Malicious npm packages spotted delivering njRAT Trojan
npm security staff removed two packages that contained malicious code to install the njRAT remote access trojan (RAT) on developers’...
Month: December 2020
DarkIRC botnet is targeting the critical Oracle WebLogic CVE-2020-14882
The critical remote code execution (RCE) vulnerability CVE-2020-14882 in Oracle WebLogic is actively exploited by operators behind the DarkIRC botnet....
Deep learning: An explanation and a peek into the future
Deep learning is one of the most advanced forms of machine learning, and is showing new developments in many industries....
A Russian-speaking hacker put up for sale the accounts of the heads of the world’s largest companies
A Russian-speaking hacker under the pseudonym Byte leaked passwords from the personal profiles of managers of many large companies in...
Microsoft discovers Vietnamese Govt sponsored threat actor deploying cryptocurrancy malware
Microsoft on Monday claimed that Vietnamese government-backed hackers have been behind the cryptocurrency-mining malware campaign.These state-run cyberspies have started additional...
Experts Discover New macOS Backdoor, Link Attack Campaign to Vietnamese Hackers
Cybersecurity experts at Trend Micro found a macOS backdoor, which the experts believe is used by Vietnamese criminal actors named...
Interview with founder of the copyright timestamped entity Digital Witnessor
The world is changing, technology is changing. We conducted an interview with one of the founders of a new startup...
Dox, steal, reveal. Where does your personal data end up?
The technological shift that we have been experiencing for the last few decades is astounding, not least because of its...
Terrascan – Detect Compliance And Security Violations Across Infrastructure As Code To Mitigate Risk Before Provisioning Cloud Native Infrastructure
Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure. GitHub Repo: https://github.com/accurics/terrascan...
OnionSearch – A Script That Scrapes Urls On Different .Onion Search Engines
OnionSearch is a Python3 script that scrapes urls on different ".onion" search engines. PrerequisitePython 3 Currently supported Search enginesahmia...
Rapid7 Recognized as a Strong Performer Among Security Analytics Providers by Leading Industry Report
At Rapid7, we recognize that security professionals are facing a more challenging landscape than ever before. The mission of InsightIDR—our...
Re: Etherify 4 – jumping air gaps with real ethernet hardware
Posted by Dave Horsfall on Dec 01I'm impressed, but for all the wrong reasons :-) -- Dave VK2KFU If you...
Baltimore County Schools close after a ransomware attack
Baltimore County Schools were hit by a ransomware attack that forced them to close leaving more than 100,000 students out....
Vietnam-linked Bismuth APT leverages coin miners to stay under the radar
Microsoft warns of Vietnam-linked Bismuth group that is deploying cryptocurrency miner while continues its cyberespionage campaigns Researchers from Microsoft reported...
UK gov bans new Huawei equipment installs after Sept 2021
The British government will ban the installation of new Huawei equipment in the 5G networks of Wireless carriers after September...
Talos reported WebKit flaws in WebKit that allow Remote Code Execution
Talos experts found flaws in the WebKit browser engine that can be also exploited for remote code execution via specially...
Exclusive: Experts from TIM’s Red Team Research (RTR) found 6 zero-days
TIM’s Red Team Research led by Massimiliano Brolli discovered 6 new zero-day vulnerabilities in Schneider Electric StruxureWare. Today, TIM’s Red...
Exploring malware to bypass DNA screening and lead to ‘biohacking’ attacks
Boffins from the Ben-Gurion University of the Negev described a new cyberattack on DNA scientists that could open to biological...
Bandook malware targets ‘unusually wide variety’ of industries, regions
Security researchers are warning that the once-dormant Bandook malware family is back, possibly be part of a broader operation selling...
Baltimore gets hit by ransomware again, the schools this time
All Baltimore County Public Schools closed Wednesday after the school system was hit with a ransomware attack, according to officials....
German users targeted with Gootkit banker or REvil ransomware
This blog post was authored by Hasherezade and Jérôme Segura On November 23, we received an alert from a partner...
November spam roundup: Stalkers, property tips, porn, stern words and PayPal
Today we’re rounding up some of the interesting pieces of spam currently in circulation, taking in everything from housing deals...
A week in security (November 23 – November 29)
Last week on Malwarebytes Labs, we talked with Chris Boyd about charities that track you online. We also looked back...
Group-IB presents patented-technologies to protect against cyber threats
The international company Group-IB presented its own patented technologies designed to identify hackers, search for threats on the Internet and...
