Weekly in Security 202231

2022-08-01 to 2022-08-08

One min read - 201 words


Weekly in Security is a summary of the cybersecurity news from the past week. This post covers 2022-08-01 to 2022-08-08.

Technical Reads

CVE-2022-30333 - File Write vulnerability in unrar

Bypassing the symbolic link validation

BumbleBee Malware

@TheDFIRReport created a really nice overview of the BumbleBee malware campaign. Especially, the visual timeline provides an excellent overview of the utilized techniques. Google Threat Analysis Group provided a report on BumbleBee in March 2022.

Chinese C2 Framework

Github cloned repos



The AWS exploitation framework, designed for testing the security of Amazon Web Services environments. Pacu (named after a type of Piranha in the Amazon) is a comprehensive AWS security-testing toolkit designed for offensive security practitioners.


Automated Attack Simulation in the Cloud, complete with detection use cases.