing-with-china-requires-new-information-warfare-tools/
• PlanDemic - Documentary (5 May 2021) (By Sheetal) https://www.bitchute.com/video/TsbMDWB6R98v/
• New Windows 'Pingback' malware uses ICMP for covert communication (4 May 2021) (by Vishal) https://www.bleepingcomputer.com/news/security/new-windows-pingback-malware-uses-icmp-for-covert-communication/
• Pingback: Backdoor At The End Of The ICMP Tunnel (4 May 2021) (by Vishal) https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/backdoor-at-the-end-of-the-icmp-tunnel/
• MTR in Real Time: Pirates pave way for Ryuk ransomware (6 May 2021) (By Abilash) https://news-sophos-com.cdn.ampproject.org/c/s/news.sophos.com/en-us/2021/05/06/mtr-in-real-time-pirates-pave-way-for-ryuk-ransomware/amp/
• Colonial Pipeline Paid Hackers Nearly $5 Million in Ransom (13 May 2021) (by Alok) https://www.bloomberg.com/news/articles/2021-05-13/colonial-pipeline-paid-hackers-nearly-5-million-in-ransom
• Leaked data of Dominos India users now available on search engine created by hacker?(22 May 2021) (by Alok) https://www.indiatoday.in/technology/news/story/leaked-data-of-dominos-india-users-now-available-on-search-engine-created-by-hacker-1805595-2021-05-22
• Jake Williams - There's no way an attacker can make it through that one hole in our firewall. (19 May 2021) (by Shrijith) https://twitter.com/MalwareJake/status/1394981566003175425?s=20
• Learn Emotion Analysis with R (by Partha) https://in.bpbonline.com/products/learn-emotion-analysis-with-r
• Origin of the King Paperback – Import, 19 March 2014 (by Partha) https://www.amazon.in/Origin-King-Partha-Majumdar/dp/1482820277/ref=sr_1_1?dchild=1&keywords=origin+of+the+king%2BPartha&qid=1622012329&s=books&sr=1-1
• Microsoft says group behind SolarWinds hack now targetting government agencies, NGOs, new backdoor NativeZone also disclosed (28 May 2021) (by Vishal)?https://www.reuters.com/technology/microsoft-says-group-behind-solarwinds-hack-now-targetting-government-agencies-2021-05-28/
• VMware Sounds Ransomware Alarm Over Critical Severity Bug (28 May 2021) (b Ranveer) https://www.blackhatethicalhacking.com/news/vmware-sounds-ransomware-alarm-over-critical-severity-bug/
• Google bug bounty program is here! Techies can earn Rs 7 crore for finding vulnerabilities in Android 12 (28 May 2021) (by Amardeep) https://zeenews.india.com/technology/google-bug-bounty-program-is-here-techies-can-earn-rs-7-crore-for-finding-vulnerabilities-in-android-12-2364903.html
• WhatsApp vs Indian government over new IT rules for social media: Top points to note (28 May 2021) (by Vishal) https://indianexpress.com/article/technology/tech-news-technology/whatsapp-vs-indian-government-over-new-social-media-rules-7-points-to-note-7332708/
• I Bought $5 in Starbucks Stock Every Day Instead of Buying My Morning Coffee (11 Jan 2021) (by Partha) https://medium.com/yardcouch-com/i-bought-5-in-starbucks-stock-every-day-instead-of-buying-my-morning-coffee-96898aa23638
• Building Data Science GUI Apps with PySimpleGUI (14 Jan 2021) (by Partha) https://towardsdatascience.com/building-data-science-gui-apps-with-pysimplegui-179db54a9a15
• 13th CISO Platform 100 & Security Summit (by Syed) https://event.cisoplatform.com/top-100-award-annual-summit-2021/#lp-pom-block-4012
• India topped the list of 30 countries worldwide for ransomware attacks. (2 June 2021) (by Vishal) https://ciso.economictimes.indiatimes.com/news/1-indian-firm-paying-average-rs-55-lakh-after-ransom-attack/83164271
• Indian Enterprises Need a Cybersecurity Revamp (31 May 2021) (by Vishal)?https://bit.ly/3gbRniP
• FUJIFILM shuts down network after suspected ransomware attack (2 June 2021) (by Ranveer) https://www.bleepingcomputer.com/news/security/fujifilm-shuts-down-network-after-suspected-ransomware-attack/
• Exchange Servers Targeted by ‘Epsilon Red’ Malware (3 June 2021) (by Ranveer) https://threatpost.com/exchange-servers-epsilon-red-ransomware/166640/
