Microsoft

Developer-targeting campaign using malicious Next.js repositories

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...
IEEE

Early Network Intrusion Detection Enabled by Attention Mechanisms and RNNs

Abstract: Current flow-based Network Intrusion Detection Systems (NIDSs) have the drawback of detecting attacks only once the flow has ended, resulting in potential delays in attack detection and ...
IEEE

Detecting Adversarial Attacks Based on Tracking Differences in Frequency Bands

Abstract: Like deep neural network (DNN)-based classifiers, DNN-based trackers are also vulnerable to adversarial attacks that degrade the tracking performance by adding adversarial perturbations to ...
The Hacker News

China-Linked Hackers Have Used the PeckBirdy JavaScript C2 Framework Since 2023

Cybersecurity researchers have discovered a JScript-based command-and-control (C2) framework called PeckBirdy that has been put to use by China-aligned APT actors since 2023 to target multiple ...