Reaper – Proof Of Concept On BYOVD Attack
Reaper is a proof-of-concept designed to exploit BYOVD (Bring Your Own Vulnerable Driver) driver vulnerability. This malicious technique involves inserting...
Ars0N-Framework – A Modern Framework For Bug Bounty Hunting
Howdy! My name is Harrison Richardson, or rs0n (arson) when I want to feel cooler than I really am. The...
EvilSlackbot – A Slack Bot Phishing Framework For Red Teaming Exercises
EvilSlackbot A Slack Attack Framework for conducting Red Team and phishing exercises within Slack workspaces. Disclaimer This tool is intended...
GoPhish Login Page Detected – 181[.]50[.]73[.]64:8089
The Information provided at the time of posting was detected as "GoPhish Login Page". Depending on when you are viewing...
HackerOne Bug Bounty Disclosure: graphql-attribute-batching-dos-can-take-down-pwapi-ex-b-com-alexandrio
Company Name: EXNESS Company HackerOne URL: https://hackerone.com/exness Submitted By:alexandrioLink to Submitters Profile:https://hackerone.com/alexandrio Report Title:GraphQL attribute Batching DOS can take down...
Sliver C2 Detected – 20[.]205[.]107[.]249:31337
The Information provided at the time of posting was detected as "Sliver C2". Depending on when you are viewing this...
CISA: CISA Releases Four Industrial Control Systems Advisories
CISA Releases Four Industrial Control Systems Advisories CISA released four Industrial Control Systems (ICS) advisories on June 4, 2024. These...
CISA: Cisco Releases May 2024 Cisco ASA, FMC, and FTD Software Security Publication
Cisco Releases May 2024 Cisco ASA, FMC, and FTD Software Security Publication Cisco released a bundled publication for security advisories...
XSS Vulnerabilities Found in WordPress Plugin Slider Revolution
A recent security audit of the Slider Revolution plugin has uncovered two significant vulnerabilities that could compromise the security of...
Check Point Urges VPN Configuration Review Amid Attack Spike
Cybersecurity firm Check Point has urged customers to review their VPN configurations to prevent potential exploitation by threat actors seeking...
#Infosec2024: Decoding SentinelOne’s AI Threat Hunting Assistant
Artificial intelligence (AI) has lowered the barrier to entry for both cyber attackers and cyber defenders.During Infosecurity Europe 2024, cybersecurity...
TeaBot Banking Trojan Activity on the Rise, Zscaler Observes
Threat actors are increasingly using the sophisticated TeaBot Android malware to infect mobile phones, Zscaler has found.In a new report...
New PyPI Malware “Pytoileur” Steals Crypto and Evades Detection
Cybersecurity researchers have uncovered “pytoileur,” a malicious package on the Python Package Index (PyPI). The package, posing as an “API Management...
New North Korean Hacking Group Identified by Microsoft
Microsoft has revealed the existence of a new North Korean threat actor, dubbed Moonstone Sleet.Previously tracked as Storm-1789, a denomination...
#Infosec2024: How Williams Racing Relies on Data Security for Peak Performance
Formula 1, the pinnacle of motorsport, is driven on data and cybersecurity is key to protect the data that fuels...
Internet Archive Disrupted by Sustained and “Mean” DDoS Attack
The Internet Archive is experiencing sustained distributed denial-of-service (DDoS) attacks, leading to service disruptions.The non-profit research library, which provides free...
First American Reveals Data Breach Impacting 44,000 Individuals
First American, a major insurance company in the US, has confirmed that a ransomware attack led to the loss of...
Advance Fee Fraud Targets Colleges With Free Piano Offers
A malicious email campaign has been discovered leveraging piano-themed messages to perpetrate advance fee fraud (AFF) scams. These campaigns, active since...
#Infosec2024: Why Credential-Based Attacks Need Modern Solutions
The evolving and innovative tactics cybercriminals use to steal login credentials highlights the urgent need for organizations to adopt modern...
US-Led Operation Takes Down World’s Largest Botnet
A US-led law enforcement operation has successfully disrupted the 911 S5 botnet, believed to be the world’s largest ever botnet.The...
Ticketmaster Confirms Breach Potentially Impacting 560 Million Users
Ticketmaster parent company Live Nation has confirmed that internal data was exposed in a cyber-attack identified last month, with threat...
#Infosec2024: Why Cybersecurity is Critical for the 2024 Paris Olympics
Events like the upcoming 2024 Paris Olympic Games, taking place from July 26, 2024, provides threat actors with the opportunity...
Europol-Led Operation Endgame Hits Botnet, Ransomware Networks
A new operation coordinated by Europol has targeted several significant malware droppers, including IcedID, SystemBC, Pikabot, Smokeloader, Bumblebee and Trickbot. Dubbed...
BBC Pension Scheme Breached, Exposing Employee Data
The BBC has confirmed a breach of its pension scheme, exposing the personal data of many of its employees.The public...
