Patch Tuesday – August 2020
120 Vulnerabilities Patched in Microsoft's August 2020 Update Tuesday (2020-Aug Patch Tuesday)August 2020 brings along patches for 120 vulnerabilities within...
The skinny on the Instacart breach
The COVID-19 outbreak has affected many facets of our lives—from how we visit our families, socialize with friends, meet with...
The Russian Federation leads in the number of users monitored via smartphones
In the first six months of 2020, the number of gadgets with Stalker software in Russia increased by 28% compared...
The United Nations Reports Increase in Internet Usage and Cyber Crime during the Pandemic
The U.N. counterterrorism chief reported a 350% increase in phishing websites in just the first quarter of the year, mostly...
Security Experts gave tips on how to protect online conferences from hackers
Video conferencing services attracted the attention of hackers because they gained huge popularity during the coronavirus pandemic. On Thursday, attackers disrupted...
Internet Explorer and Windows zero-day exploits used in Operation PowerFall
Executive summary In May 2020, Kaspersky technologies prevented an attack on a South Korean company by a malicious script for...
SkyArk – Helps To Discover, Assess And Secure The Most Privileged Entities In Azure And AWS
3. SkyArk includes more small sub-modules for playing around in the cloud security fieldAn example for such a sub-module is...
PE Tree – Python Module For Viewing Portable Executable (PE) Files In A Tree-View
Python module for viewing Portable Executable (PE) files in a tree-view using pefile and PyQt5. Can also be used with...
Rapid7 Named a Leader in the 2020 Forrester Wave™ for Midsize Managed Security Services Providers, Q3 2020
Rapid7 is thrilled to be named a Leader in The Forrester Wave™: Midsize Managed Security Services Providers, Q3 2020! The...
SBA phishing scams: from malware to advanced social engineering
A number of threat actors continue to take advantage of the ongoing coronavirus pandemic through phishing scams and other campaigns...
A week in security (August 3 – 9)
Last week on Malwarebytes Labs, on our Lock and Code podcast, we talked about identity and access management technology. We...
WhatsApp to Allow Users to Sync Chat Between iOS and Android
When switching devices from Android to iOS or the other way round, users were not able to retain the chat...
DDoS attacks in Q2 2020
News overview Not just one but two new DDoS amplification methods were discovered last quarter. In mid-May, Israeli researchers reported...
Flask-Session-Cookie-Manager – Flask Session Cookie Decoder/Encoder
Flask Session Cookie Decoder/EncoderDepencenciesPython 2 or Python 3itsdangerousFlaskInstallationBlackArch Linux# pacman -S flask-session-cookie-manager{3,2}GitArchLinuxBoth python3 etn python2:$ git clone https://github.com/noraj/flask-session-cookie-manager.git && cd...
Arcane – A Simple Script Designed To Backdoor iOS Packages (Iphone-Arm) And Create The Necessary Resources For APT Repositories
Arcane is a simple script designed to backdoor iOS packages (iphone-arm) and create the necessar y resources for APT repositories....
What’s New in InsightVM: H1 2020 in Review
Throughout the first half of the year, we released updates and features to help security teams work more effectively and...
The Russians were offered $10 million from the State Department for information about Russian hackers
Residents of Russia began to receive SMS about a way to get $10 million from the US State Department. In...
Online Exam Tool ProctorU Breached, Half A Million User Accounts Leaked Online
Around half a million online users were affected due to the breach of online examination software called "ProctorU," a platform...
IRFuzz – Simple Scanner with Yara Rule
IRFuzz is a simple scanner with yara rules for document archives or any files.Install1. PrerequisitesLinux or OS XYara: just use...
Evine – Interactive CLI Web Crawler
Evine is a simple, fast, and interactive web crawler and web scraper written in Golang. Evine is useful for a...
SharpAppLocker – C# Port Of The Get-AppLockerPolicy PS Cmdlet
C# port of the Get-AppLockerPolicy PS cmdlet _____ _ ___ _ _/ ___| | / _ | | | |...
PhishingKitTracker – Let’s Track Phishing Kits To Give To Research Community Raw Material To Stud
An extensible and freshly updated collection of phishingkits for forensics and future analysis topped with simple statsDisclaimerThis repository holds a...
Water Nue Phishing Campaign Targets C-Suite’s Office 365 Accounts
By Marshall Chen, Loseway Lu, Yorkbing Yap, and Fyodor Yarochkin (Trend Micro Research) A series of ongoing business email compromise...
A resurgence in DDoS Attacks amidst Global COVID-19 lockdowns
Findings of Link11's Security Operations Center (LSOC) uncovered a 97% increase in the number of attacks for the months of...
