DDoS Campaign Exposed by the Security Firm Radware
Security firm Radware uncovered the threat actors' campaign named 'distributed denial-of-service' (DDoS). This campaign was launched to target the same...
Year: 2021
Machine Learning in Security – How Machine Learning helps security in the real-world?
Image SourceMachine Learning is a core building block in the field of Data Science and Artificial Intelligence. As we all...
Australian Cyber Security Centre Hit by Cyber Security Attack
The Australian Cyber Security Centre is on high alert for the vulnerability lately. The Australian corporate regulator has been the...
Cook County’s Court Related Records Exposed
The WebsitePlanet research group in collaboration with Security Researcher Jeremiah Fowler found a non-password protected database that contained more than...
Empire 3.7 and Starkiller 1.6
Last week we announced a new partnership with Kali for Starkiller and Empire. You can read up more about that...
Batea – AI-based, Context-Driven Network Device Ranking
Batea is a context-driven network device ranking framework based on the anomaly detection family of machine learning algorithms. The goal...
Duf – Disk Usage/Free Utility (Linux, BSD, macOS & Windows)
Disk Usage/Free Utility (Linux, BSD, macOS & Windows) FeaturesUser-friendly, colorful output Adjusts to your terminal's width Sort the results according...
State-Sponsored Threat Actors Target Security Researchers
This blog was co-authored by Caitlin Condon, VRM Security Research Manager, and Bob Rudis, Senior Director and Chief Security Data...
TikTok privacy issue could have allowed stealing users’ private details
A vulnerability in the video-sharing social networking service TikTok could have allowed hackers to steal users’ private personal information. Developers at ByteDance,...
North Korea-linked campaign targets security experts via social media
Google TAG is warning that North Korea-linked hackers targeting security researchers through social media. Google Threat Analysis Group (TAG) is...
Dutch police arrested two people for the illegal sale of COVID-19 patient data
Dutch police arrested two individuals for allegedly selling COVID-19 patient data stolen from the Dutch health ministry. Dutch police have...
Ransomware attack hit WestRock IT and OT systems
Packaging giant WestRock disclosed a ransomware attack that impacted its information technology (IT) and operational technology (OT) systems. American corrugated packaging company...
Cryptomining DreamBus botnet targets Linux servers
Zscaler’s research team recently spotted a Linux-based malware family, tracked as DreamBus botnet, targeting Linux servers. Researchers at Zscaler’s ThreatLabZ...
CVE-2018-16375
Summary: An issue was discovered in OpenJPEG 2.3.0. Missing checks for header_info.height and header_info.width in the function pnmtoimage in bin/jpwl/convert.c...
CVE-2016-9675
Summary: openjpeg: A heap-based buffer overflow flaw was found in the patch for CVE-2013-6045. A crafted j2k image could cause...
CVE-2016-7163
Summary: Integer overflow in the opj_pi_create_decode function in pi.c in OpenJPEG allows remote attackers to execute arbitrary code via a...
CVE-2020-12351
Summary: Improper input validation in BlueZ may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access....
CVE-2017-14867
Summary: Git before 2.10.5, 2.11.x before 2.11.4, 2.12.x before 2.12.5, 2.13.x before 2.13.6, and 2.14.x before 2.14.2 uses unsafe Perl...
A week in security (January 18 – January 24)
Last week on Malwarebytes Labs, we looked at changes to WhatsApp’s privacy policy, we provided information about Malwarebytes being targeted...
Is North Korea Planning Something Bigger in the Field of Cyber Crime ?
North Korea is excelling in a field of cybercrime with each passing day despite the tight economic sanctions levied by...
Russians Warned for US-led Cyberspace Threat Ensuing Solar Wind Orion
On Thursday evening, the Russian government released a security notice to Russian firms warning of possible US-led cyber-attacks following the...
SonicWall Breached via Zero-Day Flaw
SonicWall revealed on Friday night that, highly sophisticated threat actors assaulted its internal systems by abusing a probable zero-day flaw...
Shellex – C-shellcode To Hex Converter, Handy Tool For Paste And Execute Shellcodes In Gdb, Windbg, Radare2, Ollydbg, X64Dbg, Immunity Debugger And 010 Editor
C-shellcode to hex converter. Handy tool for paste & execute shellcodes in gdb, windbg, radare2, ollydbg, x64dbg, immunity debugger &...
Recon Simplified with Spyse
One of the major struggles in bug bounty hunting is to collect and analyze data during reconnaissance, especially when there...
