Go-RouterSocks – Router Sock. One Port Socks For All The Others.
The next step after compromising a machine is to enumerate the network behind. Many tools exist to expose a socks...
hacking
Internet disruption in Russia coincided with the introduction of restrictions
Experts at the NetBlocks Internet Observatory observed this week a temporary disruption of internet service in Russia due to new...
Researchers warn of a surge in cyber attacks against Microsoft Exchange
Researchers warn of a surge in cyber attacks against Microsoft Exchange servers exploiting the recently disclosed ProxyLogon vulnerabilities. Researchers at...
Malspam campaign uses icon files to delivers NanoCore RAT
Researchers at Trustwave spotted a new malspam campaign that is abusing icon files to trick victims into installing the NanoCore...
Expert publishes PoC exploit code for Microsoft Exchange flaws
This week a security researcher published on GitHub a proof-of-concept tool to hack Microsoft Exchange servers chaining two of ProxyLogon...
Introducing the 2020 Vulnerability Intelligence Report: 50 CVEs that Made Headlines in 2020
2020 was a tumultuous year for vulnerability risk management. Defenders had to contend with a growing volume of high-priority security...
Hackers stole data from Norway parliament exploiting Microsoft Exchange flaws
Norway parliament, the Storting, has suffered a new cyberattack, hackers stole data by exploiting recently disclosed Microsoft Exchange vulnerabilities. Norway...
RedXOR, a new powerful Linux backdoor in Winnti APT arsenal
Intezer experts have spotted a new strain of Linux backdoor dubbed RedXOR that is believed to be part of the...
F5 addresses critical vulnerabilities in BIG-IP and BIG-IQ
Security firm F5 announced the availability of patches for seven vulnerabilities in BIG-IP, four of which have been rated as...
White hat hackers gained access more than 150,000 surveillance cameras
A group of hackers claimed to have compromised more than 150,000 surveillance cameras at banks, jails, schools, and prominent companies...
InsightIDR’s NTA Capabilities Expanded to AWS
We’re excited to announce we have expanded the Network Traffic Analysis (NTA) capabilities in InsightIDR to support Amazon Web Services...
OVH data centers suffered a fire, many popular sites are offline
OVH, the largest hosting provider in Europe, has suffered a terrible fire that destroyed the data centers located in Strasbourg. OVH,...
A flaw in The Plus Addons for Elementor WordPress plugin allows sites takeover
Researchers from the Wordfence team found a critical vulnerability in The Plus Addons for Elementor WordPress plugin that could be...
Microsoft’s March Patch Tuesday fixes 14 Critical flaws
Microsoft’s March Patch Tuesday security updates address 89 vulnerabilities in its products, 14 are listed as Critical and 75 are...
Another French hospital hit by a ransomware attack
A ransomware attack hit the Oloron-Sainte-Marie hospital in southwest France, it is the third such attack in the last month....
Microsoft releases ProxyLogon patches for unsupported Microsoft Exchange versions
Microsoft released ProxyLogon security updates for Microsoft Exchange servers running vulnerable unsupported Cumulative Update versions. On March 2nd, Microsoft has...
Writehat – A Pentest Reporting Tool Written In Python
WriteHat is a reporting tool which removes Microsoft Word (and many hours of suffering) from the reporting process. Markdown -->...
Patch Tuesday – March 2021
Another Patch Tuesday (2021-Mar) is upon us and with this month comes a whopping 122 CVEs. Â As usual Windows tops...
What’s New in DivvyCloud by Rapid7: February 2021 Feature Releases
February was another busy month. Internally, as we work to improve our processes, we are still committed to maintaining our...
Apple fixes CVE-2021-1844 RCE that affects iOS, macOS, watchOS, and Safari
Apple released out-of-band patches to address a remote code execution, tracked as CVE-2021-1844, that affect iOS, macOS, watchOS, and Safari...
SUPERNOVA backdoor that emerged after SolarWinds hack is likely linked to Chinese actors
Supernova malware clues link Chinese threat group Spiral to SolarWinds server hacks Supernova malware spotted on compromised SolarWinds Orion installs...
UnityMiner targets unpatched QNAP NAS in cryptocurrency mining campaign
Experts warn of ongoing attacks targeting QNAP network-attached storage (NAS) devices to abuse them in cryptocurrency mining. Researchers at 360Netlab are...
HiddenEyeReborn – HiddenEye With Completely New Codebase And Better Features Set
HiddenEye: Reborn is my second try on doing multi-featured tool for human mistakes exploitation. Currently, HE: RE has mainly phishing...
Sub404 – A Python Tool To Check Subdomain Takeover Vulnerability
Sub 404 is a tool written in python which is used to check possibility of subdomain takeover vulnerabilty and it...