• CLOSE YOUR EYES AND LISTEN THIS ! Motivational poem by Amitabh Bachchan (22 Jan 2019) (by Rahul) https://www.youtube.com/watch?v=d-uyxvQ7fb4&ab_channel=theindianmotivationchannel
• Understanding Machine Learning (8 June 2021) (by Partha) (Teaser Video) https://www.youtube.com/watch?v=Yc8QoFpIXyI&ab_channel=ParthaMajumdar
• Understanding Machine Learning Models (8 June 2021) (by Partha) (Full Video) https://www.youtube.com/watch?v=zmNFIwoluxI&ab_channel=ParthaMajumdar
• Creating a Machine Learning Model using Python (8 June 2021) (by Partha) https://www.youtube.com/watch?v=C7ggo7Li9nM&ab_channel=ParthaMajumdar
• A deeper look into Linear Regression (8 June 2021) (by Partha) https://www.youtube.com/watch?v=GDINSH7eaI0&ab_channel=ParthaMajumdar
• Large parts of the internet were taken offline – here’s why it was down (8 June 2021) (by Ranveer) https://www.techradar.com/news/major-internet-outage-brings-down-top-websites-heres-why-they-were-down
• The Cybersecurity 202: The Justice Department is taking the fight to ransomware hackers (8 June 2021) (by Neelakshi) https://www.washingtonpost.com/politics/2021/06/08/cybersecurity-202-justice-department-is-taking-fight-ransomware-hackers/
• WHAT IS A DDOS ATTACK AND HOW DOES IT WORK? (by Neelakshi) https://www.comptia.org/content/guides/what-is-a-ddos-attack-how-it-works
• Picture this: Malware Hides in Steam Profile Images (8 June 2021) (by Vishal) (https://www.gdatasoftware.com/blog/steamhide-malware-in-profile-images
• Researchers create an 'un-hackable' quantum network over hundreds of kilometers using optical fiber-thanks to a new technology called dual band stabilization. (10 June 2021) (by Vishal) https://www.zdnet.com/article/researchers-created-an-un-hackable-quantum-network-over-hundreds-of-kilometers-using-optical-fiber/
• Steam Gaming Platform Hosting Malware (10 June 2021) (by Ranveer)) https://threatpost.com/steam-gaming-delivering-malware/166784/
• Mutual Authentication (IoT) (by Vishal) https://learn.akamai.com/en-us/webhelp/iot/internet-of-things-over-the-air-user-guide/GUID-21EC6B74-28C8-4CE1-980E-D5EE57AD9653.html
• What is mutual authentication (by Vishal) https://searchsecurity.techtarget.com/definition/mutual-authentication
• ?????? ?????????? ????? ?????????? ?????? ?? 20 ??? ??? ????? ???? ?? ??? 1 ??? 44 ???? ?? ???? ???? (7 June) (by Narinder) https://www.the420.in/cyber-crime-victims-dial-helpline-number-155260-to-get-your-money-back/
• Home ministry operationalises national helpline, reporting platforms to prevent cyber fraud (18 June 2021) (by Narinder) https://theprint.in/india/governance/home-ministry-operationalises-national-helpline-reporting-platforms-to-prevent-cyber-fraud/680138/
• Tutorial on Reading Hashes and Passwords From Memory (4 May 2016) (by Vishal)?https://resources.infosecinstitute.com/topic/memory-forensics/#_Toc449458164
• A New Tool to Detect Known Malware from Memory Images – impfuzzy for Volatility (16 Dec 2016) (by Vishal) – https://blogs.jpcert.or.jp/en/2016/12/a-new-tool-to-d-d6bc.html
• This bug can permanently break iPhone WiFi connectivity (20 June 2021) (by Vishal) https://securityaffairs.co/wordpress/119157/hacking/iphone-bug-wifi-connectivity.html
• 8 Android apps test positive for Joker malware, delete them right now or lose data (20 June 2021) (by Gauresh) https://zeenews.india.com/technology/8-android-apps-test-positive-for-joker-malware-delete-them-right-now-or-lose-data-2370427.html
• 50% of misconfigured containers hit by botnets in under an hour (by Vishal) https://www.scmagazine.com/data-leakage-prevention-dlp/50-of-misconfigured-containers-hit-by-botnets-in-under-an-hour/
• REvil Ransomware Code Ripped Off by Rivalschttps://threatpost.com/revil-ransomware-code-rivals/167167/
• ADVERSARIAL OCTOPUS – ATTACK DEMO FOR AI-DRIVEN FACIAL RECOGNITION ENGINE (22 June 2021) (by Vishal) https://securityaffairs.co/wordpress/119248/hacking/adversarial-octopus-facial-recognition.html
