BlackMatter and Haron, two new ransomware gangs in the threat landscape
The cyber threat landscape change continuously, recently two new ransomware-as-service (RaaS) operations named BlackMatter and Haron made the headlines. Recently,...
hacking
Sniffle – A Sniffer For Bluetooth 5 And 4.X LE
Sniffle is a sniffer for Bluetooth 5 and 4.x (LE) using TI CC1352/CC26x2 hardware. Sniffle has a number of useful...
Radare2 – UNIX-like Reverse Engineering Framework And Command-Line Toolset
r2 is a rewrite from scratch of radare. It provies a set of libraries, tools and plugins to ease...
LockBit 2.0, the first ransomware that uses group policies to encrypt Windows domains
A new variant of the LockBit 2.0 ransomware is now able to encrypt Windows domains by using Active Directory group policies. Researchers...
Critical flaw in Microsoft Hyper-V could allow RCE and DoS
Experts disclose details about a critical flaw in Microsoft Hyper-V, tracked as CVE-2021-28476, that can allow executing arbitrary code on...
US, UK, and Australian agencies warn of top routinely exploited issues
A joint report published by US, UK, and Australian cyber security agencies warns of the top routinely exploited vulnerabilities in...
Chinese cyberspies used a new PlugX variant, dubbed THOR, in attacks against MS Exchange Servers
A China-linked cyberespionage group, tracked as PKPLUG, employed a previously undocumented strain of a RAT dubbed THOR in recent attacks....
CredPhish – A PowerShell Script Designed To Invoke Legitimate Credential Prompts And Exfiltrate Passwords Over DNS
CredPhish is a PowerShell script designed to invoke credential prompts and exfiltrate passwords. It relies on CredentialPicker to collect user...
LoGiC.NET – A More Advanced Free And Open .NET Obfuscator Using Dnlib
LoGiC.NET is a free and open-source .NET obfuscator that uses dnlib for folks that want to see how obfuscation works...
IBM Cost of a Data Breach study: average Cost of Data Breach exceeds $4.2M
The ‘Cost of a Data Breach’ report commissioned by IBM Security states that the cost of a data breach exceeded...
BlackMatter ransomware group claims to be Darkside and REvil succesor
BlackMatter ransomware gang, a new threat actor appears in the threat landscape and claims to combine TTPs of Darkside and...
Flaws in Zimbra could allow to takeover webmail server of a targeted organization
Researchers discovered flaws in Zimbra email collaboration software that could allow attackers to compromise email accounts by sending a malicious...
TokenTactics – Azure JWT Token Manipulation Toolset
Azure JSON Web Token ("JWT") Manipulation Toolset Azure access tokens allow you to authenticate to certain endpoints as a user...
Reconmap – VAPT (Vulnerability Assessment And Penetration Testing) Automation And Reporting Platform
Reconmap is a vulnerability assessment and penetration testing (VAPT) platform. It helps software engineers and infosec pros collaborate on security...
South Africa’s logistics company Transnet SOC hit by a ransomware attack
Transnet SOC Ltd, a large South African rail, port and pipeline company, announced it was hit by a disruptive cyber attack. South Africa’s logistics company...
DIVD discloses three new unpatched Kaseya Unitrends zero-days
Experts found three new zero-day flaws in the Kaseya Unitrends service and warn users to avoid exposing the service to...
Hackers flooded the Babuk ransomware gang’s forum with gay porn images
The Babuk ransomware operators seem to have suffered a ransomware attack, threat actors flooded their forum gay orgy porn images....
Apple fixes CVE-2021-30807 flaw, the 13th zero-day this year
Apple released a security update that addresses CVE-2021-30807 flaw in macOS and iOS that may have been actively exploited to...
No More Ransom helped ransomware victims to save almost €1B
The No More Ransom initiative celebrates its fifth anniversary, over 6 million victims of ransomware attacks recover their files for...
Dorothy – Tool To Test Security Monitoring And Detection For Okta Environments
Created by David French (@threatpunter) at Elastic Security Dorothy is a tool to help security teams test their monitoring and...
Juumla – Tool Designed To Identify And Scan For Version, Config Files In The CMS Joomla!
Juumla is a python tool developed to identify the current Joomla version and scan for readable Joomla config files.Installing /...
Hiding Malware inside a model of a neural network
Researchers demonstrated how to hide malware inside an image classifier within a neural network in order to bypass the defense...
Microsoft publishes mitigations for the PetitPotam attack
Microsoft published mitigations for the recently discovered PetitPotam attack that allows attackers to force remote Windows machines to share their...
Threat actor offers Clubhouse secret database containing 3.8B phone numbers
A threat actor is offering for sale on hacking forums the secret database Clubhouse containing 3.8B phone numbers. Clubhouse is...
