IPCDump – Tool For Tracing Interprocess Communication (IPC) On Linux
Announcement post ipcdump is a tool for tracing interprocess communication (IPC) on Linux. It covers most of the common IPC...
CrossLinked – LinkedIn Enumeration Tool To Extract Valid Employee Names From An Organization Through Search Engine Scraping
CrossLinked is a LinkedIn enumeration tool that uses search engine scraping to collect valid employee names from a target organization....
New Qlocker ransomware infected hundreds of QNAP NAS devices in a few days
A new ransomware strain dubbed Qlocker is infecting hundreds of QNAP NAS devices every day and demanding a $550 ransom...
Evil Maid Attack – Vacuum Hack
Evil Maid Attack – Weaponizing an harmless vacuum cleaner hiding within it a small Rogue Device such as a Raspberry...
Darkside Ransomware gang aims at influencing the stock price of their victims
The Darkside ransomware gang is enhancing its extortion tactics to interfere with the valuation of stocks of companies that are...
CVE-2015-2876
Summary: Unrestricted file upload vulnerability on Seagate GoFlex Satellite, Seagate Wireless Mobile Storage, Seagate Wireless Plus Mobile Storage, and LaCie...
CVE-2015-2876
Summary: Unrestricted file upload vulnerability on Seagate GoFlex Satellite, Seagate Wireless Mobile Storage, Seagate Wireless Plus Mobile Storage, and LaCie...
CVE-2015-7788
Summary: ASUS Japan WL-330NUL devices with firmware before 3.0.0.42 allow remote attackers to execute arbitrary commands via unspecified vectors. Reference...
CVE-2015-7788
Summary: ASUS Japan WL-330NUL devices with firmware before 3.0.0.42 allow remote attackers to execute arbitrary commands via unspecified vectors. Reference...
CVE-2015-7907
Summary: Directory traversal vulnerability in the web server on Honeywell Midas gas detectors before 1.13b3 and Midas Black gas detectors...
CVE-2015-7907
Summary: Directory traversal vulnerability in the web server on Honeywell Midas gas detectors before 1.13b3 and Midas Black gas detectors...
CVE-2015-6481
Summary: The login function in the RequestController class in Moxa OnCell Central Manager before 2.2 has a hardcoded root password,...
CVE-2015-6481
Summary: The login function in the RequestController class in Moxa OnCell Central Manager before 2.2 has a hardcoded root password,...
Vendors are getting better at spotting malicious execution techniques
Mitre Engenuity – The Mitre Corporation’s tech foundation for public good – released the results of its independent evaluation of...
Malware operators leverage TLS in 46% of detected communications
Urs Holzle, Senior Vice President for Technical Infrastructure at Google, speaks on the Google Cloud Platform during a Google I/O...
ClearVoice Surveys – 15,074,786 breached accounts
In April 2021, the market research surveys company ClearVoice Surveys had a publicly facing database backup from 2015 taken and...
Logins for 1.3 million Windows Remote Desktop Servers Leaked by UAS
UAS, the biggest hacker platform for hacked RDP credentials, has leaked the login names and passwords for 1.3 million new...
Threat Actors Target India’s No. 2 Discount Broker ‘Upstox’; Personal Data of 2.5 Mn Users Leaked
Retail broking firm Upstox suffered a massive data breach affecting the personal data of 2.5 Mn of its customers, according...
Data from thousands of Russian companies have been made publicly available on the web
The data of several hundred Russian companies that used the free online project manager Trello has been made publicly available....
Tag Barnakle Targets Various Web Servers with Malicious Ads
In a persistent campaign that features malicious ads on tens of millions, if not hundreds of millions, computers, the criminals...
Eversource Energy Data Breach: Due to Unsecured Cloud Storage
New England's largest energy provider, Eversource experienced a data breach after sensitive details of customers were exposed on an unsecured...
Vulnerablecode – A Free And Open Vulnerabilities Database And The Packages They Impact And The Tools To Aggregate And Correlate These Vulnerabilities
VulnerableCode is a free and open database of FOSS software package vulnerabilities and the tools to create and keep the...
Kubesploit – A Cross-Platform Post-Exploitation HTTP/2 Command And Control Server And Agent Written In Golang
BuildTo build this project, run the make command from the root folder. Quick BuildTo run quick build for Linux, you...
Privacy and security in the software designing
The importance of carrying out a careful risk and impact assessment in order to safeguard the security of the information...
