JWT Key ID Injector – Simple Python Script To Check Against Hypothetical JWT Vulnerability
Simple python script to check against hypothetical JWT vulnerability. Let's say there is an application that uses JWT tokens signed...
Tritium – Password Spraying Framework
A tool to enumerate and spray valid Active Directory accounts through Kerberos Pre-Authentication. BackgroundAlthough many Kerberos password spraying tools currently...
TeamTNT group adds new detection evasion tool to its Linux miner
The TeamTNT cybercrime group has improved its Linux cryptocurrency miner by implementing open-source detection evasion capabilities. The TeamTNT cybercrime group...
LogoKit, a new phishing kit that dynamically creates phishing forms
Researchers from RiskIQ have discovered a new phishing kit dubbed LogoKit that dynamically compose phishing content. Researchers from RiskIQ discovered...
CISA warns of high-severity flaws in Fuji Electric Tellus Lite V-Simulator and Server Lite
The U.S. CISA published a security advisory for High-Severity flaws in some SCADA/HMI products made by Japanese company Fuji Electric....
Law enforcement announced global action against NetWalker Ransomware
A joint operation of U.S. and EU law enforcement authorities allowed the seizure of the leak sites used by NetWalker...
Emotet Botnet dismantled in a joint international operation
A global operation of law enforcement has dismantled the infrastructure of the infamous Emotet botnet. A global operation of law...
Pwn2Own 2021, more than $1,500,000 in cash and prizes for contestants
Trend Micro’s Zero Day Initiative announced the Pwn2Own Vancouver 2021 hacking competition that will also cover Zoom, MS Teams Exploits....
CVE-2020-6474
Summary: Use after free in Blink in Google Chrome prior to 83.0.4103.61 allowed a remote attacker to potentially exploit heap...
CVE-2020-6513
Summary: Heap buffer overflow in PDFium in Google Chrome prior to 84.0.4147.89 allowed a remote attacker to potentially exploit heap...
CVE-2020-6530
Summary: Out of bounds memory access in developer tools in Google Chrome prior to 84.0.4147.89 allowed an attacker who convinced...
CVE-2020-4766
Summary: IBM MQ Internet Pass-Thru 2.1 and 9.2 could allow a remote user to cause a denial of service by...
CVE-2018-2725
Summary: Vulnerability in the Oracle Financial Services Hedge Management and IFRS Valuations component of Oracle Financial Services Applications (subcomponent: User...
3 tips to top up your privacy
It’s Data Privacy Day—the perennial event that many internet users may have never heard of, but have strong feelings and...
Why Data Privacy Day matters
Our Lock and Code special episode on Data Privacy Day, featuring guests from Mozilla, DuckDuckGo, and Electronic Frontier Foundation can...
Why Data Privacy Day matters: A Lock and Code special with Mozilla, DuckDuckGo, and EFF
You can read our full-length blog here about the importance of Data Privacy Day and data privacy in general Today...
Pow! Emotet’s down. Is it out?
In a coordinated action, multiple law enforcement agencies have seized control of the Emotet botnet. Agencies from eight countries worked...
Google FLoC puts ad trackers on a cookie-free diet
Cookie tracking is dying and Google needs a replacement. It’s betting on FLoC, an ad tracking technology that lets it...
The Russian pleaded guilty to cybercrime charges in the United States
Kirill Firsov admitted his guilt in trying to obtain secret information about the clients of a certain company for fraudulent...
NHS Urged Public to Remain Vigilant Regarding Fake Covid-19 Vaccinations
Fraudsters are tricking people in the UK via fake Covid-19 vaccination invites, scammers are posing to be from the UK’s...
Dutch Police Confiscated 2 Men for Stealing And Selling COVID-19 Patients Data
On Friday, 22 January, the Dutch police, and the Public Prosecution Service received warnings from the GGD that personal details...
66,000 Gamers Exposed due to Cloud Misconfiguration
VIPGames.com, a free platform with a sum of 56 accessible classic board and games like Hearts, Crazy Eights, Euchre, Dominoes,...
SharpEDRChecker – Checks Running Processes, Process Metadata, DLLs Loaded Into Your Current Process And The Each DLLs Metadata, Common Inst all Directories, Installed Services And Each Service Binaries Metadata, Installed Drivers And Each Drivers Metadata, All For The Presence Of Known Defensive Products Such As AV’s, EDR’s And Logging Tools
New and improved C# Implementation of Invoke-EDRChecker. Checks running processes, process metadata, Dlls loaded into your current process and each...
Emba – An Analyzer For Linux-based Firmware Of Embedded Devices
emba is being developed as a firmware scanner that analyses already-extracted Linux-based firmware images. It should help you to identify...
