Chinese Origin Threat Group Targets Hong Kong Universities with New Backdoor Variant
The Winnti, a China-linked threat group that has been active in the cyberspace since 2009 was found to be employing...
Qiling – Advanced Binary Emulation Framework
Qiling is an advanced binary emulation framework, with the following features:Cross platform: Windows, MacOS, Linux, BSDCross architecture: X86, X86_64, Arm,...
Nfstream – A Flexible Network Data Analysis Framework
nfstream is a Python package providing fast, flexible, and expressive data structures designed to make working with online or offline...
DOUBLEPULSAR over RDP: Baselining Badness on the Internet
That’s good news, right? Well, I’d say that’s a qualified “yes.” As I mentioned, it’s easy to change the implant...
DOUBLEPULSAR RCE 2: An RDP Story
In this sequel, wvu recounts the R&D (in all its imperfect glory) behind creating a Metasploit module for the DOUBLEPULSAR...
TA505 phishing campaign uses HTML redirectors to spread info stealer
The cybercriminal group TA505 has reportedly changed up its tactics again, now engaging in phishing campaigns that leverage attachments with...
A week in security (January 27 – February 2)
Last week on Malwarebytes Labs, we looked at the strengths and weaknesses of the Zero Trust model, gave you the...
Hackers used the websites of Russian government agencies to extract cryptocurrency
According to the deputy head of the National Coordination Center for Computer Incidents of the FSB, Nikolai Murashov, encryption viruses...
Mobile Banking Malware On The Rise, 50% Hike In Attacks! WhatsApp a Dependable Medium?
According to studies, with an increase of 50% malware attacks have known no bounds in the past year. Most common...
WhatTheHack – A Collection Of Challenge Based Hack-A-Thons Including Student Guide, Proctor Guide, Lecture Presentations, Sample/Instructional Code And Templates
WhatTheHack is a collection of challenge based hack-a-thons including student guide, proctor guide, lecture presentations, sample/instructional code and templates.What, Why...
Injectus – CRLF And Open Redirect Fuzzer
Simple python tool that goes through a list of URLs trying CRLF and open redirect payloads. ▪ ▐ ▄ ▐▄▄▄▄▄▄...
Congrats to the winners of the 2020 Metasploit community CTF
After four days of competition and a whole lot of “trying harder,” we have the winners of this year's Metasploit...
What You Need to Know to Get Started in the Penetration Testing Field
As cyber-attacks become more and more frequent against entities of all sizes, penetration testing is becoming more important to identify...
PCFG Cracker – Probabilistic Context Free Grammar (PCFG) Password Guess Generator
PCFG = Probabilistic Context Free GrammarPCFG = Pretty Cool Fuzzy GuesserIn short: A collection of tools to perform research into...
DVNA – Damn Vulnerable NodeJS Application
Damn Vulnerable NodeJS Application (DVNA) is a simple NodeJS application to demonstrate OWASP Top 10 Vulnerabilities and guide on fixing...
Ransomware Hits Media Monitoring Company ‘TV Eyes’
The latest ransomware has attacked 'TV Eyes,' a company that offers campaign monitoring services to TV and radio news broadcasts....
Can you find a bug in Xbox Live? Microsoft will pay you, if you do!
Think you're an expert at Xbox? Think you can find a bug in Xbox Live? Well, Microsoft might pay you...
GDA Android Reversing Tool – A New Decompiler Written Entirely In C++, So It Does Not Rely On The Java Platform, Which Is Succinct, Portable And Fast, And Supports APK, DEX, ODEX, Oat
Here, a new Dalvik bytecode decompiler, GDA(this project started in 2013 and released its first version 1.0 in 2015 at...
Project-Black – Pentest/BugBounty Progress Control With Scanning Modules
Scope control, scope scanner and progress tracker for easier working on a bug bounty or pentest project.What is this tool...
Hackers play on Coronavirus fears to spread Emotet
Cybercriminals are exploiting fears over the outbreak of Coronavirus in China, sending out emails with malicious Word attachments purportedly providing...
Ukrainian authorities proposed online media to track readers and transfer data to the cyber police
A real scandal began with the rights of journalists, the media and freedom of speech in Ukraine. The Ukrainian cyber...
A Drug Molecule “Invented” By Artificial Intelligence (AI) To Be
Created by British start-up Exscientia and Japanese pharmaceutical firm Sumitomo Dainippon Pharma a drug molecule “artificial" by artificial intelligence (AI)...
Apple Engineers to Standardize the Format of the SMS Messages Containing OTPs
A proposal comes from Apple engineers working at WebKit, the core component of the Safari web browser, to institutionalize the...
Facebook to give $550 Million as a Settlement in a Lawsuit
Social Media giant Facebook is to pay an amount of $550 million as a settlement in what appears to be...
