Meet Oski Stealer: In-depth Analysis Of the Popular Credential Stealer
In the current scenario credential theft malware is one of the most frequently employed malware in cyber hacking. Many government...
Password Guessing Used as a Weapon by SolarWinds Hackers to Breach Targets
Cybersecurity and Infrastructure Security Agency (CISA) informed that perpetrators of SolarWinds attack obtained confidential information via common hacker techniques like...
The RBI Warns Patrons of Unauthorized Money Lending Apps
Reserve Bank of India has forewarned Indians against unauthorized money lending apps that are increasingly rising day by day, consequently...
Critical Bugs in Firefox and Chrome Allow Exploitation
On Thursday, the Cybersecurity and Infrastructure Security Agency (CISA) asked clients of Mozilla Foundation's Firefox browser and Windows, macOS, and...
MUD-Visualizer – A Tool To Visualize MUD Files
This tool can be used to visualize the MUD files in JSON format. MotivationMUD files are plain text files in...
Pidrila – Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer
PIDRILA: Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer is really fast async web path scanner prototype developed by BrightSearch team...
New Zealand central bank hit by a cyber attack
A cyber attack hit the New Zealand central bank, sensitive information has been potentially accessed by the intruders The New...
Security Affairs newsletter Round 296
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
TeamTNT botnet now steals Docker API and AWS credentials
Researchers from Trend Micro discovered that the TeamTNT botnet is now able to steal Docker API logins along with AWS...
Dassault Falcon Jet hit by Ragnar Locker ransomware gang
Dassault Falcon Jet has disclosed a data breach that exposed personal information belonging to current and former employees. In December...
CVE-2020-15995
Summary: Out of bounds write in V8 in Google Chrome prior to 86.0.4240.99 allowed a remote attacker to potentially exploit...
CVE-2020-17367
Summary: Firejail through 0.9.62 does not honor the -- end-of-options indicator after the --output option, which may lead to command...
CVE-2020-24386
Summary: An issue was discovered in Dovecot before 2.3.13. By using IMAP IDLE, an authenticated attacker can trigger unhibernation via...
CVE-2020-25275
Summary: Dovecot before 2.3.13 has Improper Input Validation in lda, lmtp, and imap, leading to an application crash via a...
CVE-2020-5208
Summary: It's been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a...
Glofox – 2,330,735 breached accounts
In March 2020, the Irish gym management software company Glofox suffered a data breach which exposed 2.3M membership records. The...
Hacking Group Earth Wendigo Exploits Emails via Spear-phishing Attacks
As per the cybersecurity experts, the cyberattacks are related to Earth Wendigo, a cyber criminal currently not linked to any...
Court in the United States has sentenced Russian Andrey Tyurin to 12 years in prison for cybercrime
The Federal Court of the Southern District of New York sentenced Russian Andrey Tyurin to 12 years in prison for...
December 2020’s Most Wanted Malware: Emotet Returns as Top Malware Threat
The threat Intelligence arm of Check Point Software Technologies Ltd., a world-leading cybersecurity solutions provider has recently published its...
Cyber Criminals Leak Hackney Council Files on the Darknet Website
Cybercriminal group recognized as Pysa/Mespinoza has leaked the sensitive information stolen from the Hackney Council on the Darknet website. The...
US FBI Warned Organisations of the Egregor Ransomware Attacks
The US-based FBI (Federal Bureau of Investigation) has warned of the upcoming ransomware attack against the hospitals and private organizations....
Longtongue – Customized Password/Passphrase List Inputting Target Info
Customized Password/Passphrase List inputting Target InfoInstallationgit clone https://github.com/edoardottt/longtongue.git cd longtongue python3 longtongue.pyUsageusage: longtongue.py Customized Password/Passphrase List inputting Target Infooptional arguments:...
Emp3R0R – Linux Post-Exploitation Framework Made By Linux User
hide processes and filescurrently emp3r0r uses libemp3r0r to hide its files and processes, which utilizes glibc hijacking persistencecurrently implemented methods:...
SolarWinds hackers also used common hacker techniques, CISA revealed
CISA revealed that threat actors behind the SolarWinds hack also used password guessing and password spraying in its attacks. Cybersecurity...
