VMware fixes command injection issue in vSphere Replication
VMware released security patches for a potentially serious vulnerability affecting the vSphere Replication product. VMware has recently released security patches...
hacking
France agency ANSSI links Russia’s Sandworm APT to attacks on hosting providers
French agency ANSSI attributes a series of attacks targeting Centreon servers to the Russia-linked Sandworm APT group. The French security...
Gitlab-Watchman – Monitoring GitLab For Sensitive Data Shared Publicly
GitLab Watchman is an application that uses the GitLab API to audit GitLab for sensitive data and credentials exposed internally....
OSV – Open Source Vulnerability DB And Triage Service
OSV is a vulnerability database and triage infrastructure for open source projects aimed at helping both open source maintainers and...
The malicious code in SolarWinds attack was the work of 1,000+ developers
Microsoft says it found 1,000-plus developers’ fingerprints on the SolarWinds attack Microsoft’s analysis of the SolarWinds supply chain attack revealed...
French and Ukrainian police arrested Egregor ransomware affiliates/partners in Ukraine
An international operation conducted in Ukraine and France lead to the arrest of criminals believed to be affiliated with the...
The kingpin behind Joker’s Stash retires with a billionaire exit
The administrators of the most popular carding marketplace on the dark web Joker’s Stash announced his retirement. Cybercriminal behind the...
UDdup – Urls De-Duplication Tool For Better Recon
The tool gets a list of URLs, and removes "duplicate" pages in the sense of URL patterns that are probably...
Damn-Vulnerable-GraphQL-Application – Damn Vulnerable GraphQL Application Is An Intentionally Vulnerable Implementation Of Facebook’s GraphQL Technology, To Learn And Practice GraphQL Security
Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.About DVGADamn...
PayPal addresses reflected XSS bug in user wallet currency converter
PayPal has addressed a reflected cross-site scripting (XSS) vulnerability that affected the currency converter feature of user wallets. PayPal has...
Security Affairs newsletter Round 301
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
FBI’s alert warns about using Windows 7 and TeamViewer
The FBI is warning companies about the use of out-of-date Windows 7 systems, desktop sharing software TeamViewer, and weak account...
Court documents show FBI could use a tool to access private Signal messages on iPhones
Court documents obtained by Forbes revealed that the FBI may have a tool that allows accessing private Signal messages on iPhones. Court...
Project iKy v2.7.0 – Tool That Collects Information From An Email And Shows Results In A Nice Visual Interface
Project iKy is a tool that collects information from an email and shows results in a nice visual interface.Visit the...
Darkdump – Search The Deep Web Straight From Your Terminal
Darkdump is a simple script written in Python3.9 in which it allows users to enter a search term (query) in...
The Importance of a Proactive Cyber Defense Solution To Protect Your Critical Data
Personal and Corporate data is now regularly targeted and traded by unscrupulous actors, protect it with a proactive Cyber Defense...
Gmail users from US most targeted by email-based phishing and malware
Google revealed that Gmail users from the United States are the most targeted by email-based phishing and malware. A joint...
Yandex security team caught admin selling access to users’ inboxes
Russian internet and search company Yandex discloses a data breach, a system administrator was selling access to thousands of user...
Diceware-Password-Generator – Python Implementation Of The Diceware Password Generating Algorithm
Please Note - This Program Do Not Store Passwords In Any Form And All The Passwords Are Generated Locally Inside...
BaphoDashBoard – Dashboard For Manage And Generate The Baphomet Ransomware
With this proyect we will be able to handle the data of the victims we obtain with Baphomet Ransomware. BaphoDashBoard...
TIM’s Red Team Research (RTR) discovered a critical zero-day vulnerability in IBM InfoSphere Information Server
Researchers at TIM’s Red Team Research discovered a zero-day vulnerability in IBM InfoSphere Information Server. Today, TIM’s Red Team Research...
Microsoft warns of the rise of web shell attacks
Researchers from Microsoft are warning that the number of monthly web shell attacks has doubled since last year. Microsoft reported...
The “P” in Telegram stands for Privacy
Security expert Dhiraj Mishra analyzed the popular instant messaging app Telegram and identified some failures in terms of handling the...
Lampion trojan disseminated in Portugal using COVID-19 template
The fresh release of the Latin American Lampion trojan was updated with a new C2 address. Lampion trojan disseminated in...
