Hackers Attack Amazon Web Services Server
A group of sophisticated hackers slammed Amazon Web Services (AWS) servers. The hackers established a rootkit that let them manually...
News
Information security experts have warned Russians about bonus card fraud schemes.
Fraudsters several thousand times tried to illegally take advantage of discount bonuses of Russians in 2019.Some attackers gained access to...
Mokes and Buerak distributed under the guise of security certificates
The technique of distributing malware under the guise of legitimate software updates is not new. As a rule, cybercriminals invite...
Extended-XSS-Search – Scans For Different Types Of XSS On A List Of URLs
This is the extended version based on the initial idea already published as "xssfinder". This private version allows an attacker...
Phonia Toolkit – One Of The Most Advanced Toolkits To Scan Phone Numbers Using Only Free Resources
Phonia Toolkit is one of the most advanced toolkits to scan phone numbers using only free resources. The goal is...
R7-2019-39 | CVE-2019-5648: LDAP Credential Exposure in Barracuda Load Balancer ADC (FIXED)
This post describes CVE-2019-5648, a vulnerability in the Barracuda Load Balancer ADC. A malicious actor who gains authenticated, administrative access...
Dissecting Geost: Exposing the Anatomy of the Android Trojan Targeting Russian Banks
The Android banking trojan Geost was first revealed in a research by Sebastian García, Maria Jose Erquiaga and Anna Shirokova...
Are our police forces equipped to deal with modern cybercrimes?
“You should have asked for the presence of a digital detective,” Karen said when I told her what happened at...
UK-Based Network Rail Confirms Online Exposure of Wi-Fi User Data
The travel details and email addresses of around 10,000 commuters who used free wi-fi provided at UK railway stations were...
PrivescCheck – Privilege Escalation Enumeration Script For Windows
This script aims to enumerate common Windows security misconfigurations which can be leveraged for privilege escalation and gather various information...
TwitWork – Monitor Twitter Stream
Monitor twitter stream.TwitWork use the twitter stream which allows you to have a tweets in real-time.There is an input that...
Lessons Learned from an Unlikely Path to My OSCP Certification
About one year ago, my colleague Trevor O’Donnal wrote a blog post, “Why a 17-Year Veteran Pen Tester Took the...
Security Risks in Online Coding Platforms
By David Fiser (Senior Cyber Threat Researcher) Threat Modeling for Online Coding Platforms Before cloud integrated development environments (IDEs) became...
Child identity theft, part 1: On familiar fraud
In 2013, 30-year-old Axton Betz-Hamilton received an angry phone call from her father two weeks after her mother, Pam, died....
A vulnerability that Allows Hackers to Hijack Facebook Accounts
A cybersecurity expert recently found a vulnerability in FB's "login with the Facebook feature." According to the expert, the vulnerability...
Amazon Transcribe Can Automatically Shroud the User’s Personal Information from Call Transcripts?
Amazon Transcribe, the AWS-based 'speech-to-text service, recently came up with a significant new feature which, if executed effectively, can spontaneously...
Windows 10 Users Beware! TrickBots’ Prevalence And Conveyance Escalates in Devices
Reports mention that recently attackers were found exploiting the latest version of the “Remote Desktop ActiveX” which was developed for...
XCTR Hacking Tools – All in one tools for Information Gathering
All in one tools for Information Gathering.Instagram: Capture the RootScreenshotsRead MeInitially, you need to create a project where you will...
WiFi Passview v2.0 – An Open Source Batch Script Based WiFi Passview For Windows!
WiFi Passview is an open source batch script based program that can recover your WiFi Password easily in seconds. This...
Rapid7 2020 Threat Report: Exposing Common Attacker Trends
If you joined Rapid7 at RSAC 2020 just a few days ago, you probably caught wind of Rapid7’s end-of-year threat...
Data-stealing ransomware hits parts maker for Tesla, Boeing and Lockheed Martin
Visser Precision, a parts maker and manufacturing solutions provider for the aerospace, automotive, industrial and manufacturing industries, has reportedly suffered...
Lock and Code S1Ep1: On RSA, the human element, and the week in security
Last week, we told you we were launching a fortnightly podcast, called Lock and Code. This week, we made good...
The hacker explained why in Russia cards will become more often blocked
Hacker Alexander Warski told what to expect from Governing Bodies. According to him, bank cards will more often be blocked...
dnsFookup – DNS Rebinding Toolkit
DNS Rebinding freamwork containing:a dns server obviouslyweb api to create new subdomains and control the dns server, view logs, stuff...
