Necro Python bot now enhanced with new VMWare, server exploits
Operators behind the Necro Python botnet have added new features to their bot, including VMWare and server exploits. Experts from...
hacking
Metarget – Framework Providing Automatic Constructions Of Vulnerable Infrastructures
1 IntroductionMetarget = meta- + target, a framework providing automatic constructions of vulnerable infrastructures, used to deploy simple or complicated...
Penglab – Abuse Of Google Colab For Cracking Hashes
Abuse of Google Colab for fun and profit. What is it ?Penglab is a ready-to-install setup on Google Colab for...
China-linked attackers breached Metropolitan Transportation Authority (MTA) using Pulse Secure zero-day
China-linked APT breached New York City’s Metropolitan Transportation Authority (MTA) network in April using a Pulse Secure zero-day. China-linked threat...
The dark web index 2021, report
PrivacyAffairs released the Dark Web Index 2021, the document provides the prices for illegal services/products available in the black marketplaces....
Trend Micro details CVE-2021-30724 privilege escalation flaw in macOS, iOS
Trend Micro disclosed technical details of a patched privilege escalation issue, tracked as CVE-2021-30724, that impacts macOS, iOS and iPadOS....
Cisco fixes High-severity issues in Webex, SD-WAN, ASR 5000 software
Cisco addressed multiple security flaws, including high-severity vulnerabilities, in Webex Player, SD-WAN software, and ASR 5000 series software. Cisco has...
Bn-Uefi-Helper – Helper Plugin For Analyzing UEFI Firmware
Helper plugin for analyzing UEFI firmware. This plugin contains the following features: Apply the correct prototype to the entry point...
403Fuzzer – Fuzz 403/401Ing Endpoints For Bypasses
Fuzz 403ing endpoints for bypasses Follow on twitter! @intrudirThis tool will check the endpoint with a couple of headers such...
Flaws in Realtek RTL8170C Wi-Fi module allow hijacking wireless communications
Researchers found multiple flaws in the Realtek RTL8170C Wi-Fi module that could be exploited to elevate privileges and hijack wireless...
FBI confirmed that JBS was hit by the REvil ransomware gang
The US FBI announced that REvil ransomware gang (also known as Sodinokibi) is behind the attack that hit JBS Foods....
AMT Games data breach: Millions of Users’ Messages, Account IDs, and IP Addresses Exposed
WizCase’s security team discovered an unsecured ElasticSearch server owned by AMT Games which exposed 1.47 TB of data. This leak exposed...
Cyber Defense Magazine – June 2021 has arrived. Enjoy it!
Cyber Defense Magazine June 2021 Edition has arrived. We hope you enjoy this month’s edition…packed with over 129 pages of...
Critical 0day in the Fancy Product Designer WordPress plugin actively exploited
A critical zero-day vulnerability in the Fancy Product Designer WordPress plugin exposes more than 17,000 websites to attacks. Researchers from...
Onelinepy – Python Obfuscator To Generate One-Liners And FUD Payloads
Python Obfuscator To Generate One-Liners And FUD Payloads.Download & Rungit clone https://github.com/spicesouls/onelinepycd onelinepychmod +x setup.sh./setup.shonelinepy Usage Guide _ _ ___...
Arkhota – A Web Brute Forcer For Android
What?Arkhota is a web (HTTP/S) brute forcer for Android. Why?A web brute forcer is always in a hacker's computer, for...
$280 million stolen per month from crypto transactions
CyberNews researchers found that front-runners are abusing decentralized cryptocurrency exchanges by draining hundreds of millions in crypto from trader transactions...
Database, source code allegedly related to bulletproof hosting, once Parler’s service provider, up for sale on hacker forum
Group-IB discovered a database allegedly belonging to a bulletproof hosting provider DDoS-Guard posted for sale on a cybercrime forum. Group-IB,...
Exploit broker Zerodium is looking for Pidgin 0day exploits
Zero-day exploit broker Zerodium is looking for 0day exploits affecting the IM client tool Pidgin on Windows and Linux. Zero-day...
US seizes 2 domains used by APT29 in a recent phishing campaign
The US DoJ seized two domains used by APT29 group in recent attacks impersonating the U.S. USAID to spread malware....
JBS attack has likely a Russian origin
White House spokeswoman speculates threat actors behind the JBS ransomware attack have a Russian origin. The American food processing giant...
New Epsilon Red Ransomware appears in the threat landscape
Researchers spotted a new piece of ransomware named Epsilon Red that was employed at least in an attack against a...
Dent – A Framework For Creating COM-based Bypasses Utilizing Vulnerabilities In Microsoft’s WDAPT Sensors
More InformationIf you want to learn more about the techniques utlized in this framework please take a look at this...
American food processing giant JBS Foods halts production after cyberattack
The American food processing company and meat producer JBS Foods was forced to shut down production at multiple sites worldwide following...
