NCSC warns UK entities of potential destructive cyberattacks from Russia
The UK’s National Cyber Security Centre (NCSC) urges organizations to improve cybersecurity due to the risk of imminent destructive cyberattacks...
hacking
Mininode – A CLI Tool To Reduce The Attack Surface Of The Node.js Applications By Using Static Analysis
Mininode is a CLI tool to reduce the attack surface of the Node.js applications by using static analysis of source...
Finnish diplomats’ devices infected with Pegasus spyware
Finland Ministry for Foreign Affairs revealed that devices of Finnish diplomats have been infected with NSO Group’s Pegasus spyware. Finland’s...
Zerodium offers $400,000 for Microsoft Outlook RCE zero-day exploits
Zero-day exploit broker Zerodium announced it will pay $400,000 for zero-day RCE in Microsoft Outlook email client. The zero-day exploit...
Delta Electronics, a tech giants’ contractor, hit by Conti ransomware
Delta Electronics, a Taiwanese contractor for multiple tech giants such as Apple, Dell, HP and Tesla, was hit by Conti...
Combobulator – Framework To Detect And Prevent Dependency Confusion Leakage And Potential Attacks
Dependency Combobulator is an Open-Source, modular and extensible framework to detect and prevent dependency confusion leakage and potential attacks. This...
Experts devise a technique to bypass Microsoft Outlook Security feature
A researcher devised a technique to bypass a security feature of Microsoft Outlook and deliver a malicious link to the...
Puerto Rico was hit by a major cyberattack
Puerto Rico’s Senate announced that is was it by a cyberattack that shut down its internet provider, phone system and...
North Korea-linked Lazarus APT used Windows Update client and GitHub in recent attacks
North Korea-linked Lazarus APT group uses Windows Update client to deliver malware on Windows systems. North Korea-linked Lazarus APT started...
Gh-Dork – Github Dorking Tool
Supply a list of dorks and, optionally, one of the following: a user (-u) a file with a list of...
Popular apps left biometric data, IDs of millions of users in danger
Personal data belonging to millions of customers of large businesses have been exposed due to a flaw in Onfido IDV....
Microsoft mitigated a 3.47 Tbps DDoS attack, the largest one to date
Microsoft announced to have mitigated a record 3.47 Tbps distributed denial of service (DDoS) attack targeting an Azure customer. Microsoft announced that...
Lockbit ransomware gang claims to have hacked Ministry of Justice of France
A few hours ago Lockbit ransomware operators announced to have stolen data from Ministry of Justice of France. The Ministry...
A new highly evasive technique used to deliver the AsyncRAT Malware
Experts spotted a sophisticated malware campaign delivering the AsyncRAT trojan since September 2021. Researchers from Morphisec spotted a sophisticated phishing...
BloodyAD – An Active Directory Privilege Escalation Framework
BloodyAD is an Active Directory Privilege Escalation Framework, it can be used manually using bloodyAD.py or automatically by combining pathgen.py...
Experts analyze first LockBit ransomware for Linux and VMware ESXi
LockBit expands its operations by implementing a Linux version of LockBit ransomware that targets VMware ESXi servers. LockBit is the...
Apple fixed the first two zero-day vulnerabilities of 2022
Apple released security updates to fix two zero-day flaws, one of them actively exploited to hack iPhones and Macs. Apple...
German intelligence agency warns of China-linked APT27 targeting commercial organizations
The BfV German domestic intelligence services warn of ongoing attacks carried out by the China-linked APT27 cyberespionage group. The Bundesamt...
Ninjasworkout – Vulnerable NodeJS Web Application
Damn Vulnerable NodeJS Application Quick Start Download the Repo => run npm i Afer Installing all dependency just run the...
New DeadBolt ransomware targets QNAP NAS devices
New malware is targeting targets QNAP NAS devices, it is the DeadBolt ransomware and ask 50 BTC for master key...
VMware urges customers to patch VMware Horizon servers against Log4j attacks
VMware released security patches to address critical Log4j security vulnerabilities in VMware Horizon servers targeted in ongoing attacks. VMware urges...
PwnKit: Local Privilege Escalation bug affects major Linux distros
A flaw in Polkit’s pkexec component, tracked as CVE-2021-4034 (PwnKit) can be exploited to gain full root privileges on major...
Xolo – Tool To Crawl, Visualize And Interact With SQL Server Links In A D3 Graph
Author: ET Lownoise Version: 1.0 Tool to crawl, visualize and interact with SQL server links in a d3 graph to...
PrinterLogic fixes high severity flaws in Printer Management Suite
PrinterLogic has addressed nine vulnerabilities in Web Stack and Virtual Appliance, including three high severity flaws. PrinterLogic has released security...
