Spotify Suffers Second Credential-Stuffing Cyberattack in 3 Months
 Spotify, which has become a very popular online streaming music platform, is suffering from a second cyber credential attack...
Security Researchers Received More Than $6.7 MIllion by Google as Bug Bounty Rewards
 Security experts from 62 nations were paid more than $6.7 million (nearly Rs. 49 crore) by Google for identifying susceptibilities...
Financial Conduct Authority of UK Hit by 2,40,000 Spam Mails, Some Contain Malware
 Financial Regulator of UK was spammed by almost a quarter of a million (240,000) malicious emails in the Q4 of...
Cerber Ransomware Returns: Targeting Healthcare Industry
 Cerber, a type of ransomware that once was the most popular choice for cybercriminals, has returned and is used for...
ExecuteAssembly – Load/Inject .NET Assemblies
ExecuteAssembly is an alternative of CS execute-assembly, built with C/C++ and it can be used to Load/Inject .NET assemblies by;...
GPOZaurr – Group Policy Eater Is A PowerShell Module That Aims To Gather Information About Group Policies
Group Policy Eater is a PowerShell module that aims to gather information about Group Policies but also allows fixing issues...
Watch out! ‘The Great Suspender’ Chrome extension contains Malware
Google removed the popular The Great Suspender from the official Chrome Web Store for containing malware and deactivated it from the...
Packaging giant WestRock is still working to resume after recent Ransomware Attack
Packaging giant WestRock revealed this week that the recent ransomware attack impacted the company’s IT and operational technology (OT) systems. American corrugated packaging company...
Forward Air Corporation says that December Ransomware attack caused a loss of $7.5M
Trucking and freight transportation logistics giant Forward Air Corporation said a December 2020 ransomware attack had $7.5M Impact. Trucking and...
Hackers abuse Plex Media servers for DDoS amplification attacks
Netscout experts warn of DDoS-for-hire services abusing Plex Media servers to bounce junk traffic and amplify DDoS attacks. Security researchers from...
CVE-2020-24271
Summary: A CSRF vulnerability was discovered in EasyCMS v1.6 that can add an admin account through index.php?s=/admin/rbacuser/insert/navTabId/rbacuser/callbackType/closeCurrent, then post username=***&password=***....
CVE-2021-25249
Summary: An out-of-bounds write information disclosure vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free...
CVE-2020-29394
Summary: A buffer overflow in the dlt_filter_load function in dlt_common.c from dlt-daemon 2.18.5 (GENIVI Diagnostic Log and Trace) allows arbitrary...
CVE-2020-17516
Summary: Apache Cassandra versions 2.1.0 to 2.1.22, 2.2.0 to 2.2.19, 3.0.0 to 3.0.23, and 3.11.0 to 3.11.9, when using 'dc'...
Barcode Scanner app on Google Play infects 10 million users with one update
Late last December we started getting a distress call from our forum patrons. Patrons were experiencing ads that were opening via...
Android emulator abused to introduce malware onto PCs
Emulators have played a part in many tech-savvy users’ lives. They introduce a level of flexibility that not only allows...
Update now! Chrome patches zero-day that was exploited in the wild
A Chrome patch has been issued with an advisory stating that the Stable channel has been updated to 88.0.4324.150 for...
Serco Affirms Babuk Ransomware Attack
 Outsourcing giant Serco has affirmed that parts of its infrastructure in mainland Europe have been hit by a double extortion...
The largest international phishing center has been blocked in Ukraine
As a result of an international special operation, the Office of the Prosecutor General of Ukraine has stopped the activity...
The FSB recorded an attempt to encrypt the data of patients in hospitals in Russia
The deputy director of the National coordination center for computer incidents (NCCI) Nikolay Murashov during a speech at the information...
Scammers are Tricking Consumers via QR Code Phishing Campaign
 QR codes - the little Digi squares, an effective tool for contactless transactional activities especially during the Covid-19 pandemic. Quick...
Trucking Company Forward Air Hit by Ransomware, Suffers Heavy Loss of $7.5 Million
 Forward Air, a trucking and freight transportation logistics company said that it suffered a ransomware attack of $7.5 million. The...
Cloudlist – A Tool For Listing Assets From Multiple Cloud Providers
Cloudlist is a multi-cloud tool for getting Assets (Hostnames, IP Addresses) from Cloud Providers. This is intended to be used...
Geacon – Implement CobaltStrike’s Beacon In Go
Using Go to implement CobaltStrike's Beacon This project is for learning protocol analysis and reverse engineering only, if someone's rights...
