Retail giant Woolworths discloses data breach of MyDeal online marketplace
Australian retail giant Woolworths disclosed a data breach that impacted approximately 2.2 million MyDeal customers. Bad news for the customers...
hacking
New UEFI rootkit Black Lotus offered for sale at $5,000
Black Lotus is a new, powerful Windows UEFI rootkit advertised on underground criminal forums, researcher warns. Cybersecurity researcher Scott Scheferman...
Japanese tech firm Oomiya hit by LockBit 3.0. Multiple supply chains potentially impacted
The IT infrastructure of the Japanese tech company Oomiya was infected with the LockBit 3.0 ransomware. One of the affiliates...
JSubFinder – Searches Webpages For Javascript And Analyzes Them For Hidden Subdomains And Secrets
JSubFinder is a tool writtin in golang to search webpages & javascript for hidden Install Install the application and download...
Bulgaria hit by a cyber attack originating from Russia
Government institutions in Bulgaria have been hit by a cyber attack during the weekend, experts believe it was launched by...
Interpol arrested 75 members of the cybercrime ring Black Axe
Interpol has announced the arrests of 75 individuals as part of a coordinated international operation against an organized cybercrime ring...
45,654 VMware ESXi servers reached End of Life on Oct. 15
Lansweeper warns that over 45,000 VMware ESXi servers exposed online have reached end-of-life (EOL), making them an easy target for...
Mysterious Prestige ransomware targets organizations in Ukraine and Poland
Microsoft warns that new Prestige ransomware is targeting transportation and logistics organizations in Ukraine and Poland. Microsoft reported that new...
Threat actors hacked hundreds of servers by exploiting Zimbra CVE-2022-41352 bug
Threat actors have compromised hundreds of servers exploiting critical flaw CVE-2022-41352 in Zimbra Collaboration Suite (ZCS). Last week, researchers from...
Security Affairs newsletter Round 389
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
New PHP Version of Ducktail info-stealer hijacks Facebook Business accounts
Experts spotted a PHP version of an information-stealing malware called Ducktail spread as cracked installers for legitimate apps and games. Zscaler researchers...
Palo Alto Networks fixed a high-severity auth bypass flaw in PAN-OS
Palo Alto Networks addressed a high-severity authentication bypass vulnerability affecting the PAN-OS 8.1 software. Palo Alto Networks released security patches...
GodGenesis – A Python3 Based C2 Server To Make Life Of Red Teamer A Bit Easier. The Payload Is Capable To Bypass All The Known Antiviruses And Endpoints
God Genesis is a C2 server purely coded in Python3 created to help Red Teamers and Penetration Testers. Currently It...
Indian power generation giant Tata Power hit by a cyber attack
Tata Power Company Limited, India’s largest power generation company, announced it was hit by a cyberattack. Tata Power on Friday announced...
Experts disclose technical details of now-patched CVE-2022-37969 Windows Zero-Day
Researchers disclosed details of a now-patched flaw, tracked as CVE-2022-37969, in Windows Common Log File System (CLFS). The CVE-2022-37969 (CVSS score:...
WIP19, a new Chinese APT targets IT Service Providers and Telcos
Chinese-speaking threat actor, tracked as WIP19, is targeting telecommunications and IT service providers in the Middle East and Asia. SentinelOne researchers...
Matano – The Open-Source Security Lake Platform For AWS
Features Collect data from all your sources Matano lets you collect log data from sources using Download Matano If you...
Experts released PoC exploit code for critical bug CVE-2022-40684 in Fortinet products
Experts released the PoC exploit code for the authentication bypass flaw CVE-2022-40684 in FortiGate firewalls and FortiProxy web proxies. A...
DJI drone tracking data exposed in the US
Over 80,000 drone IDs were exposed in the leak of a database containing information from airspace monitoring devices manufactured by...
China-linked Budworm APT returns to target a US entity
The Budworm espionage group resurfaced targeting a U.S.-based organization for the first time, Symantec Threat Hunter team reported. The Budworm cyber...
Cloudflare blocked a 2.5 Tbps DDoS attack aimed at the Minecraft server
Cloudflare mitigated a record distributed denial-of-service (DDoS) attack against Wynncraft, one of the largest Minecraft servers. Cloudflare announced it has...
The discovery of Alchimist C2 tool, revealed a new attack framework to target Windows, macOS, and Linux systems
Experts discovered a new attack framework, including a C2 tool dubbed Alchimist, used in attacks against Windows, macOS, and Linux...
FUD-UUID-Shellcode – Another shellcode injection technique using C++ that attempts to bypass Windows Defender using XOR encryption sorcery and UUID strings madness
Introduction Another shellcode Static Analysis AV Scan results The binary was scanned using Credits https://research.nccgroup.com/2021/01/23/rift-analysing-a-lazarus-shellcode-execution-method/ Download FUD-UUID-Shellcode If you like...
POLONIUM APT targets Israel with a new custom backdoor dubbed PapaCreep
An APT group tracked as Polonium employed custom backdoors in attacks aimed at Israelian entities since at least September 2021....
