Poro – Scan Publicly Accessible Assets On Your AWS Cloud Environment
Scan for publicly accessible assets on your AWS environment Services covered by this tool: AWS ELB API Gateway S3 Buckets...
hacking
NB65 group targets Russia with a modified version of Conti’s ransomware
NB65 hacking group created its ransomware based on the leaked source code of the Conti ransomware and targets Russia. According...
Security Affairs newsletter Round 360 by Pierluigi Paganini
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free...
Facebook blocked Russia and Belarus threat actors’ activity against Ukraine
Facebook/Meta said Russia-linked threat actors are attempting to use the social network against Ukraine with hate speech, bullying, and fake...
Skanuvaty – Dangerously Fast DNS/network/port Scanner
Dangerously fast dns/network/port scanner, all-in-one.Start with a domain, and we'll find everything about it. Features: Finds subdomains from root domain...
A DDoS attack took down Finnish govt sites as Ukraine’s President addresses MPs
A massive DDoS attack took down Finnish government websites while Ukrainian President Zelenskyy addressed Finland’s members of parliament (MPs). On...
SharkBot Banking Trojan spreads through fake AV apps on Google Play
Experts discovered malicious Android apps on the Google Play Store masqueraded as antivirus solutions spreading the SharkBot Trojan. Researchers from the...
China-linked threat actors target Indian Power Grid organizations
China-linked threat actors continue to target Indian power grid organizations, most of the attacks involved the ShadowPad backdoor. Recorded Future’s...
Uncover – Quickly Discover Exposed Hosts On The Internet Using Multiple Search Engine
uncover is a go wrapper using APIs of well known search engines to quickly discover exposed hosts on the internet....
A Mirai-based botnet is exploiting the Spring4Shell vulnerability
Experts warn of a Mirai-based botnet exploiting the recently discovered Spring4Shell vulnerability in attacks in the wild. Trend Micro Threat...
Cloak – A Censorship Circumvention Tool To Evade Detection By Authoritarian State Adversaries
Cloak is a pluggable transport that enhances traditional proxy tools like OpenVPN to evade sophisticated censorship and data discrimination. Cloak...
15 Cybersecurity Measures for the Cloud Era
Which are the most important cybersecurity measures that businesses can take to protect themselves in the cloud era? We are...
Anonymous and the IT ARMY of Ukraine continue to target Russian entities
The popular hacking Anonymous and the IT ARMY of Ukraine continue to target Russian government entities and private businesses. This...
OffensiveNotion – Notion As A Platform For Offensive Operations
Notion (yes, the notetaking app) as a C2. Wait, What? Yes. But Why? What started as a meme grew into...
A Ukrainian man is the third FIN7 member sentenced in the United States
A Ukrainian man was sentenced in the US to 5 years in prison for his criminal activity in the cybercrime...
Microsoft disrupted APT28 attacks on Ukraine through a court order
Microsoft obtained a court order to take over seven domains used by the Russia-linked APT28 group to target Ukraine. Microsoft...
Hamas-linked threat actors target high-profile Israeli individuals
Hamas-linked threat actors conducted an elaborate campaign aimed at high-profile Israeli individuals employed in sensitive sectors. Researchers from Cybereason observed...
Octosuite – Advanced Github OSINT Framework
Simply gather OSINT on Github users and organizations like a god FEATURES Fetches organization info Fetches user info Fetches repository...
Colibri Loader employs clever persistence mechanism
Recently discovered malware loader Colibri leverages a trivial and efficient persistence mechanism to deploy Windows Vidar data stealer. Malwarebytes researchers...
CVE-2022-22292 flaw could allow hacking of Samsung Android devices
Experts discovered a vulnerability, tracked as CVE-2022-22292, which can be exploited to compromise Android 9, 10, 11, and 12 devices....
Gitbleed_Tools – For Extracting Data From Mirrorred Git Repositories
This repo contains shell scripts that can be used to download and analyze differences between cloned and mirror Git repositories....
Palo Alto Networks devices affected by CVE-2022-0778 OpenSSL bug
Palo Alto Networks addressed a high-severity OpenSSL infinite loop vulnerability, tracked as CVE-2022-0778, that affects some of its firewall, VPN, and...
VMware addressed several critical vulnerabilities in multiple products
VMware fixed critical vulnerabilities in multiple products that could be exploited by remote attackers to execute arbitrary code. VMware has...
US dismantled the Russia-linked Cyclops Blink botnet
The U.S. government announced the disruption of the Cyclops Blink botnet operated by the Russia-linked Sandworm APT group. The U.S....
