How to Keep Up With Vulnerability Management Challenges in Ephemeral Cloud Environments
This blog is part of an ongoing series sharing key takeaways from Rapid7’s 2020 Cloud Security Executive Summit. Interested in...
hacking
Hackers compromised Microsoft Exchange servers at the EU Banking Regulator EBA
The European Banking Authority (EBA) disclosed a cyberattack that resulted in the hack of its Microsoft Exchange email system. The...
Microsoft updated MSERT to detect web shells used in attacks against Microsoft Exchange installs
Microsoft updated its Microsoft Safety Scanner (MSERT) tool to detect web shells employed in the recent Exchange Server attacks. Early...
The launch of Williams new FW43B car ruined by hackers
The presentation of Williams’s new Formula One car was ruined by hackers that forced the team to abandon the launch...
Chinese hackers allegedly hit thousands of organizations using Microsoft Exchange
Thousands of organizations may have been victims of cyberattacks on Microsoft Exchange servers conducted by China-linked threat actors since January....
Procrustes – A Bash Script That Automates The Exfiltration Of Data Over Dns In Case We Have A Blind Command Execution On A Server Where All Outbound Connections Except DNS Are Blocked
A bash script that automates the exfiltration of data over dns in case we have a blind command execution on...
packetStrider – A Network Packet Forensics Tool For SSH
packetStrider for SSH is a packet forensics tool that aims to provide valuable insight into the nature of SSH traffic,...
Russia-linked APT groups exploited Lithuanian infrastructure to launch attacks
Russia-linked APT groups leveraged the Lithuanian nation’s technology infrastructure to launch cyber-attacks against targets worldwide. The annual national security threat...
Security Affairs newsletter Round 304
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
REvil Ransomware gang uses DDoS attacks and voice calls to make pressure on the victims
The REvil ransomware operators are using DDoS attacks and voice calls to journalists and victim’s business partners to force victims...
Multiple Cisco products exposed to DoS attack due to a Snort issue
Cisco announced that a vulnerability in the Snort detection engine exposes several of its products to denial-of-service (DoS) attacks. Cisco...
Hackers breached four prominent underground cybercrime forums
A suspicious wave of attacks resulted in the hack of four cybercrime forums Verified, Crdclub, Exploit, and Maza since January....
Chameleon – Customizable Honeypots For Monitoring Network Traffic, Bots Activities And UsernamePassword Credentials (DNS, HTTP Proxy, HTTP, HTTPS, SSH, POP3, IMAP, STMP, RDP, VNC, SMB, SOCKS5, Redis, TELNET, Postgres And MySQL)
Customizable honeypots for monitoring network traffic, bots activities and usernamepassword credentials (DNS, HTTP Proxy, HTTP, HTTPS, SSH, POP3, IMAP, STMP,...
uEmu – Tiny Cute Emulator Plugin For IDA Based On Unicorn.
uEmu is a tiny cute emulator plugin for IDA based on unicorn engine. Supports following architectures out of the box:...
Microsoft releases IOC Detection Tool for Microsoft Exchange Server flaws
After the disclosure of Microsoft Exchange zero-days, MS Exchange Server team has released a script to determine if an install...
Millions of travelers of several airlines impacted by SITA data breach
SITA, a multinational IT company that provides services to the air transport industry was the victim of cyberattack that impacted multiple airlines. SITA is...
GoldMax, GoldFinder, and Sibot, 3 new malware used by SolarWinds attackers
Microsoft experts continue to investigate the SolarWinds attack and spotted 3 new strains of malware used as second-stage payloads. Microsoft...
Kubestriker – A Blazing Fast Security Auditing Tool For Kubernetes
Kubestriker performs numerous in depth checks on kubernetes infra to identify the security misconfigurations and challenges that devops engineers/developers are...
CertEagle – Asset monitoring utility using real time CT log feeds
In Bugbounties “If you are not first , then you are last” there is no such thing as silver or...
Managed Services provider CompuCom by Darkside ransomware
US managed service provider CompuCom was the victim of a cyberattack that partially disrupted its operations, experts believe it was...
Five privilege escalation flaws fixed in Linux Kernel
Experts found five vulnerabilities in the Linux kernel, tracked as CVE-2021-26708, that could lead to local privilege escalation. Positive Technologies researcher Alexander...
Sunshuttle, the fourth malware allegedly linked to SolarWinds hack
FireEye researchers spotted a new sophisticated second-stage backdoor that was likely linked to threat actors behind the SolarWinds hack. Malware researchers...
VMware addresses Remote Code Execution issue in View Planner
VMware released a security patch for a remote code execution vulnerability that affects the VMware View Planner product. VMware released...
CISA emergency directive urges to fix Microsoft Exchange zero-days
The US Cybersecurity and Infrastructure Security Agency (CISA) has issued an emergency directive related to recently fixed Microsoft Exchange zero-days. ...
