DeFi100, a Crypto Project, Allegedly Scammed Investors of $32 Million
According to reports and tweets, DeFi100, a cryptocurrency project, allegedly defrauded investors out of $32 million (roughly Rs. 233 crores)....
Evolution of JSWorm ransomware
Introduction Over the past few years, the ransomware threat landscape has been gradually changing. We have been witness to a...
CiLocks – Android LockScreen Bypass
CiLocks - Android LockScreen BypassFeaturesBrute Pin 4 Digit Brute Pin 6 Digit Brute LockScreen Using Wordlist Bypass LockScreen {Antiguard} Not...
MurMurHash – Tool To Calculate A MurmurHash Value Of A Favicon To Hunt Phishing Websites On The Shodan Platform
This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.What...
13 flaws in Nagios IT Monitoring Software pose serious risk to orgs
Researchers disclosed details about 13 vulnerabilities in the Nagios network monitoring application that could be exploited for malicious purposes. Cybersecurity...
Anker fixed an issue that caused access to Eufy video camera feeds to random users
A misconfiguration issue in the software used by the Eufy video camera exposed private information and video streams of customers....
CVE-2021-31215
Summary: SchedMD Slurm before 20.02.7 and 20.03.x through 20.11.x before 20.11.7 allows remote code execution as SlurmUser because use of...
CVE-2021-24188
Summary: Low privileged users can use the AJAX action 'cp_plugins_do_button_job_later_callback' in the WP Content Copy Protection & No Right Click...
CVE-2020-27150
Summary: In multiple versions of NPort IA5000A Series, the result of exporting a device’s configuration contains the passwords of all...
CVE-2020-28648
Summary: Improper input validation in the Auto-Discovery component of Nagios XI before 5.7.5 allows an authenticated attacker to execute remote...
CVE-2021-24195
Summary: Low privileged users can use the AJAX action 'cp_plugins_do_button_job_later_callback' in the Login as User or Customer (User Switching) WordPress...
A week in security (May 17 – May 23)
Last week on Malwarebytes Labs, we looked at a banking trojan full of nasty tricks, explained some tips and pointers...
Shining a light on dark patterns with Carey Parker: Lock and Code S02E09
This week on Lock and Code, we speak to cybersecurity advocate and author Carey Parker about “dark patterns,” which are...
Exploit to SYSTEM for CVE-2021-21551
SpoolPrinter Privesc using SeImpersonatePrivileges was made thanks to @_ForrestOrr https://github.com/forrest-orr/DoubleStar/tree/main/Payloads/Source/Stage3_SpoolPotato I basically just tossed the exploit function in his code and altered...
Ireland suspected Russian hackers of attacking the health service
The National Cyber Security Centre of Ireland (NCSC) believes that the attack on the country's Health Service Executive (HSE) was...
FBI Analyst Charged for Stealing National Security Documents
An FBI employee with a top-secret security clearance has been indicted on charges that she illegally stored several national security...
Domino’s Data Leak Exposed Data of 18 Crore Orders
The famous Pizza company Dominos suffered a data leak again this year wherein the details of 18 crore orders are...
A Chinese Hacking Competition May Have Given Beijing New Ways to Spy on the Uyghurs
In 2019, Apple aimed to reassure its customers when it revealed in a blog post that it had fixed a...
Irish Health System and 16 U.S. Health and Emergency Networks Hit by Conti Ransomware Gang
According to the Federal Bureau of Investigation, the same group of online extortionists responsible for last week's attack on the...
Using AWS + Socat Port Forwarder
This script is designed for using AWS and SOCAT as a forwarder to another IP or Server, for Red Team...
AMSITrigger – The Hunt For Malicious Strings
Hunting for Malicious StringsUsage:AMSI calls (xmas tree mode) -d, --debug Show Debug Info -m, --maxsiglength=VALUE Maximum signature Length to cater...
SQLFluff – A SQL Linter And Auto-Formatter For Humans
SQLFluff is a dialect-flexible and configurable SQL linter. Designed with ELT applications in mind, SQLFluff also works with jinja templating...
CVE-2021-31166 Windows HTTP flaw also impacts WinRM servers
The wormable CVE-2021-31166 vulnerability in the HTTP Protocol Stack of the Windows IIS server also affects WinRM on Windows 10...
Security Affairs newsletter Round 315
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
