Patching – An Interactive Binary Patching Plugin For IDA Pro
Patching A complete listing of the contextual patching actions are described in the following sections. Assemble The main patching dialog...
hacking
CVE-2022-0778 DoS flaw in OpenSSL was fixed
OpenSSL addressed a high-severity denial-of-service (DoS) vulnerability, tracked as CVE-2022-0778, related to certificate parsing. OpenSSL released updates to address a high-severity...
Critical flaws affect Veeam Data Backup software
Veeam addressed two critical vulnerabilities impacting the Backup & Replication product for virtual environments. Veeam has released security patches to...
The German BSI agency recommends replacing Kaspersky antivirus software
German Federal Office for Information Security agency, also known as BSI, recommends consumers not to use Kaspersky anti-virus software. The...
Dirty Pipe Linux flaw impacts most QNAP NAS devices
Taiwanese vendor QNAP warns most of its NAS devices are impacted by high severity Linux vulnerability dubbed ‘Dirty Pipe.’ Taiwanese...
CaddyWiper, a new data wiper hits Ukraine
Experts discovered a new wiper, tracked as CaddyWiper, that was employed in attacks targeting Ukrainian organizations. Experts at ESET Research...
A massive DDoS attack hit Israel, government sites went offline
Many Israel government websites were offline after a cyberattack, defense sources claim that this is the largest-ever attack that hit...
Lnkbomb – Malicious Shortcut Generator For Collecting NTLM Hashes From Insecure File Shares
Lnkbomb is used for uploading malicious shortcut files to insecure file shares. The Executable Usage Download Lnkbomb from the releases...
Ukraine is using Clearview AI’s facial recognition during the conflict
Ukraine’s defense ministry began using Clearview AI’s facial recognition technology to uncover Russian assailants, combat misinformation and identify the dead....
Anonymous claims to have hacked German subsidiary of Russian energy giant Rosneft
Anonymous claims to have hacked the systems of the German subsidiary of Russian energy giant Rosneft and stole 20TB of...
CodeAnalysis – Static Code Analysis
Tencent Cloud Experience Apply Link Key Features Language support: It supports Java/C++/Objective-C/C#/JavaScript/Python/Go/PHP and more, covering common programming languages. Code inspection:...
Brazilian trojan impacting Portuguese users and using the same capabilities seen in other Latin American threats
Brazilian trojan impacting Portuguese users and using the same capabilities seen in other Latin American threats Introduction A new variant...
Russia-Ukraine cyber conflict poses critical infrastructure at risk
While the Russia-Ukraine cyber conflict goes on, nation-state actors, crooks, and hacktivists continue to pose critical infrastructure at risk. Critical...
GoodHound – Uses Sharphound, Bloodhound And Neo4j To Produce An Actionable List Of Attack Paths For Targeted Remediation
Attackers think in graphs, defenders think in actions, Documentation All documentation can be found in the wiki Acknowledgments The py2neo...
Anonymous sent a message to Russians: “remove Putin”
Anonymous has published a new message for Russian citizens inviting them to remove Putin that is sacrificing them and killing...
The hidden C2: Lampion trojan release 212 is on the rise and using a C2 server for two years
The hidden C2: Lampion trojan release 212 is on the rise and using a C2 server for two years. Lampion trojan...
Mar 06- Mar 12 Ukraine – Russia the silent cyber conflict
This post provides a timeline of the events related to the Russia invasion of Ukraine from the cyber security perspective....
Security Affairs newsletter Round 357 by Pierluigi Paganini
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free...
Dome – Fast And Reliable Python Script That Makes Active And/Or Passive Scan To Obtain Subdomains And Search For Open Ports
Passive mode: Active mode + port scan: OSINT Search Engines Dome uses these web pages to obtain subdomains Without API:...
LockBit ransomware group claims to have hacked Bridgestone Americas
LockBit ransomware gang claimed to have hacked Bridgestone Americas, one of the largest manufacturers of tires. LockBit ransomware gang claimed...
DomainAlerting – Daily Alert When A New Domain Name Is Registered And Contains Your Keywords
Daily alert when a new domain name is registered and contains your keywords. Send automatic Prerequisite apt install mailutilspip3 install...
Attackers use website contact forms to spread BazarLoader malware
Threat actors are spreading the BazarLoader malware via website contact forms to evade detection, researchers warn. Researchers from cybersecurity firm...
Russian Internet watchdog Roskomnadzor is going to ban Instagram
Russian Internet watchdog Roskomnadzor is going to ban Instagram in Russia to prevent the spreading of info related to the...
Codecat v0.56 – An Open-Source Tool To Help You Find/Track User Input Sinks And Security Bugs Using Static Code Analysis
CodeCat is an open-source tool to help you find/track user input sinks and security bugs using static code analysis. These...
