Wishbone Breach: Hacker Leaks Personal Data of 40 Million Users
Personal data of 40 million users registered on Wishbone has been published online by hackers, it included user details like...
Russian banks revealed new types of fraud
Stanislav Kuznetsov, Deputy Chairman of the Board of the Bank, said that fake Internet recruiting agencies that offer employment have...
Faraday v3.11 – Collaborative Penetration Test and Vulnerability Management Platform
This new release brings strong improvements to your security team’s daily performance, allowing them to operate quicker and smarter by...
Minimalistic-offensive-security-tools – A Repository Of Tools For Pentesting Of Restricted And Isolated Environments
Minimalistic SMB login bruteforcer (smblogin.ps1)A simple SMB login attack and password spraying tool.It takes a list of targets and credentials...
Backdoor, Devil Shadow Botnet Hidden in Fake Zoom Installers
By Raphael Centeno and Llallum Victoria With additional insights from Bren Matthew Ebriega Cybercriminals are taking advantage of “the new...
ZeuS byproduct ‘Silent Night’ Zbot ‘not a game-changer’
The Silent Night Zbot, a new variant of the infamous banking trojan ZeuS that wreaked havoc in mid-2009 may be...
Modular backdoor sneaked into video game developers’ servers
A suspected Chinese APT group used a newly discovered modular backdoor to infect at least one video game developer’s build...
Shining a light on “Silent Night” Zloader/Zbot
When it comes to banking Trojans, ZeuS is probably the most famous one ever released. Since its source code originally...
In Ukraine, a world-famous hacker has been detained
The press center of the Security Service of Ukraine announced the arrest of a world-famous hacker who operated under the...
Vulnerability in DNS Servers Discovered By Academics from Israel
A vulnerability in DNS servers that can be exploited to launch DDoS attacks of huge extents was as of late...
Carina – Webshell, Virtual Private Server (VPS) And cPanel Database
Carina is a web application used to store webshell, Virtual Private Server (VPS) and cPanel data. Carina is made so...
Nishang – Offensive PowerShell For Red Team, Penetration Testing And Offensive Security
Nishang is a framework and collection of scripts and payloads which enables usage of PowerShell for offensive security, penetration testing...
Managing Cybersecurity in the Real Estate Industry: A Rapid7 Customer Story
Conducting cybersecurity in an industry not heavily regulated by the government still comes with its own challenges. We interviewed Tony...
Covid-related malspam campaign impersonates U.S. Treasury to steal taxpayer credentials
The advocacy group Abuse.ch has found a Covid-19-related malspam campaign that impersonates the U.S. Treasury Department and more than likely...
10 best practices for MSPs to secure their clients and themselves from ransomware
Lock-downs and social distancing may be on, but when it comes to addressing the need for IT support—whether by current...
Phishing Attacks Can Now Dodge Microsoft 365’s Multi-Factor Authentication
Of late a phishing attack was found to be stealing confidential user data that was stored on the cloud. As...
IT threat evolution Q1 2020. Statistics
These statistics are based on detection verdicts for Kaspersky products received from users who consented to providing statistical data. Quarterly...
IT threat evolution Q1 2020
Targeted attacks and malware campaigns Operation AppleJeus: the sequel In 2018, we published a report on Operation AppleJeus, one of...
Web Hacker’s Weapons – A Collection Of Cool Tools Used By Web Hackers
A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting.WeaponsType Name DescriptionArmy-Knife/ALL BurpSuite the BurpSuite project...
Spray – A Password Spraying Tool For Active Directory Credentials By Jacob Wilkin(Greenwolf)
A Password Spraying tool for Active Directory Credentials by Jacob Wilkin(Greenwolf)Getting StartedThese instructions will show you the requirements for and...
Q&A from April 2020 Customer Webcast on InsightVM Dashboards & Executive Summary Report
Our recent “Seeing 20/20 with InsightVM” customer webcast on InsightVM dashboards and executive summary report was very well-attended, and we...
Netwalker Fileless Ransomware Injected via Reflective Loading
By Karen Victor Threat actors are continuously creating more sophisticated ways for malware to evade defenses. We have observed Netwalker...
Six need-to-know takeaways from the Verizon breach report
Phishing attacks and stolen credentials have become attackers’ most popular avenues of network compromise, and employee errors are helping pave...
WolfRAT malware targets WhatsApp, Messenger
A new malware called “WolfRAT is targeting messaging apps, such as WhatsApp, Facebook Messenger and Line on Thai Android devices. WolfRAT,...
