WildPressure targets the macOS platform
New findings Our previous story regarding WildPressure was dedicated to their campaign against industrial-related targets in the Middle East. By...
Year: 2021
FindObjects-BOF – A Cobalt Strike Beacon Object File (BOF) Project Which Uses Direct System Calls To Enumerate Processes For Specific Loaded Modules Or Process Handles
A Cobalt Strike Beacon Object File (BOF) project which uses direct system calls to enumerate processes for specific modules or...
GitDump – A Pentesting Tool That Dumps The Source Code From .Git Even When The Directory Traversal Is Disabled
GitDump dumps the source code from .git when the directory traversal is disabledRequirementsPython3 Tested onWindows Kali Linux What it doesDump...
Researchers uncovered the network infrastructure of REVil – The notorious ransomware group that hit Kaseya
Resecurity® HUNTER, cyber threat intelligence and R&D unit, identified a strong connection to a cloud hosting and IoT company servicing...
Microsoft rolled out emergency update for Windows PrintNightmare zero-day
Microsoft rolled out KB5004945 emergency update to address the actively exploited PrintNightmare zero-day vulnerability (CVE-2021-34527) in Print Spooler service. Microsoft...
Hacker leaks info of pro-Trump GETTR members online
A hacker has leaked claims to have breached pro-Trump GETTR and leaked the private information of almost 90,000 members on...
SonicWall addresses critical CVE-2021-20026 flaw in NSM devices
Positive Technologies experts provide details about potential impact of a recently fixes command injection flaw in SonicWall NSM devices. Positive...
CVE-2019-2838
Summary: Vulnerability in the Oracle Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel). The supported version that is...
CVE-2019-2820
Summary: Vulnerability in the Oracle Solaris component of Oracle Sun Systems Products Suite (subcomponent: Gnuplot). The supported version that is...
CVE-2019-2804
Summary: Vulnerability in the Oracle Solaris component of Oracle Sun Systems Products Suite (subcomponent: Filesystem). Supported versions that are affected...
CVE-2016-3441
Summary: Unspecified vulnerability in Oracle Sun Solaris 10 and 11.3 allows local users to affect confidentiality, integrity, and availability via...
CVE-2015-7236
Summary: Use-after-free vulnerability in xprt_set_caller in rpcb_svc_com.c in rpcbind 0.2.1 and earlier allows remote attackers to cause a denial of...
Kaseya CEO: “The impact of this incredibly sophisticated attack is very minimal”
The official YouTube channel of Kaseya, the latest organization attacked by no less than the criminals behind REvil ransomware, released...
Racing against a real-life ransomware attack, with Ski Kacoroski: Lock and Code S02E12
At 11:37 pm on the night of September 20, 2019, cybercriminals launched a ransomware attack against Northshore School District in...
This iPhone Bug Exists Even After Network Settings Reset
Two weeks after the iphone wifi bug was found, the same cybersecurity analyst Carl Schou discovered a similar different case....
DDoS Attack on Filipino Media Outlets Linked to Philippine Government and Army
Sweden-based digital rights nonprofit Qurium Media has reported a targeted campaign of distributed denial-of-service (DDoS) attacks on Filipino media outlets...
Water Agency WSSC Hit by Ransomware Attack
On May 24th, WSSC Water witnessed a ransomware attack that incapacitated a portion of its network. WSSC Water has been...
Experts Said How Cybercriminals Make Money on Russian Gamers
One of the most popular fraud schemes involves buying or selling an account in online games. An attacker can offer...
Microsoft Alerts of Critical PowerShell 7 Code Execution Vulnerability
Microsoft is alerting customers to upgrade their installations of PowerShell 7 as soon as possible to protect themselves against a.NET...
Sharperner – Simple Executable Generator With Encrypted Shellcode
Sharperner is a tool written in CSharp that generate .NET dropper with AES and XOR obfuscated shellcode. Generated executable can...
TiEtwAgent – PoC Memory Injection Detection Agent Based On ETW, For Offensive And Defensive Research Purposes
This project was created to research, build and test different memory injection detection use cases and bypass techniques. The agent...
Approximatively 1,500 businesses impacted by the ransomware attack that hit Kaseya
Kaseya confirmed that the REvil supply-chain ransomware attack hit fewer than 60 of its customers and their customers. Software provider Kaseya...
Operation Lyrebird: Group-IB assists INTERPOL in identifying suspect behind numerous cybercrimes worldwide
Group-IB supported INTERPOL in its Operation Lyrebird that allowed to identify a threat actor presumably responsible for multiple attacks. Group-IB, one of the leading...
QNAP addressed a critical flaw that allows compromising NAS devices
Taiwanese vendor QNAP addressed a critical flaw, tracked as CVE-2021-28809, that could be exploited to compromise vulnerable NAS devices. Taiwanese vendor...
