Researcher published PoC exploit for Ghostscript zero-day
A researcher published the PoC exploit code for a Ghostscript zero-day vulnerability that could allow completely compromise a server. Security...
hacking
TIGMINT – OSINT (Open Source Intelligence) GUI Software Framework
An OSINT (Open Source Intelligence) software framework with an objective of making cyber investigations more convinient by implementing abstraction mechanisms...
Penelope – Shell Handler
Penelope is an advanced shell handler. Its main aim is to replace netcat as shell catcher during exploiting RCE vulnerabilities....
A server of the Jenkins project hacked by exploiting a Confluence flaw
The development team behind the Jenkins server disclose a security breach, threat actors deployed a cryptocurrency miner on one of its...
Ragnar Locker gang threatens to leak data if victim contacts law enforcement
The Ragnar Locker ransomware operators threaten to leak stolen data if the victims attempt to contact law enforcement agencies. The...
ProtonMail logged IP address of French activist after foreign request approved by Swiss authorities
A police report revealed that the popular encrypted email service provider ProtonMail shared the IP address of a French activist with the...
TrickBot gang developer arrested at the Seoul international airport
A Russian man accused of being a member of the infamous TrickBot gang was arrested while trying to leave South...
packetsifterTool – A Tool To Aid Analysts In Sifting Through A Packet Capture (Pcap) To Find Noteworthy Traffic
PacketSifter is a tool to perform batch processing of PCAP data to uncover potential IOCs.Simply initializePacketSifter with your desired integrations...
Nettacker – Automated Penetration Testing Framework
OWASP Nettacker project is created to automate information gathering, vulnerability scanning and eventually generating a report for networks, including services,...
Netgear addresses severe security flaws in 20 of its products
Netgear has released security updates to address high-severity vulnerabilities affecting several of its smart switches used by businesses. Netgear has...
Malware found pre-installed in cheap push-button mobile phones sold in Russia
Security researcher ValdikSS found malware preinstalled in four low-budget push-button mobile phones available for sale on Russian e-stores. A Russian...
FBI IC3 warns of a spike in sextortion attacks
The FBI Internet Crime Complaint Center (IC3) warns of a spike in sextortion attacks since the beginning of 2021 that...
Pacific City Bank hit by AVOS Locker Ransomware
Pacific City Bank was hit by AVOS Locker Ransomware operators, the gang claims to have stolen sensitive file from the...
Ligolo-Ng – An Advanced, Yet Simple, Tunneling/Pivoting Tool That Uses A TUN Interface
An advanced, yet simple, tunneling tool that uses a TUN interface.by TNP IT SecurityIntroductionLigolo-ng is a simple, lightweight and fast...
GoPurple – Yet Another Shellcode Runner Consists Of Different Techniques For Evaluating Detection Capabilities Of Endpoint Security Solutions
This project is a simple collection of various shell code injection techniques, aiming to streamline the process of endpoint detection...
WhatsApp fined €225M over GDPR issues
The Irish Data Protection Commission has fined WhatsApp €225 million over data sharing transparency for European Union users’ data with Facebook. The...
Security Affairs newsletter Round 330
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free...
Major IPS in New Zealand hit by massive DDoS, Internet outages reported
A massive DDoS hit New Zealand ‘s third-largest internet operator isolating parts of the country from the Internet. A massive...
SEC warns of investment scams related to Hurricane Ida
The US Securities and Exchange Commission warns investors of potential investment scams that leverages Hurricane Ida as a bait. The US Securities and...
Bugs-feed – A Local Hosted Portal Where You Can Search For The Latest News, Videos, CVEs, Vulnerabilities…
Bug's feed is a local hosted portal where you can search for the latest news, videos, CVEs, vulnerabilities... It's implemented...
Zuthaka – An Open Source Application Designed To Assist Red-Teaming Efforts, By Simplifying The Task Of Managing Different APTs And Other Post-Exploitation Tools
A collaborative free open-source Command & Control integration framework that allows developers to concentrate on the core function and goal...
Apple will delay the rollout of new child pornography protection tools
Apple will delay the introduction of its new child pornography protection tools due to a heated debate raised by privacy...
FIN7 group leverages Windows 11 Alpha-Themed docs to drop Javascript payloads
FIN7 cybercrime gang used weaponized Windows 11 Alpha-themed Word documents to drop malicious payloads, including a JavaScript backdoor. Anomali Threat...
Source code for the Babuk is available on a hacking forum
The complete source code for the Babuk ransomware is available for sale on a Russian-speaking hacking forum. A threat actor...
