Anonymous and its affiliates continue to cause damage to Russia
The massive operation launched by the Anonymous collective against Russia for its illegitimate invasion continues. The popular collective Anonymous, and...
hacking
CAPEv2 – Malware Configuration And Payload Extraction
CAPE is a malware sandbox. It was derived from Cuckoo with the goal of adding automated malware unpacking and config...
Ukrainian researcher leaked the source code of Conti Ransomware
A Ukrainian researcher leaked the source for the Conti ransomware and components for the control panels. Recently a Ukrainian researcher leaked...
IsaacWiper, the third wiper spotted since the beginning of the Russian invasion
IsaacWiper, a new data wiper was used against an unnamed Ukrainian government network after Russia’s invasion of Ukraine. ESET researchers...
BruteShark – Network Analysis Tool
BruteShark is a Network Building a Network Diagram File Carving Password Extracting Reconstruct all TCP Sessions Extract VoIP Calls ...
China-linked APT used Daxin, one of the most sophisticated backdoor even seen
Daxin is the most advanced backdoor in the arsenal of China-linked threat actors designed to avoid the detection of sophisticated...
Checkov – Prevent Cloud Misconfigurations During Build-Time For Terraform, CloudFormation, Kubernetes, Serverless Framework And Other Infrastructure-As-Code-Languages
Checkov is a Getting started Requirements Python >= 3.7 (Data classes are available for Python 3.7+) Terraform >= 0.12 Installation...
CISA and FBI warn of potential data wiping attacks spillover
US CISA and the FBI warned US organizations that data wiping attacks targeting Ukraine entities could spill over to targets...
FoxBlade malware targeted Ukrainian networks hours before Russia’s invasion
Microsoft revealed that Ukrainian entities were targeted with a previous undetected malware, dubbed FoxBlade, several hours before the invasion. The...
Anonymous hit Russian Nuclear Institute and leak stolen data
Anonymous and other hacker groups that responded to the call to war against Russia continue to launch cyberattacks on gov...
Toyota Motors halted production due to a cyber attack on a supplier
Japanese carmaker Toyota Motors was forced to stop car production due to a cyberattack against one of its suppliers. Japanese...
Researcher leaked Conti’s internal chat messages in response to its support to Russia
A Ukrainian researcher leaked tens of thousands of internal chat messages belonging to the Conti ransomware operation. A Ukrainian researcher leaked 60,694...
Security Affairs newsletter Round 355
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free...
Iran-linked UNC3313 APT employed two custom backdoors against a Middle East gov entity
An Iran-linked threat actor, tracked as UNC3313, was observed using two custom backdoor against an unnamed Middle East government entity....
Anonymous breached the internal network of Belarusian railways
The Anonymous hacker collective claims to have breached the Belarusian Railway’s data-processing network. The Anonymous collective announced that the internal...
DRAKVUF Sandbox – Automated Hypervisor-Level Malware Analysis System
DRAKVUF Sandbox is an automated black-box malware analysis system with DRAKVUF engine under the hood, which does not require an...
Feb 7- Feb 27 Ukraine – Russia the silent cyber conflict
This post provides a timeline of the events related to the Russia invasion of Ukraine from the cyber security perspective....
Ukraine: Volunteer IT Army is going to hit tens of Russian targets from this list
Ukraine is recruiting a volunteer IT army composed of white hat hackers to launch attacks on a list of Russian...
StayKit – Cobalt Strike Kit For Persistence
StayKit is an extension for Cobalt Strike persistence by leveraging the execute_assembly function with the SharpStay .NET assembly. The aggressor...
Chipmaker giant Nvidia hit by a ransomware attack
The chipmaker giant Nvidia was the victim of a ransomware attack that took down some of its systems for two...
Katoolin3 – Get Your Favourite Kali Linux Tools On Debian/Ubuntu/Linux Mint
Katoolin3 brings all programs available in Kali Linux to Debian and Ubuntu. Description This program is a port of katoolin...
Fileless SockDetour backdoor targets U.S.-based defense contractors
Researchers provided details about a stealthy custom malware dubbed SockDetour that targeted U.S.-based defense contractors. Cybersecurity researchers from Palo Alto Networks’ Unit...
Russia restricts Twitter in the country amid conflict with Ukraine
Global internet monitor working group NetBlocks reported that Twitter has been restricted in Russia amid conflict with Ukraine. Global internet...
Anonymous hacked the Russian Defense Ministry and is targeting Russian companies
Anonymous collective has hacked the Russian Defense Ministry and leaked the data of its employees in response to the Ukraine...
