Discord CDN and API Exploits Drive Wave of Malware Detections
 As per the researchers, the number of reported Discord malware detections has increased significantly since last year. Even users who...
LemonDuck Targets Windows and Linux Systems
 Initially, it was mainly a crypto-monetary botnet that allowed machine mining but later a transformation was initiated to make it...
Rconn – Rconn Is A Multiplatform Program For Creating Generic Reverse Connections
rconn (r conn) is a multiplatform program for creating reverse connections. It lets you consume services that are behind NAT...
Ppmap – A Scanner/Exploitation Tool Written In GO, Which Leverages Prototype Pollution To XSS By Exploiting Known Gadgets
A simple scanner/exploitation tool written in GO which automatically exploits known and existing gadgets (checks for specific variables in the...
Crooks target Kubernetes installs via Argo Workflows to deploy miners
Threat actors target Kubernetes installs via Argo Workflows to cryptocurrency miners, security researchers from Intezer warn. Researchers from Intezer uncovered...
XCSSET MacOS malware targets Telegram, Google Chrome data and more
XCSSET macOS malware continues to evolve, now it is able to steal login information from multiple apps, including Telegram and...
Security Affairs newsletter Round 324
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
Japanese computers hit by a wiper malware ahead of 2021 Tokyo Olympics
Japanese researchers spotted an Olympics-themed wiper targeting Japanese users ahead of the 2021 Tokyo Olympics. Tokyo Olympics could be a...
CVE-2021-28903
Summary: A stack overflow in libyang
CVE-2021-28904
Summary: In function ext_get_plugin() in libyang
CVE-2021-28905
Summary: In function lys_node_free() in libyang module can't be NULL. But in some cases, node->module can be null, which triggers...
CVE-2021-28906
Summary: In function read_yin_leaf() in libyang
XCSSET, a MacOS malware, Targets Google Chrome and Telegram Software
 As part of further "refinements in its tactics," a malware notorious for targeting the macOS operating system has been updated...
Wi-Fi Routers with Default Passwords are Vulnerable to Attacks
 Cybersecurity researchers have advised the users to change the manufacturer’s default access credentials of their Wi-Fi home router to minimize...
Researchers Embedded Malware into an AI’s ‘Neurons’ and it Worked Scarily Well
 According to a new study, as neural networks become more popularly used, they may become the next frontier for malware...
Hacker Employ Milanote App for Spreading Phishing Email
 The usage of collaborative applications had been a major victory with the pandemic. That incorporates Microsoft Teams, Google Meets, Zoom,...
USD 50 Million Ransom Demanded from Saudi Aramco Over Leaked Data
 Saudi Arabia's state oil firm admitted on Wednesday that data from the corporation was leaked and that the files are...
Terraguard – Create And Destroy Your Own VPN Service Using WireGuard
This project's goal is to be simple to create and destroy your own VPN service using WireGuard.PrerequisitesTerraform >= 1.0.0 Ansible...
Pathprober – Probe And Discover HTTP Pathname Using Brute-Force Methodology And Filtered By Specific Word Or 2 Words At Once
Probe and discover HTTP pathname using brute-force methodology and filtered by specific word or 2 words at once. PurposeBrute-forcing website...
Obtaining password hashes of Windows systems with PetitPotam attack
A researcher found a flaw in Windows OS, tracked as PetitPotam, that can be exploited to force remote Windows machines...
Estonian hacker Pavel Tsurkan pleads guilty for operating a proxy botnet.
Estonian hacker Pavel Tsurkan has pleaded guilty in a United States court to the counts of computer fraud and of...
Over 80 US Municipalities’ Sensitive Information, Including Resident’s Personal Data, Left Vulnerable in Massive Data Breach
WizCase’s team of ethical hackers, led by Ata Hakçıl, has found a major breach exposing a number of US cities, all...
What Is An Identity and Access Management So-lution and How Can Businesses Benefit From It?
How businesses can benefit from the adoption of an identity and access management solution. Businesses that use outdated manual processes...
Kaseya obtained a universal decryptor for REvil ransomware attack
The software provider Kaseya announced to have obtained a universal decryptor for the REvil ransomware. Earlier this month, a massive...