• A New Attack on AI-driven Facial Recognition Systems (25 June 2021) (by Vishal) https://cyware.com/news/a-new-attack-on-ai-driven-facial-recognition-systems-4ece656a
• Hackers hit Microsoft customer service system, make off with data (26 June 2021) (by Jisso) https://www.cnet.com/tech/services-and-software/hackers-hit-microsoft-customer-service-system-make-off-with-data/
• Microsoft admits to signing rootkit malware in supply-chain fiasco (26 June 2021) (by Vishal) https://www.bleepingcomputer.com/news/security/microsoft-admits-to-signing-rootkit-malware-in-supply-chain-fiasco/
• India fails in cybersecurity literacy test: Study ( 28 June 2021) (by Vishal) https://ciso.economictimes.indiatimes.com/news/india-fails-in-cybersecurity-literacy-test-study/83909931
• Ransomware is not out of control; security teams are (27 June 2021) (by Ranveer) https://www.techradar.com/news/ransomware-is-not-out-of-control-security-teams-are
• Dropbox Used to Mask Malware Movement in Cyberespionage Campaign (1 July 2021) (by Ranveer) https://threatpost.com/dropbox-malware-ongoing-spearphishing-cyberespionage/167402/
• Microsoft signed a driver called Netfilter, turns out it contained malware (27 June 2021) (by Amardeep) https://www.hackread.com/microsoft-netfilter-driver-sign-rootkit-malware/
• REvil ransomware hits 1,000+ companies in MSP supply-chain attack (2 July 2021) (by Vishal) https://www.bleepingcomputer.com/news/security/revil-ransomware-hits-1-000-plus-companies-in-msp-supply-chain-attack/
• Hackers Use New Trick to Disable Macro Security Warnings in Malicious Office Files (8 July 2021) (by Vishal) https://thehackernews.com/2021/07/hackers-use-new-trick-to-disable-macro.html?m=1
• Inauguration of 3rd National Conference on Communication and Data Science (NCCDS)- 2021 (10 July 2021) (by Partha) https://www.youtube.com/watch?v=0JLi-R3sjXU&ab_channel=ECEGSSSIETW
• Hackers use a new technique in malspam attacks to disable Macro security warnings in weaponized docs (9 July 2021) (by Vishal) https://securityaffairs.co/wordpress/119902/hacking/malspam-new-evasion-technique-macro.html
• Four Strategies for Protecting Software-Defined Vehicles Against Cyber Attacks (by Partha) https://innovationatwork.ieee.org/four-strategies-for-protecting-software-defined-vehicles-against-cyber-attacks/
• President Biden’s Cybersecurity Executive Order: What will it mean for you? (1 June 2021) (by Om Prakash Mishra) https://cloudsecurityalliance.org/blog/2021/06/01/president-biden-s-cybersecurity-executive-order-what-will-it-mean-for-you/
• Attacks on Operational Technology From IBM X-Force and Dragos Data (7 July 2021) (by Vishal) https://securityintelligence.com/posts/attacks-operational-technology-ibm-dragos-data/
• REvil Ransomware Attack on Kaseya VSA: What You Need to Know (29 July 2021) (by Vishal) https://www.varonis.com/blog/revil-msp-supply-chain-attack/
• Malware Analysis Report 10337802.r1.v1 - DarkSide (July 8, 2021) (by Abilash) https://us-cert.cisa.gov/sites/default/files/publications/MAR-10337802-1.v1.WHITE.pdf
• Facebook announces time bonus payouts for bug hunters (13 July 2021) (by Vishal) https://www.zdnet.com/article/facebook-announces-time-bonus-payouts-for-bug-hunters/
• Drop cases filed under scrapped IT law: MHA - Centre directs immediate withdrawal of all cases under Section 66A of IT Act (15 July 2021) (by Narinder) https://www.hindustantimes.com/india-news/centre-directs-immediate-withdrawal-of-all-cases-under-section-66a-of-it-act-101626264841922.html
• RBI restricts Mastercard from issuing new debit, credit cards in India from 22 July (15 July 2021) (by Vishal) https://www.livemint.com/industry/banking/rbi-restricts-mastercard-from-onboarding-new-customers-in-india-from-22-july-11626265610221.html
• BazarBackdoor sneaks in through nested RAR and ZIP archives (14 July 2021) (by Vishal) https://www.bleepingcomputer.com/news/security/bazarbackdoor-sneaks-in-through-nested-rar-and-zip-archives/
