Master decryption keys for Maze, Egregor, and Sekhmet ransomware leaked online
The master decryption keys for the Maze, Egregor, and Sekhmet ransomware operations were released last night on the BleepingComputer forums....
hacking
Microsoft February 2022 Patch Tuesday security updates fix a zero-day
Microsoft February 2022 Patch Tuesday security updates addressed 51 flaws in multiple products, including a zero-day bug. Microsoft February 2022...
Google February 2022 Android security updates fix remote escalation bug
Google February 2022 Android security updates address two critical flaws, including a remote escalation of privilege. Google has released the...
Wslu – A Collection Of Utilities For Windows 10 Linux Subsystems
This is a collection of utilities for Windows 10 Linux Subsystem, such as retrieving Windows 10 environment variables or creating...
The Pirate Bay clones target millions of users with malware and malicious ads
CyberNews researchers discovered five clones of The Pirate Bay serving malicious ads to more than seven million users each month....
US seizes $3.6 billion worth of cryptocurrency stolen in 2016 Bitfinex hack
The law enforcement seized $3.6 billion worth of cryptocurrency linked to the 2016 Bitfinex cryptocurrency exchange hack. Law enforcement Ilya...
EDRHunt – Scan Installed EDRs And AVs On Windows
EDRHunt scans Windows services, drivers, processes, registry for installed EDRs (Endpoint Detection And Response). Read more about EDRHunt here. Install...
Vodafone Portugal hit by a massive cyberattack
A cyberattack hit Vodafone Portugal causing severe outages in the country of its communication and television services. Vodafone Portugal suffered...
Data of +6K Puma employees stolen in December Kronos Ransomware attack
Data belonging to 6,632 Puma employees was stolen in a December 2021 ransomware attack that hit Ultimate Kronos Group (UKG)....
Russian police arrested six people involved in the theft and selling of stolen credit cards
Russian police arrested six people individuals, allegedly members of a crime ring involved in the theft and selling of stolen...
SocialPwned – An OSINT Tool That Allows To Get The Emails, From A Target, Published In Social Networks Such As Instagram, Linkedin And Twitter To Find Possible Credentials Leaks In PwnDB Or Dehashed And Obtain Google Account Information Via GHunt
SocialPwned is an OSINT tool that allows to get the emails, from a target, published in social networks like Instagram,...
Roaming Mantis SMSishing campaign now targets Europe
The Roaming Mantis SMS phishing campaign is now targeting Android and iPhone users in Europe with malicious apps and phishing...
Instaloctrack – An Instagram OSINT Tool To Collect All The Geotagged Locations Available On An Instagram Profile In Order To Plot Them On A Map, And Dump Them In A JSON
A tool to scrape geotagged locations on Instagram profiles. Output in JSON & interactive map.TL;DR : ascineema, video of the project requirements...
Avast released a free decryptor for TargetCompany ransomware
Cybersecurity firm Avast has released a decryption tool to allow victims of TargetCompany ransomware to recover their files for free. Czech...
Microsoft disables the ms-appinstaller protocol because it was abused to spread malware
Microsoft temporarily disabled the ms-appinstaller protocol for MSIX because it was abused by malware, such as Emotet. Microsoft announced to have temporarily...
US Telecom providers requested $5.6B to replace Chinese equipment
The Federal Communications Commission (FCC) says that small telecom providers have requested $5.6 billion to replace Chinese gear. The U.S....
Hackers breached a server of National Games of China days before the event
An unnamed Chinese-language-speaking hacking group compromised systems at National Games of China in 2021. Researchers at cybersecurity firm Avast discovered...
Invoke-EDRChecker – Checks Running Processes, Process Metadata, Dlls Loaded Into Your Current Process And The Each DLLs Metadata, Common Install Directories, Installed Services, The Registry And Running Drivers For The Presence Of Known Defensive Products Such As AV’s, EDR’s And Logging Tools
The script will check running processes, process metadata, Dlls loaded into your current process and the each DLLs metadata, common...
Russian Gamaredon APT is targeting Ukraine since October
Russia-linked APT group Gamaredon is behind spear-phishing attacks against Ukrainian entities and organizations since October 2021. Russia-linked cyberespionage group Gamaredon...
Espionage – A Network Packet And Traffic Interceptor For Linux. Spoof ARP And Wiretap A Network
Writeup A simple medium writeup can be found here: Click Here For The Official Medium Article Discord Server https://discord.gg/jtZeWek Ethical...
Israeli surveillance firm QuaDream emerges from the dark
One of the Apple iOS zero-day flaws exploited by the NSO group was also used by another surveillance firm named QuaDream....
Argo CD flaw could allow stealing sensitive data from Kubernetes Apps
A flaw in Argo CD tool for Kubernetes could be exploited by attackers to steal sensitive data from Kubernetes Apps....
IDACode – An Integration For IDA And VS Code Which Connects Both To Easily Execute And Debug IDAPython Scripts
IDACode makes it easy to execute and debug Python scripts in your IDA environment without leaving Visual Studio Code. The...
Security Affairs newsletter Round 352
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free...
