Cobalt Stike Beacon Detected – 116[.]204[.]211[.]23:53
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Month: April 2022
Cobalt Stike Beacon Detected – 101[.]33[.]241[.]37:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CISA: CISA Adds Seven Known Exploited Vulnerabilities to Catalog
CISA Adds Seven Known Exploited Vulnerabilities to Catalog CISA has added seven new vulnerabilities to its Known Exploited Vulnerabilities Catalog,...
How to better manage your digital attack surface risk
As organizations shift to the cloud in droves, their digital attack surface continues to rapidly expand. And with the number...
Cybersecurity Predictions for 2022
Explore Trend Micro Research’s security insights and predictions for 2022 to enable more informed and proactive decision-making. If you like...
Unified Cybersecurity Platform: Why CISOs are Shifting
Our global study polled more than 2,300 IT security decision makers to discover how to best assist and support SecOps...
How XDR Security Aids in Cyber Risk Management
Trend Micro's VP of Threat Intelligence, Jon Clay, explores the latest trends in today's threat landscape and why XDR is...
Aligning the c-suite with cyber risk management
As we creep toward a post-pandemic world, organizations need to plan accordingly. Explore Trend Micro’s latest cyber risk research to...
Wpgarlic – A Proof-Of-Concept WordPress Plugin Fuzzer
A proof-of-concept WordPress plugin fuzzer used in the research described in . That means that the fuzzer detected executing fopen()...
Watch out for this SMS phish promising a tax refund
Imagine logging into your bank’s website after responding to a text message claiming you’re due a refund, only to see...
Iran announced to have foiled massive cyberattacks on public services
State television announced that Iran has foiled massive cyberattacks that targeted public services operated by both government and private organizations....
LockBit 2.0 Ransomware Victim: cronos[.]com[.]ar
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
LockBit 2.0 Ransomware Victim: emucor[.]es
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
LockBit 2.0 Ransomware Victim: huesser[.]ch
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
HackerOne Bug Bounty Disclosure: force-user-to-accept-attacker’s-invite-[-restrict-user-to-create-account]bysammam
Programme HackerOne Krisp Krisp Submitted by sammam sammam Report Force User to Accept Attacker's invite Full Report
HackerOne Bug Bounty Disclosure: visibility-robots-txt-filebyrazahack
Programme HackerOne Krisp Krisp Submitted by razahack razahack Report Visibility Robots.txt file Full Report
HackerOne Bug Bounty Disclosure: curlopt_ssh_host_public_key_sha256-comparison-disasterbynyymi
Programme HackerOne curl curl Submitted by nyymi nyymi Report CURLOPT_SSH_HOST_PUBLIC_KEY_SHA256 comparison disaster Full Report
HackerOne Bug Bounty Disclosure: curlopt_ssh_host_public_key_md5-bypass-if-string-not-32-charsbynyymi
Programme HackerOne curl curl Submitted by nyymi nyymi Report CURLOPT_SSH_HOST_PUBLIC_KEY_MD5 bypass if string not 32 chars Full Report
HackerOne Bug Bounty Disclosure: xss-triggered-in-your-store-myshopify-com/myshopify-com/admin/apps/shopify-email/editor/****bydanishalkatiri
Programme HackerOne Shopify Shopify Submitted by danishalkatiri danishalkatiri Report Xss triggered in Your-store.myshopify.com/myshopify.com/admin/apps/shopify-email/editor/**** Full Report
Why our software has so many vulnerabilities, with Tanya Janca: Lock and Code S03E09
Less than one year ago, the worst ransomware attack in history struck dozens of organizations. Threat actors had exploited a...
Apple’s child safety features are coming to a Messages app near you
Apple will soon be rolling out its promised child safety features in the Messages app for users in Australia, Canada,...
Why MITRE matters to SMBs
Running a small- to medium-sized business (SMB) requires expertise in everything, from marketing and sales to management and hiring, but...
DDexec – A Technique To Run Binaries Filelessly And Stealthily On Linux Using Dd To Replace The Shell With Another Process
In Linux in order to run a program it must exist as a file, it must be accessible in some...
BugCrowd Bug Bounty Disclosure: P5 – Clickjacking – By m4v3r1ck101
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