• Hackers use ransomware to target techies, demand cryptocurrency (19 July 2021) (by Vishal) https://ciso.economictimes.indiatimes.com/news/hackers-use-ransomware-to-target-techies-demand-cryptocurrency/84541322
• The Guardian (July 19, 2021) (by Vishal) https://www.theguardian.com/news/2021/jul/19/all
• Detecting Malware in JPEG Files Through EXIF Tag Analysis using Machine Learning (July 22, 2021) (by Partha) https://www.ijert.org/research/detecting-malware-in-jpeg-files-through-exif-tag-analysis-using-machine-learning-IJERTCONV9IS12041.pdf
• Sequoia: A Local Privilege Escalation Vulnerability in Linux’s Filesystem Layer (CVE-2021-33909) (by Ranveer) https://blog.qualys.com/vulnerabilities-threat-research/2021/07/20/sequoia-a-local-privilege-escalation-vulnerability-in-linuxs-filesystem-layer-cve-2021-33909
• The world's top ransomware gangs have created a cybercrime "cartel" (July 22, 2021) (by Vishal) https://www.cbsnews.com/amp/news/ransomware-cybercrime-cartel-wizard-spider-viking-spider-lockbit-twisted-spider/
• Tokyo 2020 Olympics must be extra secure to avoid cyberattacks and ransomware (July, 22 2021) (by Vishal) https://www.techrepublic.com/article/tokyo-2020-olympics-must-be-extra-secure-to-avoid-cyberattacks-and-ransomware/
• Mitre att&ak is now the most popular framework for incident response. (by Sheetal) https://attack.mitre.org/
• Ransomware Readiness Assessment CSET v10.3 (June 29, 2021) (by Tulika) https://github.com/cisagov/cset/releases/tag/v10.3.0.0
• vx-underground on Pegasus Android variant (July 22, 2021) (by Abilash) https://twitter.com/vxunderground/status/1418207502974525441?s=08
• Zero-Day Flaws Ubiquitous in Active Attack Campaigns (July 20, 2021) (by Vishal) https://cyware.com/news/zero-day-flaws-ubiquitous-in-active-attack-campaigns-b1ed1e5c
• Become a Microsoft Defender for Endpoint Ninja (July 13, 2021) (by Vishal) https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/become-a-microsoft-defender-for-endpoint-ninja/ba-p/1515647
• Olympics Broadcaster Announces His Computer Password on Live TV (July 26, 2021) (by Narinder) https://www.vice.com/en/article/n7b9mm/olympics-broadcaster-announces-his-computer-password-on-live-tv
• Google launches new Bug Hunters vulnerability rewards platform (July 27, 2021) (by Vishal)?https://www.bleepingcomputer.com/news/google/google-launches-new-bug-hunters-vulnerability-rewards-platform/
• StrongPity APT Group Deploys Android Malware for the First Time (July 21, 2021) (by Vishal) https://www.trendmicro.com/en_us/research/21/g/strongpity-apt-group-deploys-android-malware-for-the-first-time.html?&web_view=true
• Biden: Severe cyberattacks could escalate to 'real shooting war' (July 28, 2021) (by Vishal) https://www.bleepingcomputer.com/news/security/biden-severe-cyberattacks-could-escalate-to-real-shooting-war/
• Embedded Security Challenge (starting 15 Aug) (by Vishal) https://www.csaw.io/esc
• TrustworthyComputing / csaw_esc_2020 (GitHub Repo) (by Vishal) https://github.com/TrustworthyComputing/csaw_esc_2020
• India's Vision for Cyber Diplomacy (June 4, 2021) (by Vishal) https://directionsblog.eu/indias-vision-for-cyber-diplomacy/
• Bennett invites allies to form joint global cyber security network (July 21, 2021) (by Vishal) https://www.jpost.com/israel-news/bennett-invites-allies-to-join-global-cybernet-shield-initiative-674483
• Bird's Eye View of Defense-in-Depth Structure of Cyber Security (Oct 30, 2020) (by Gauresh) https://www.facebook.com/cybersec.prism/photos/a.2047976635522412/2795633110756757/?type=3&sfnsn=wiwspwa
• As Cyberattacks Surge, Security Start-Ups Reap the Rewards (July 28, 2021) (by Vishal) https://www.nytimes.com/2021/07/26/technology/cyberattacks-security-investors.html
• DarkOps 2021 Virtual High Technology Forensics Conference (on 9 Aug) (by Gauresh) https://www.dhirubhai.net/events/darkops2021virtualhightechnolog6756306754277011456/
• DarkOps 2021 (on 9 Aug) (by Gauresh) https://www.ci2cyber.org/darkops

--30 July Month--