DoppelPaymer ransomware gang now cold-calling victims, FBI warns
FBI says DoppelPaymer ransomware gang is harassing victims who refuse to pay, threatening to send individuals to their homes. FBI...
3 million users hit with infected Google Chrome and Microsoft Edge extensions
The Google logo adorns the outside of the Google building in New York City. Google Chrome extensions are being used...
VideoBytes: Brute force attacks increase due to more open RDP ports
Hello Folks! In this Videobyte, we’re talking about why brute force attacks are increasing and why that is a problem...
Smart toy security: How to keep your kids safe this Christmas
Christmas is coming, and so are the smart toys. The ever-present pandemic has meant a lot more staying at home...
Sberbank predicts an outflow of up to ₽4 trillion from banks to the digital ruble
Sberbank predicted an outflow of two to four trillion rubles (around $5,5 billion), which are currently stored in banks, to...
E9Patch – A Powerful Static Binary Rewriting Tool
E9Patch is a powerful static binary rewriting tool for x86_64 Linux ELF binaries. E9Patch is: Scalable: E9Patch can reliably rewrite...
PoshBot – Powershell-based Bot Framework
PoshBot is a chat bot written in PowerShell. It makes extensive use of classes introduced in PowerShell 5.0. PowerShell modules...
Help Others Be “Cyber Aware” This Festive Season—And All Year Round!
Are you tired of being the cybersecurity help desk for everyone you know? Are you frustrated with spending all your...
How to Gain Visibility Into Audit Logs for Policy Customization in InsightVM
Since the launch of InsightVM’s Custom Policy Builder in June of this year, hundreds of organizations have created and customized...
Experts spotted browser malicious extensions for Instagram, Facebook and others
Avast researchers reported that three million users installed 28 malicious Chrome or Edge extensions that could perform several malicious operations....
Launched OSSISNa, the Observatory for the Protection of the National Strategic Industrial System
On 11th December 2020, the Observatory for the Protection of the National Strategic Industrial System (OSSISNa) was officially announced. On...
Digging the recently leaked Chinese Communist Party database
KELA researchers analyzed a database recently leaked online that contains data for 1.9 million Chinese Communist Party members in Shanghai....
FireEye, GoDaddy, and Microsoft created a kill switch for SolarWinds backdoor
Microsoft, FireEye, and GoDaddy have partnered to create a kill switch for the Sunburst backdoor that was employed in the...
HPE discloses critical zero-day in Systems Insight Manager
HPE has disclosed a zero-day vulnerability in the latest versions of its HPE Systems Insight Manager (SIM) software for both...
SEC Consult SA-20201217-0 :: Multiple critical vulnerabilities in Trend Micro InterScan Web Security Virtual Appliance (IWSVA)
Posted by SEC Consult Vulnerability Lab on Dec 17SEC Consult Vulnerability Lab Security Advisory < 20201217-0 > ======================================================================= title: Multiple...
Likely lead generation scam targets potential Malwarebytes MSP partners
Recently, Malwarebytes discovered a potential lead generation scam targeting companies that are interested in our Malwarebtyes Managed Service Provider (MSP)...
Facebook Shuts Down Fake Accounts Associated With Russia and French Military
Earlier this week, in a press conference, Facebook closed two misinformation networks related to Russia, one of which was associated...
Police detained hackers who stole more than 20 million rubles
Police officers of the Chuvash Republic, with the assistance of BI.ZONE experts detained the organizers of a criminal group that...
Freki – Malware Analysis Platform
Freki is a free and open-source malware analysis platform.GoalsFacilitate malware analysis and reverse engineering; Provide an easy-to-use REST API...
Ghost Framework – An Android Post-Exploitation Framework That Exploits The Android Debug Bridge To R emotely Access An Android Device
About Ghost FrameworkGhost Framework is an Android post-exploitation framework that exploits theAndroid Debug Bridge to remotely access an Android device....
Happy HaXmas from the Rapid7 Team!
Happy HaXmas, everyone! This has been quite the year, but we’re thrilled that we’re able to keep up our favorite...
EU Digital Services and Digital Markets Acts aim at setting new rules for tech giants
The European Union is going to unveil two laws, the Digital Services and Digital Markets Acts, that will impose new...
Sextortion campaign uses Goontact spyware to target Android and iOS users
Security experts spotted a new malware strain, named Goontact, that allows its operators to spy on both Android and iOS...
Microsoft partnered with security firms to sinkhole the C2 used in SolarWinds hack
Microsoft and its partners have seized the primary domain used in the SolarWinds attack to identify the victims through sinkholing....
