Hcltm – Documenting Your Threat Models With HCL
Threat Modeling with HCL Overview There are many different ways in which a threat model can be documented. From a...
hacking
Ukraine warns of attacks aimed at taking over Telegram accounts
Ukraine’s technical security and intelligence service warns of threat actors targeting aimed at gaining access to users’ Telegram accounts. State...
Block discloses data breach involving Cash App potentially impacting 8.2 million US customers
Block disclosed a data breach related to the Cash App investing app and is notifying 8.2 million current and former...
KNX-Bus-Dump – A Tool To Listen On A KNX Bus Via TPUART And The Calimero Project Suite And To Dump The Data From The Packets Into A Wireshark-Compatible File Hex Dump
KNX is a popular building automation protocol and is used to interconnect sensors, actuators and other components of a smart...
U.S. Treasury Department sanctions darkweb marketplace Hydra Market
The U.S. Treasury Department sanctioned the Hydra Market, the world’s largest and longest-running dark web marketplace. The U.S. Treasury Department...
A cyber attack forced the wind turbine manufacturer Nordex Group to shut down some of IT systems
Nordex Group, one of the largest manufacturers of wind turbines, was hit by a cyberattack that forced the company to...
Germany police shut down Hydra Market dark web marketplace
Germany’s Federal Criminal Police Office shut down Hydra Market, the Russian-language darknet marketplace specialized in drug dealing. Germany’s Federal Criminal...
ScheduleRunner – A C# Tool With More Flexibility To Customize Scheduled Task For Both Persistence And Lateral Movement In Red Team Operation
Scheduled task is one of the most popular attack technique in the past decade and now it is still commonly...
Russia-linked Armageddon APT targets Ukrainian state organizations, CERT-UA warns
Ukraine CERT-UA spotted a spear-phishing campaign conducted by Russia-linked Armageddon APT targeting local state organizations. Ukraine CERT-UA published a security...
Anonymous targets the Russian Military and State Television and Radio propaganda
Anonymous continues to support Ukraine against the Russian criminal invasion targeting the Russian military and propaganda. Anonymous leaked personal details...
DarthSidious – Building An Active Directory Domain And Hacking It
The goal is simple To share my modest knowledge about hacking Windows systems. This is commonly refered to as red...
CISA adds Spring4Shell flaw to its Known Exploited Vulnerabilities Catalog
The U.S. CISA added the recently disclosed remote code execution (RCE) vulnerability Spring4Shell to its Known Exploited Vulnerabilities Catalog. The U.S....
MailChimp breached, intruders conducted phishing attacks against crypto customers
Threat actors gained access to internal tools of the email marketing giant MailChimp to conduct phishing attacks against crypto customers. During...
ICMP-TransferTools – Transfer Files To And From A Windows Host Via ICMP In Restricted Network Environments
ICMP-TransferTools is a set of Upload via ICMP The included ICMP-ReceiveFile.py and Invoke-IcmpUpload.ps1 scripts can be used to upload/exfiltrate a...
VMware released updates to fix the Spring4Shell vulnerability in multiple products
VMware released security updates to address the critical remote code execution vulnerability known as Spring4Shell. VMware has published security updates...
Experts spotted a new Android malware while investigating by Russia-linked Turla APT
Researchers spotted a new piece of Android malware while investigating activity associated with Russia-linked APT Turla. Researchers at cybersecurity firm...
Brokenwire attack, how hackers can disrupt charging for electric vehicles
Boffins devised a new attack technique, dubbed Brokenwire, against the Combined Charging System (CCS) that could potentially disrupt charging for...
Live-Forensicator – Powershell Script To Aid Incidence Response And Live Forensics
Live Forensicator is part of the Black Widow Toolbox, its aim is to assist Forensic Investigators and Incidence responders in...
Borat RAT, a new RAT that performs ransomware and DDoS attacks
Cyble researchers discovered a new remote access trojan (RAT) named Borat capable of conducting DDoS and ransomware attacks. Researchers from...
Experts discovered 15-Year-Old vulnerabilities in the PEAR PHP repository
SonarSource discovered a 15-year-old flaw in the PEAR PHP repository that could have enabled supply chain attacks. Researchers from SonarSource...
Empire 4.5
It has been another exciting week for the team. First we are just a week away for our inaugural course...
Phantun – Transforms UDP Stream Into (Fake) TCP Streams That Can Go Through Layer 3 &Amp; Layer 4 (NAPT) firewalls/NATs
Phantun is a project that obfuscated UDP packets into TCP connections. It aims to achieve maximum performance with minimum processing...
China-linked APT Deep Panda employs new Fire Chili Windows rootkit
The China-linked hacking group Deep Panda is targeting VMware Horizon servers with the Log4Shell exploit to install a new Fire...
CobaltBus – Cobalt Strike External C2 Integration With Azure Servicebus, C2 Traffic Via Azure Servicebus
Cobalt Strike External C2 Integration With Azure Servicebus, C2 traffic via Azure Servicebus Setup Create an Azure Service Bus Create...
