LockBit 2.0 Ransomware Victim: rijeka-airport[.]hr
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
Threat actor exploits MS ProxyShell flaws to deploy Babuk ransomware
A new threat actor is exploiting ProxyShell flaws in attacks aimed at Microsoft Exchange servers to deploy the Babuk Ransomware...
PyRDP – RDP Monster-In-The-Middle (Mitm) And Library For Python With The Ability To Watch Connections Live Or After The Fact
PyRDP is a Python Supported SystemsPyRDP should work on Python 3.6 and up on the x86-64, ARM and ARM64 platforms....
CVE-2021-36260 – Hikvision / Multiple – Command Injection
Summary: CVE-2021-36260 is a command injection vulnerability impacting multiple Hikvision products. An exploit was observed in open source and a...
CVE-2021-1048 – Google / Android – Use after free
Summary: CVE-2021-1048 is a use after free vulnerability impacting Google Android. A proof of concept (PoC) was not observed publicly...
npm libraries coa and rc. have been hijacked to deliver password-stealing malware
Two popular npm libraries, coa and rc., have been hijacked, threat actors replaced them with versions laced with password-stealing malware. The security...
US Gov offers a reward of up to $10M for info on DarkSide leading members
The US government offers up to a $10,000,000 reward for information leading to the identification or arrest of DarkSide gang...
CISA recommends vendors to fix BrakTooth issues after the release of PoC tool
CISA urges vendors to address BrakTooth flaws after researchers have released public exploit code and a proof of concept tool...
CISA sets two week window for patching serious vulnerabilities
The Cybersecurity and Infrastructure Security Agency (CISA) has issued binding directive 22-01 titled Reducing the Significant Risk of Known Exploited...
Cisco warns of hard-coded credentials and default SSH key issues in some products
Cisco fixed critical flaws that could have allowed unauthenticated attackers to access its devices with hard-coded credentials or default SSH...
Androidqf – (Android Quick Forensics) Helps Quickly Gathering Forensic Evidence From Android Devices, In Order To Identify Potential Traces Of Compromise
androidqf (Android Quick Forensics) is a portable tool to simplify the acquisition of relevant forensic data from Android devices. It...
Expert found a critical remote code execution bug in Linux Kernel
A critical heap-overflow vulnerability, tracked as CVE-2021-43267, in Linux Kernel can allow remote attackers to takeover vulnerable installs. A SentinelOne...
CVE-2021-37984
Summary: Heap buffer overflow in PDFium in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to potentially exploit heap...
CVE-2021-43266
Summary: In Mahara before 20.04.5, 20.10.3, 21.04.2, and 21.10.0, exporting collections via PDF export could lead to code execution via...
CVE-2021-34595
Summary: A crafted request with invalid offsets may cause an out-of-bounds read or write access in CODESYS V2 Runtime Toolkit...
CVE-2021-34593
Summary: In CODESYS V2 Runtime Toolkit 32 Bit full and PLCWinNT prior to versions V2.4.7.56 unauthenticated crafted invalid requests may...
CVE-2018-6122
Summary: Type confusion in WebAssembly in Google Chrome prior to 66.0.3359.139 allowed a remote attacker to potentially exploit heap corruption...
Hacker allegedly involved in 2020 Twitter hack charged with theft of $784K in crypto
The US DoJ charged the suspected Twitter hacker ‘PlugWalkJoe’ with the theft of $784,000 worth of cryptocurrency using SIM swap attacks....
CISA shares a catalog of 306 actively exploited vulnerabilities
The US CISA shared a list of vulnerabilities known to be exploited in the wild and orders US federal agencies...
LDAPmonitor – Monitor Creation, Deletion And Changes To LDAP Objects Live During Your Pentest Or System Administration!
Monitor creation, deletion and changes to LDAP objects live during your pentest or system administration! With this tool you can...
CERT-FR warns of Lockean ransomware attacks against French companies
CERT-France warns of a new ransomware group named Lockean that is behind a series of attacks against French organizations over...
The U.K. Labour Party discloses a data breach
The U.K. Labour Party discloses a data breach after a ransomware attack hit a service provider that is managing its...
Haron Ransomware Victim: Shanghai Cyeco Environmental Technology Co[.], Ltd[.]
Haron Ransomware Blog Logo NOTE: The information on this page is fully automated and scraped directly from the Haron .onion...
Haron Ransomware Victim: CABINET CAZANAVE
Haron Ransomware Blog Logo NOTE: The information on this page is fully automated and scraped directly from the Haron .onion...
