Conti ransomware demanded $20M ransom to Ireland Health Service Executive
Ireland Health Service Executive (HSE) refuses to pay a $20 million ransom demand after its systems were hit by the Conti...
hacking
Avaddon Ransomware gang hacked France-based Acer Finance and AXA Asia
Avaddon ransomware gang has breached the France-based financial consultancy firm Acer Finance. Avaddon ransomware gang made the headlines again, the...
DFIR-O365RC – PowerShell Module For Office 365 And Azure AD Log Collection
PowerShell module for Office 365 and Azure AD log collectionModule description The DFIR-O365RC PowerShell module is a set of functions...
Red-Kube – Red Team K8S Adversary Emulation Based On Kubectl
Red Kube is a collection of kubectl commands written to evaluate the security posture of Kubernetes clusters from the attacker's...
Two flaws could allow bypassing AMD SEV protection system
The chipmaker AMD published guidance for two new attacks against its SEV (Secure Encrypted Virtualization) protection technology. Chipmaker AMD has...
MSBuild tool used to deliver RATs filelessly
Hackers abuses Microsoft Build Engine (MSBuild) to filelessly deliver malware on targeted Windows systems, including RAT and password-stealer. Researchers from...
Security Affairs newsletter Round 314
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
Pakistan-linked Transparent Tribe APT expands its arsenal
Alleged Pakistan-Linked cyber espionage group, tracked as Transparent Tribe, targets Indian entities with a new Windows malware. Researchers from Cisco...
CIMplant – C# Port Of WMImplant Which Uses Either CIM Or WMI To Query Remote Systems
C# port of WMImplant which uses either CIM or WMI to query remote systems. It can use provided credentials or...
Httpx – A Fast And Multi-Purpose HTTP Toolkit Allows To Run Multiple Probers Using Retryablehttp Library, It Is Designed To Maintain The Result Reliability With Increased Threads
httpx is a fast and multi-purpose HTTP toolkit allow to run multiple probers using retryablehttp library, it is designed to...
European police dismantle major online investment fraud ring that causes €30 Million in losses
A joint operation of European law enforcement agencies and coordinated by Europol dismantled a criminal ring involved in investment fraud....
Major hacking forums XSS and Exploit ban ads from ransomware gangs
XSS forum (previously known as DaMaGeLab) one of the most popular hacking forums, announced that it would ban the ads...
QNAP warns of eCh0raix ransomware and Roon Server zero-day attacks
QNAP warns of an actively exploited Roon Server zero-day flaw and eCh0raix ransomware attacks on its NAS devices. QNAP warns...
Scheme flooding fingerprint technique may deanonymize Tor users
FingerprintJS experts devised a fingerprinting technique, named scheme flooding, that could allow identifying users across different desktop browsers, including the...
Darkside gang lost control of their servers and funds
The operators of the Darkside ransomware announced that they have lost control of their infrastructure and part of the funds...
Mubeng – An Incredibly Fast Proxy Checker And IP Rotator With Ease
An incredibly fast proxy checker & IP rotator with ease.FeaturesProxy IP rotator: Rotates your IP address for every specific request....
R77-Rootkit – Fileless Ring 3 Rootkit With Installer And Persistence That Hides Processes, Files, Network Connections, Etc…
Ring 3 rootkitr77 is a ring 3 Rootkit that hides following entities from all processes: Files, directories, junctions, named pipes,...
Magecart gang hides PHP-based web shells in favicons
Magecart cybercrime gang is using favicon to hide malicious PHP web shells used to maintain remote access to inject JavaScript...
Ireland’s Health Service Executive hit by ransomware attack
Ireland’s Health Service Executive service shut down its IT systems after they were hit with a “significant ransomware attack.” Another major...
Colonial Pipeline likely paid a $5M ransom to DarkSide
DarkSide demanded a $5 million ransom to Colonial Pipeline, which has quickly recovered operations, did it pay? The Colonial Pipeline...
Rapid7 says source code, credentials accessed as a result of Codecov supply-chain attack
Rapid7 disclosed that unauthorized third-party had access to source code and customer data as result of Codecov supply chain attack....
Security at Bay: Critical Infrastructure Under Attack
The recent Colonial Pipeline attack highlights the dangers that are facing Critical Infrastructure worldwide. The attack perpetrated by hackers on...
Please vote Security Affairs – 1 day left
Hi GuysI need your support. I became aware only not that we can nominate SecurityAffairs as Best Personal Blog. I...
3klCon – Automation Recon Tool Which Works With Large And Medium Scope
Full Automation Recon tool which works with Small and Medium scopes. ّIt's recommended to use it on VPS, it'll discover...
