The chronicles of Emotet
More than six years have passed since the banking Trojan Emotet was first detected. During this time it has repeatedly...
Pytmipe – Python Library And Client For Token Manipulations And Impersonations For Privilege Escalation On Windows
PYTMIPE (PYthon library for Token Manipulation and Impersonation for Privilege Escalation) is a Python 3 library for manipulating Windows tokens...
Enum4Linux-Ng – A Next Generation Version Of Enum4Linux (A Windows/Samba Enumeration Tool) With Additional Features Like JSON/YAML Export
enum4linux-ng.py is a rewrite of Mark Lowe's (former Portcullis Labs now Cisco CX Security Labs) enum4linux.pl, a tool for enumerating...
ProCaster LE-32F430 SmartTV RCE via libsoup/2.51.3 stack overflow (CVE-2017-2885)
Posted by def on Dec 04#!/bin/sh # ProCaster LE-32F430 (NotSo)SmartTV remote code execution exploit through # GStreamer souphttpsrc libsoup/2.51.3 HTTP...
New BlackArch Linux ISOs + OVA Image released!
Posted by Black Arch on Dec 04Dear list, We've released new BlackArch Linux ISOs and OVA image (version 2020.12.01). Many...
Islamic imprisoned hacker Ardit Ferizi ordered to be deported
The Islamic hacker Ardit Ferizi, who is serving 20 years for giving his support to Islamic State group has been granted compassionate...
Hundreds of millions of Android users exposed to hack due to CVE-2020-8913
Hundreds of millions of Android users are potentially exposed to the risk of hack due to the use of Android...
Egregor ransomware attack paralyzed for 3 days payment systems at Metro Vancouver’s transportation agency TransLink
The Egregor ransomware operators hit Metro Vancouver’s transportation agency TransLink disrupting services and payment systems. Egregor ransomware operators made the...
Hackers hide software skimmer in social media sharing icons
Security researchers have uncovered a new technique to inject a software skimmer onto checkout pages, the malware hides in social...
Hackers are targeting COVID-19 vaccine cold chain
IBM X-Force experts warned of threat actors actively targeting organizations associated with the COVID-19 vaccine cold chain. Researchers from IBM...
Trickbot trojan takes aim at vulnerabilities in booting process
Trickbot, the notorious botnet and banking Trojan, has a new trick up its sleeve. According to new research by Eclypsium...
VideoBytes: Is it goodbye forever to Maze ransomware?
Hello Folks! In this Videobyte we’re talking about Maze ransomware and whether or not its shutting down, and what that...
Updated Malware: Vietnamese Hacking Group Targeting MacOS Users
 Researchers have discovered a new MacOS backdoor that steals credentials and confidential information. As cyber threats continue to rise, the...
Lithuania to allot seven million euros to combat hackers
Lithuania has applied to host the European Cyber Security Competence Center, which is designed to develop technologies and develop protective...
APT annual review: What the world’s threat actors got up to in 2020
We track the ongoing activities of more than 900 advanced threat actors; you can find our quarterly overviews here, here...
What did DeathStalker hide between two ferns?
DeathStalker is a threat actor that’s been active since at least 2012, and we exposed most of their past activities...
Aclpwn.Py – Active Directory ACL Exploitation With BloodHound
Aclpwn.py is a tool that interacts with BloodHound to identify and exploit ACL based privilege escalation paths. It takes a...
JSFScan.sh – Automation For Javascript Recon In Bug Bounty
Blog can be found at https://medium.com/@patelkathan22/beginners-guide-on-how-you-can-use-javascript-in-bugbounty-492f6eb1f9ea?sk=21500dc4288281c7e6ed2315943269e7 Script made for all your javascript recon automation in bugbounty. Just pass subdomain list...
Bundeswehr VDPBw 50+ reported vulnerabilities
Posted by Vulnerability Lab on Dec 03Department: Bundeswehr - CIR Title: Over 50 reported weaknesses - a first conclusion on...
TrickBoot feature allows TrickBot bot to run UEFI attacks
TrickBot, one of the most active botnets, in the world, gets a new improvement by adding a UEFI/BIOS Bootkit Feature....
Clop Ransomware gang claims to have stolen 2 million credit cards from E-Land
E-Land Retail suffered a ransomware attack, Clop ransomware operators claim to have stolen 2 million credit cards from the company....
A scan of 4 Million Docker images reveals 51% have critical flaws
Security experts analyzed 4 million public Docker container images hosted on Docker Hub and found half of them was having...
K12 education giant paid the ransom to the Ryuk gang
Online education giant K12 Inc. was hit by Ryuk ransomware in the middle of November and now has paid a...
Russia-linked APT Turla used a new malware toolset named Crutch
Russian-linked cyberespionage group Turla employed a new malware toolset, named Crutch, in targeted attacks aimed at high-profile targets. Russian-linked APT...
