Ukraine Suspects Russia Behind a Spear Phishing Campaign
Three of the many Ukrainian cybersecurity organizations – the Ukrainian Secret Service, Ukrainian Cyber Police, and CERT Ukraine - cautioned...
Year: 2021
Hackers Target American Retail Businesses, FINRA Scolds Brokerage Firms
Besides the American corporations facing threats from overwhelming cyberattacks, American retail businesses are also struggling to fight against the rise...
Geneva: The Hot Topic For the Meeting Between US and Russian President
President Joe Biden will meet in person for the first time since taking office with Russian President Vladimir Putin in...
Facebook Under Investigation by EU and UK Competition Watchdogs
Competition authorities in the United Kingdom and Europe are looking into Facebook's use of advertising data to obtain an unfair...
Cisco Discovers High-Severity Flaws in its Software
The IT and networking giant Cisco has outlined multiple vulnerabilities in its Webex, SD-WAN, and ASR 5000 devices, that could...
Gootkit: the cautious Trojan
Gootkit is complex multi-stage banking malware that was discovered for the first time by Doctor Web in 2014. Initially it...
Totp-Ssh-Fluxer – Take Security By Obscurity To The Next Level (This Is A Bad Idea, Don’T Really Use This Please)
Some people change their SSH port on their servers so that it is slightly harder to find for bots or...
RedWarden – Flexible CobaltStrike Malleable Redirector
RedWarden - Flexible CobaltStrike Malleable Redirector(previously known as proxy2's malleable_redirector plugin) Let's raise the bar in C2 redirectors IR resiliency,...
Russia behind a massive spear-phishing campaign that hit Ukraine
Ukraine warned of a “massive” spear-phishing campaign carried out by Russia-linked threat actors against its government and private businesses. Three...
Experts found an RCE vulnerability in QNAP Q’center
Researchers at cybersecurity firm Shielder discovered a remote code execution on QNAP Q’center through a manipulated QPKG installation package. Researchers...
Russian cybercrime forums launch contests for cryptocurrency hacks
Cybercriminals in Russian underground forums have been invited to take part in competitions for hacking cryptocurrency and NFT. Several Russian...
CVE-2020-11993
Summary: Apache HTTP Server versions 2.4.20 to 2.4.43 When trace/debug was enabled for the HTTP/2 module and on certain traffic...
CVE-2020-9490
Summary: Apache HTTP Server versions 2.4.20 to 2.4.43. A specially crafted value for the 'Cache-Digest' header in a HTTP/2 request...
CVE-2020-9490
Summary: Apache HTTP Server versions 2.4.20 to 2.4.43. A specially crafted value for the 'Cache-Digest' header in a HTTP/2 request...
CVE-2021-3561
Summary: An Out of Bounds flaw was found fig2dev version 3.2.8a. A flawed bounds check in read_objects() could allow an...
CVE-2021-29461
Summary: Discord Recon Server is a bot that allows one to do one's reconnaissance process from one's Discord. A vulnerability...
CVE-2018-16497
Summary: In Versa Analytics, the cron jobs are used for scheduling tasks by executing commands at specific dates and times...
A week in security (May 31 – June 6)
Last week on Malwarebytes Labs, we looked at an interesting trend in facial recognition technology—hint: it’s a slow fade, the...
WhatsApp Hijack Scam, Here’s All You Need To Know
By posing as a friend and asking for SMS security codes, scammers are continuing to target WhatsApp users and hijack...
Google Meet’s Server Down Globally, Twitter Flooded With Complaints
Since worldwide lockdown and restrictions over workplaces, schools and universities have been imposed, people are facing several problems. However, it...
TeamTNT Targeting Organizations Via Cryptojacking Malware
A cybercriminal gang known as TeamTNT has been ramping up its cloud-focused cryptojacking operations for some time now. TeamTNT operations...
Ransomware Hits News Stations in US, Affects Local Broadcast
Two local television news stations have been shut down since Thursday, experts say it because of a ransomware attack on...
Fake Oximeter Apps For Smart Devices, Here’s How To Check If It’s Safe Or Not
In recent days the demand for oximeters has gone up owing to the deadly second wave of Covid-19 in India....
Vcenter Server CVE-2021-21985 – RCE PAYLOAD – POC
Note: Vsphere UI is Tomcat middleware by default, so arbitrary code can be executed in the manner of Tomcat RMI...
