The malicious code in SolarWinds attack was the work of 1,000+ developers
Microsoft says it found 1,000-plus developers’ fingerprints on the SolarWinds attack Microsoft’s analysis of the SolarWinds supply chain attack revealed...
hacking
French and Ukrainian police arrested Egregor ransomware affiliates/partners in Ukraine
An international operation conducted in Ukraine and France lead to the arrest of criminals believed to be affiliated with the...
The kingpin behind Joker’s Stash retires with a billionaire exit
The administrators of the most popular carding marketplace on the dark web Joker’s Stash announced his retirement. Cybercriminal behind the...
UDdup – Urls De-Duplication Tool For Better Recon
The tool gets a list of URLs, and removes "duplicate" pages in the sense of URL patterns that are probably...
Damn-Vulnerable-GraphQL-Application – Damn Vulnerable GraphQL Application Is An Intentionally Vulnerable Implementation Of Facebook’s GraphQL Technology, To Learn And Practice GraphQL Security
Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.About DVGADamn...
PayPal addresses reflected XSS bug in user wallet currency converter
PayPal has addressed a reflected cross-site scripting (XSS) vulnerability that affected the currency converter feature of user wallets. PayPal has...
Security Affairs newsletter Round 301
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
FBI’s alert warns about using Windows 7 and TeamViewer
The FBI is warning companies about the use of out-of-date Windows 7 systems, desktop sharing software TeamViewer, and weak account...
Court documents show FBI could use a tool to access private Signal messages on iPhones
Court documents obtained by Forbes revealed that the FBI may have a tool that allows accessing private Signal messages on iPhones. Court...
Project iKy v2.7.0 – Tool That Collects Information From An Email And Shows Results In A Nice Visual Interface
Project iKy is a tool that collects information from an email and shows results in a nice visual interface.Visit the...
Darkdump – Search The Deep Web Straight From Your Terminal
Darkdump is a simple script written in Python3.9 in which it allows users to enter a search term (query) in...
The Importance of a Proactive Cyber Defense Solution To Protect Your Critical Data
Personal and Corporate data is now regularly targeted and traded by unscrupulous actors, protect it with a proactive Cyber Defense...
Gmail users from US most targeted by email-based phishing and malware
Google revealed that Gmail users from the United States are the most targeted by email-based phishing and malware. A joint...
Yandex security team caught admin selling access to users’ inboxes
Russian internet and search company Yandex discloses a data breach, a system administrator was selling access to thousands of user...
Diceware-Password-Generator – Python Implementation Of The Diceware Password Generating Algorithm
Please Note - This Program Do Not Store Passwords In Any Form And All The Passwords Are Generated Locally Inside...
BaphoDashBoard – Dashboard For Manage And Generate The Baphomet Ransomware
With this proyect we will be able to handle the data of the victims we obtain with Baphomet Ransomware. BaphoDashBoard...
TIM’s Red Team Research (RTR) discovered a critical zero-day vulnerability in IBM InfoSphere Information Server
Researchers at TIM’s Red Team Research discovered a zero-day vulnerability in IBM InfoSphere Information Server. Today, TIM’s Red Team Research...
Microsoft warns of the rise of web shell attacks
Researchers from Microsoft are warning that the number of monthly web shell attacks has doubled since last year. Microsoft reported...
The “P” in Telegram stands for Privacy
Security expert Dhiraj Mishra analyzed the popular instant messaging app Telegram and identified some failures in terms of handling the...
Lampion trojan disseminated in Portugal using COVID-19 template
The fresh release of the Latin American Lampion trojan was updated with a new C2 address. Lampion trojan disseminated in...
Avaddon ransomware decryptor released, but operators quickly reacted
An expert released a free decryption tool for the Avaddon ransomware, but operators quickly updated malware code to make it...
Experts spotted two Android spyware used by Indian APT Confucius
Lookout researchers provided details about two Android spyware families employed by an APT group tracked as Confucius. Researchers at mobile...
XSSTRON – Electron JS Browser To Find XSS Vulnerabilities Automatically
Powerful Chromium Browser to find XSS Vulnerabilites automatically while browsing web, it can detect many case scenarios with support for...
PatrowlHears – PatrowlHears – Vulnerability Intelligence Center / Exploits
PatrOwl provides scalable, free and open-source solutions for orchestrating Security Operations and providing Threat Intelligence feeds. PatrowlHears is an advanced...
