Spam and phishing in Q2 2021
Quarterly highlights The corporate sector In Q2Â 2021, corporate accounts continued to be one of the most tempting targets for cybercriminals....
ChangeTower – Tool To Help You Watch Changes In Webpages And Get Notified Of Any Changes
ChangeTower is intended to help you watch changes in webpages and get notified of any changes written in Go This...
Elpscrk – An Intelligent Common User-Password Profiler Based On Permutations And Statistics
An Intelligent common user-password profiler that's named after the same tool in Mr.Robot series S01E01In simple words, elpscrk will ask...
Setting up Telegram Notifications on Synology DSM 7.X
If you are like me and use Telegram for everything, personal or work then I bet you’d want to have...
Italian energy company ERG hit by LockBit 2.0 ransomware gang
ERG SPA, an Italian energy company, reports a minor impact on its operations after the recent ransomware attack conducted by LockBit 2.0...
Cisco fixes critical, high severity vulnerabilities in VPN routers
Cisco fixed critical, high severity pre-auth security vulnerabilities impacting multiple Small Business VPN routers. Cisco addressed critical and high severity...
Advanced Technology Ventures discloses ransomware attack and data breach
The American venture capital firm Advanced Technology Ventures (ATV) disclosed a ransomware attack, crooks also stole data of some private investors. Advanced...
US CISA and NSA publish guidance to secure Kubernetes deployments
US CISA and NSA released new guidance that provides recommendations on how to harden Kubernetes deployments and minimize the risk...
CVE-2021-1422
Summary: A vulnerability in the software cryptography module of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense...
CVE-2021-36090
Summary: When reading a specially crafted ZIP archive, Compress can be made to allocate large amounts of memory that finally...
CVE-2016-3376
Summary: The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows...
CVE-2020-18171
Summary: TechSmith Snagit 19.1.0.2653 uses Object Linking and Embedding (OLE) which can allow attackers to obfuscate and embed crafted files...
CVE-2016-6645
Summary: The vApp Managers web application in EMC Unisphere for VMAX Virtual Appliance 8.x before 8.3.0 and Solutions Enabler Virtual...
NSA issues advice for securing wireless devices
By releasing an information sheet that provides guidance on securing wireless devices while in public (pdf)—for National Security System, Department...
Chrome casts away the padlock—is it good riddance or farewell?
It’s been an interesting journey for security messaging where browsers are concerned. Back in the day, many of the websites...
COVID-19 vaccine appointment system attacked in Italy
In another cyberattack on a healthcare system, threat-actors have tried to throw a wrench into the ongoing COVID-19 vaccine roll-out...
Widespread Cyber Espionage Attacks Use New Chinese Spyware
 According to new research, a threat actor believed to be of Chinese origin was linked to a series of ten...
Bot Protection Available in Azure Web App Firewall
Microsoft recently announced that WAF (Web Application Firewall) bot safety tool has attained general availability status on Azure Application Gateway...
The FBI and SEC Provided Guidance Against Imposter Scams
 The FBI and SEC have come with new guidance for investors to fight against financial scams. Users are being suggested...
Microsoft Warns Office 365 Users of ‘Sneaky’ Phishing Campaign
 Microsoft's Security Intelligence staff has issued an alert to Office 365 users and administrators to watch out for a sneaky...
Despite Data Leak and Glitches, Foreigners able to Register on Vaccine Site
 Thailand's new vaccination appointment registration website, expatvac.consular.go.th, has received mixed reviews since its launch. Many people reported that they had a...
Uchihash – A Small Utility To Deal With Malware Embedded Hashes
Uchihash is a small utility that can save malware analysts the time of dealing with embedded hash values used for...
SharpLAPS – Retrieve LAPS Password From LDAP
The attribute ms-mcs-AdmPwd stores the clear-text LAPS password. This executable is made to be executed within Cobalt Strike session using...
China-linked APT31 targets Russia for the first time
China-linked APT31 group employed a new strain of malware in attacks aimed at entities in Mongolia, Belarus, Canada, the US,...
