CDRThief Linux malware steals VoIP metadata from Linux softswitches
ESET researchers discovered a new piece of malware dubbed CDRThief targets a specific Voice over IP system to steal call...
News
BLURtooth flaw allows attacking Bluetooth encryption process
Bluetooth 4.0 through 5.0 versions are affected by the vulnerability dubbed BLURtooth which allows hackers to defeat Bluetooth encryption. A...
Hackers stole $5.4 million from cryptocurrency exchange ETERBASE
Slovak cryptocurrency exchange ETERBASE disclosed a security breach, hackers stole cryptocurrency funds worth $5.4 million. Slovak cryptocurrency exchange ETERBASE disclosed...
Spyre – Simple YARA-based IOC Scanner
...a simple, self-contained modular host-based IOC scannerSpyre is a simple host-based IOC scanner built around the YARA pattern matching engine...
Safety – Check Your Installed Dependencies For Known Security Vulnerabilities
Safety checks your installed dependencies for known security vulnerabilities.By default it uses the open Python vulnerability database Safety DB, but...
How to Track and Remediate Default Account Vulnerabilities in InsightVM
In this blog post, we are going to talk about a couple of older, lesser-known features that can still provide...
Malvertising campaigns come back in full swing
Malvertising campaigns leading to exploit kits are nowhere near as common these days. Indeed, a number of threat actors have...
Russia has fallen to 13th place in the world ranking of the stability of Internet segments
According to Qrator Labs, a company specializing in ensuring the availability of Internet resources and countering DDoS attacks, Russia has...
6 Malware Apps from Playstore has been banned by Google: Uninstall them from your device ASAP
The malware Joker was yet again caught making rounds on Playstore - Cybersecurity firm Pradeo identified at least six applications...
Anchore Engine – A Service That Analyzes Docker Images And Applies User-Defined Acceptance Policies To Allow Automated Container Image Validation And Certification
For the most up-to-date information on Anchore Engine, Anchore CLI, and other Anchore software, please refer to the Anchore DocumentationThe...
Rakkess – Kubectl Plugin To Show An Access Matrix For K8S Server Resources
Review Access - kubectl plugin to show an access matrix for server resourcesIntroHave you ever wondered what access rights you...
This One Time on a Pen Test: I’m Calling My Lawyer!
Each year, Rapid7 penetration testers complete hundreds of internally and externally based penetration testing service engagements. This post is part...
War of Linux Cryptocurrency Miners: A Battle for Resources
This blog will discuss the ruthless battle for computing power among the different cryptocurrency-mining malware that target Linux systems. We...
September Patch Tuesday Updates Exchange, SharePoint
This month’s update includes 129 updates for the Microsoft Office suite, with 15 specifically addressing SharePoint vulnerabilities. If you like...
Purple Fox EK Relies on Cloudflare for Stability
We’ve talked about Purple Fox malware being delivered by the Rig exploit kit. Other researchers later found evidence that it...
Exposed Docker Server Abused to Drop Cryptominer, DDoS Bot
Malicious actors continue to target environments running Docker containers. We recently encountered an attack that drops both a malicious cryptocurrency...
This Week in Security News: 09/04/2020
This week, learn about Trend Micro’s midyear roundup report which found that published vulnerabilities in the first half of 2020...
Patch Tuesday – September 2020
129 Vulnerabilities Patched in Microsoft's September 2020 Update Tuesday (2020-Sep Patch Tuesday)Despite maintaining the continued high volume of vulnerabilities disclosed...
DDoS attacks from the USA, UK, Ukraine were recorded during the voting in the Russian Federation
Andrey Krutskikh, special representative of the President of Russia for international cooperation in the field of information security, said on...
Iranian Threat Actors Have Modified Their Strategies, Attacks Now More Effective
Since the dawn of the digital age, Iranian hackers have been infamous for their attacks on critical infrastructures, targeting governments,...
Browsertunnel – Surreptitiously Exfiltrate Data From The Browser Over DNS
Browsertunnel is a tool for exfiltrating data from the browser using the DNS protocol. It achieves this by abusing dns-prefetch,...
Bpytop – Linux/OSX/FreeBSD Resource Monitor
Resource monitor that shows usage and stats for processor, memory, disks, network and processes.Python port of bashtop.FeaturesEasy to use, with...
A week in security (August 31 – September 6)
Last week on Malwarebytes Labs, we dug into security hubris on the Lock and Code podcast, explored ways in which...
Chinese hackers targeted about five Russian developers of banking software
Chinese hacker group Winnti attacked at least five Russian developers of banking software, as well as a construction company. According...
