Japanese Kawasaki Heavy Industries discloses security breach
Japanese giant Kawasaki Heavy Industries discovered unauthorized access to a Japanese company server from multiple overseas offices. Kawasaki Heavy Industries...
hacking
CISA releases a PowerShell-based tool to detect malicious activity in Azure, Microsoft 365
Cybersecurity and Infrastructure Security Agency (CISA) released a tool for detecting potentially malicious activities in Azure/Microsoft 365 environments. The Cybersecurity...
Threat actor is selling a dump allegedly including 2,5M customers of service provider Ho Mobile
Threat intelligence analyst discovered a threat actor that is selling a database of the Italian mobile service provider Ho mobile....
Finland confirms that hackers breached MPs’ emails accounts
The Parliament of Finland confirmed that threat actors had access to email accounts of multiple members of parliament (MPs). “Parliament...
Nefilim ransomware operators leak data stolen from Whirlpool
The American multinational manufacturer and marketer of home appliances Whirlpool was hit by the Nefilim ransomware gang. The American multinational manufacturer and marketer of home appliances Whirlpool...
Multi-platform card skimmer targets Shopify, BigCommerce, Zencart, and Woocommerce stores
Experts warn of a multi-platform credit card skimmer that can target online stores running on Shopify, BigCommerce, Zencart, and Woocommerce....
Top 20 Most Popular Hacking Tools in 2020
Although 2020 has been the worst year since 1945, as last year, this year we made a ranking with the...
Taking Inspiration from our Security Nation in an Otherwise Uninspiring Year
Well, what a year it has been. I won’t waste your time by recapping the many, many difficulties that 2020...
E-commerce app 21 Buttons exposes millions of users’ data
Researchers discovered that the popular e-commerce app 21 Buttons was exposing private data for 100s of influencers across Europe. Researchers from...
Wynis – Audit Windows Security With Best Practice
Just a powershell scripts for auditing security with CIS BEST Practices Windows 10 and Window Server 2016 You just need...
Proxify – Swiss Army Knife Proxy Tool For HTTP/HTTPS Traffic Capture, Manipulation, And Replay On The Go
Swiss Army Knife Proxy for rapid deployments. Supports multiple operations such as request/response dump, filtering and manipulation via DSL language,...
Vermont Hospital confirmed the ransomware attack
The Burlington-based University of Vermont Health Network has finally admitted that ransomware was behind the October attack. In October, threat...
Security Affairs newsletter Round 294
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
HackerOne announces first bug hunter to earn more than $2M in bug bounties
White hat hacker could be a profitable profession, Cosmin Iordache earned more than $2M reporting flaws through the bug bounty...
SolarWinds releases updated advisory for SUPERNOVA backdoor
SolarWinds released an updated advisory for the SuperNova malware discovered while investigating the recent supply chain attack. SolarWinds has released...
GoDaddy apologized for insensitive phishing email sent to its employees offering a fake bonus
GoDaddy made the headlines for an initiative that is dividing cybersecurity community, it sent phishing messages offering bonuses to its...
Social-Analyzer – API And Web App For Analyzing And Finding A Person Profile Across +300 Social Media Websites (Detections Are Updated Regularly)
An API for analyzing & finding a person profile across +300 social media websites. It includes different string analysis and...
ApkLeaks – Scanning APK File For URIs, Endpoints And Secrets
Scanning APK file for URIs, endpoints & secrets.InstallationTo install apkLeaks, simply: $ git clone https://github.com/dwisiswant0/apkleaks$ cd apkleaks/$ pip install -r...
The Emotet botnet is back and hits 100K recipients per day
Emotet is back on Christmas Eve, cybercrime operators are sending out spam messages to deliver the infamous Trickbot Trojan. Emotet...
REvil gang threatens to release intimate pictures of celebs who are customers of The Hospital Group
REvil ransomware gang, aka Sodinokibi, hacked The Hospital Group and threatens to release before-and-after pictures of celebrity clients. The Hospital...
CrowdStrike releases free Azure tool to review assigned privileges
CrowdStrike released a free Azure security tool after it was notified by Microsoft of a failed attack leveraging compromised Azure...
North Korea-linked Lazarus APT targets the COVID-19 research
The North Korea-linked Lazarus APT group has recently launched cyberattacks against at least two organizations involved in COVID-19 research. The...
Aura – Python Source Code Auditing And Static Analysis On A Large Scale
Aura is a static analysis framework developed as a response to the ever-increasing threat of malicious packages and vulnerable code...
Vulmap – Web Vulnerability Scanning And Verification Tools
Vulmap is a vulnerability scanning tool that can scan for vulnerabilities in Web containers, Web servers, Web middleware, and CMS...
