WebMonitor RAT Bundled with Zoom Installer
By Raphael Centeno, Mc Justine De Guzman, and Augusto Remillano II The coronavirus pandemic has highlighted the usefulness of communication...
News
Cybersecurity and the economy: when recession strikes
Cybercrime and the economy have always been intertwined, but with COVID-19 on the road to causing a seemingly inevitable global...
The “Real-Time Find and Replace” WordPress Plugin Updated To Address A High Severity Vulnerability
So as to address a high severity vulnerability, the “Real-Time Find and Replace” WordPress plugin was updated as of late...
The UK Government Vs Apple & Google API on the New COVID-19 App That Tells Who Near You is Infected!
Reportedly, the United Kingdom declared that their coronavirus tracing application is being run via centralized British servers and that’s how...
Google Confirm Two New High-Severity Vulnerabilities in Chrome 81
The new Chrome 81 version released on April 7th by Google for Windows, Mac, and Linux primarily focused on security...
APT trends report Q1 2020
For more than two years, the Global Research and Analysis Team (GReAT) at Kaspersky has been publishing quarterly summaries of...
SkyWrapper – Tool That Helps To Discover Suspicious Creation Forms And Uses Of Temporary Tokens In AWS
SkyWrapper is an open-source project which analyzes behaviors of temporary tokens created in a given AWS account. The tool is...
Runtime Mobile Security (RMS) – A Powerful Web Interface That Helps You To Manipulate Android Java Classes And Methods At Runtime
Runtime Mobile Security (RMS), powered by FRIDA, is a powerful web interface that helps you to manipulate Android Java Classes...
Staying Healthy and Secure: How to Promote a Culture of Productivity While Keeping Your Security Posture Intact
In the second session of our Remote Work Readiness Series, Rapid7’s own security and business experts shared their advice for...
Rapid7’s Full Stack Vulnerability Risk Management Portfolio Recognized for Application Security Capabilities
Many businesses rely on web applications for their success. Because of this, web applications are also perfect targets for attackers....
PhantomLance campaign slipped trojanized apps into marketplaces for years
A long-running malware campaign whose activity dates back to 2016 has been using a sophisticated playbook of tricks to sneak...
VPNs are mainstream, which is good news
Virtual private networks (VPNs) have been growing in popularity for the last three years, a notable trend revealed in a...
Banking Sector suffered more Credential Stuffing than DDoS Attacks
According to F5's cybersecurity agency's report published recently, the financial sector has been a victim of severe credential stuffing attacks...
Lucy: A File Encryption Android Malware that for Ransomware Operations
A malware that attacks Android smartphones has increased its Maas (malware-as-a-service) operations with file encryption capabilities to carry out ransomware...
Remote spring: the rise of RDP bruteforce attacks
With the spread of COVID-19, organizations worldwide have introduced remote working, which is having a direct impact on cybersecurity and...
Elemental – An MITRE ATTACK Threat Library
Elemental is a centralized threat library of MITRE ATT&CK techniques, Atomic Red Team tests, and over 280 Sigma rules. It...
ROADtools – The Azure AD Exploration Framework
(Rogue Office 365 and Azure (active) Directory tools)ROADtools is a framework to interact with Azure AD. It currently consists of...
Threat actors release Troldesh decryption keys
A GitHub user claiming to represent the authors of the Troldesh Ransomware calling themselves the “Shade team” published this statement...
Switching from a “Just in Time” delivery system should include planning ahead
As it becomes clear that some things will never again be the same after the global coronavirus pandemic, it is...
Residents in China under Surveillance amid the Coronavirus Pandemic
According to recent reports, China is alleged for surveilling its residents' homes among the coronavirus epidemic. However, there is no...
Hiding in plain sight: PhantomLance walks into a market
In July 2019, Dr. Web reported about a backdoor trojan in Google Play, which appeared to be sophisticated and unlike...
Terrier – A Image And Container Analysis Tool To Identify And Verify The Presence Of Specific Files According To Their Hashes
Terrier is a Image and Container analysis tool that can be used to scan OCI images and Containers to identify...
wxHexEditor – Hex Editor / Disk Editor for Huge Files or Devices on Linux, Windows and MacOSX
wxHexEditor is another Free Hex Editor, build because there is no good hex editor for Linux system, specially for big...
Rapid7 Announces Intent to Acquire DivvyCloud
Over the past few years, we have continued to see our customers embrace the cloud. There are many driving factors...
