Lorenz ransomware gang stolen files from defense contractor Hensoldt
German multinational defense contractor Hensoldt confirmed to that some of its systems were infected by Lorenz ransomware. Hensoldt, a multinational...
hacking
Espoofer – An Email Spoofing Testing Tool That Aims To Bypass SPF/DKIM/DMARC And Forge DKIM Signatures
espoofer is an open-source testing tool to bypass SPF, DKIM, and DMARC authentication in email systems. It helps mail server...
Russian government claims to have dismantled REvil ransomware gang
Russia’s FSB announced to have dismantled the REvil ransomware gang, the infamous group behind Kaseya and JBS USA. The Russian...
North Korea-linked APT BlueNoroff focuses on crypto theft
The North Korea-linked APT group BlueNoroff has been spotted targeting cryptocurrency startups with fake MetaMask browser extensions. The North Korea-linked...
Ukrainian police arrested Ransomware gang behind attacks on 50 companies
Ukrainian police arrested members of a ransomware gang that targeted at least 50 companies in the U.S. and Europe. Ukrainian...
Raven – Advanced Cyber Threat Map (Simplified, Customizable, Responsive)
Raven - Advanced Features Uses D3.js (Not Anime.js) Active threat map (Live and replay) IP, country, city, and port info...
Threat actors can bypass malware detection due to Microsoft Defender weakness
A weakness in the Microsoft Defender antivirus can allow attackers to retrieve information to use to avoid detection. Threat actors...
Cisco fixes a critical flaw in Unified CCMP and Unified CCDM
Cisco fixed a critical privilege escalation vulnerability, tracked as CVE-2022-20658, in Unified CCMP and Unified CCDM. Cisco released security patches...
AlphaGolang – IDApython Scripts For Analyzing Golang Binaries
AlphaGolang is a collection of IDAPython scripts to help malware reverse engineers master Go binaries. The idea is to break...
Threat actors abuse public cloud services to spread multiple RATs
Threat actors are actively abusing cloud services from Amazon and Microsoft to deliver RATs such as Nanocore, Netwire, and AsyncRAT. Threat actors are...
Mozilla addresses High-Risk Firefox, Thunderbird vulnerabilities
Mozilla addressed18 security vulnerabilities affecting the popular Firefox web browser and the Thunderbird mail program. Mozilla released Firefox 96 that...
Scemu – X86 32bits Emulator, For Securely Emulating Shellcodes
x86 32bits emulator, for securely emulating shellcodes. Features rust safety, good for malware. All dependencies are in rust. zero...
USCYBERCOM: MuddyWater APT is linked to Iran’s MOIS intelligence
US Cyber Command (USCYBERCOM) has officially linked the Iran-linked MuddyWater APT group to Iran’s Ministry of Intelligence and Security (MOIS)....
SysJoker, a previously undetected cross-platform backdoor made the headlines
Security researchers found a new cross-platform backdoor, dubbed SysJoker, the is suspected to be the work of an APT group. Security...
KCodes NetUSB flaw impacts millions of SOHO routers
Cybersecurity experts discovered a flaw in the KCodes NetUSB component that impacts millions of end-user routers from different vendors Cybersecurity...
Wifi-Framework – Wi-Fi Framework For Creating Proof-Of-Concepts, Automated Experiments, Test Suites, Fuzzers, And More…
We present a framework to more easily perform Wi-Fi experiments. It can be used to create fuzzers, implement new attacks,...
Russia-linked threat actors targets critical infrastructure, US authorities warn
US authorities warn critical infrastructure operators of the threat of cyberattacks orchestrated by Russia-linked threat actors. US Cybersecurity and Infrastructure...
New RedLine malware version distributed as fake Omicron stat counter
Experts warn of a new variant of the RedLine malware that is distributed via emails as fake COVID-19 Omicron stat...
Iran-linked APT35 group exploits Log4Shell flaw to deploy a new PowerShell backdoor
Iran-linked APT35 group has been observed leveraging the Log4Shell flaw to drop a new PowerShell backdoor. Iran-linked APT35 cyberespionege group (aka...
RAUDI – A Repo To Automatically Generate And Keep Updated A Series Of Docker Images Through GitHub Actions
RAUDI (Regularly and Automatically Updated Docker Images) automatically generates and keep updated a series of Docker Images through GitHub Actions...
Adobe fixes 4 critical Reader bugs that were demonstrated at Tianfu Cup
Adobe released security updates to address multiple vulnerabilities affecting several products, including Acrobat and Reader. Adobe patches for January address...
Microsoft Patch Tuesday fixes critical Office RCE
Microsoft Patch Tuesday security updates fix a critical Office flaw that can allow remote attackers to execute malicious code on...
SpoofThatMail – Bash Script To Check If A Domain Or List Of Domains Can Be Spoofed Based In DMARC Records
Bash script to check if a domain or list of domains can be spoofed based in DMARC records File with...
Night Sky ransomware operators exploit Log4Shell to target hack VMware Horizon servers
Another gang, Night Sky ransomware operation, started exploiting the Log4Shell vulnerability in the Log4j library to gain access to VMware...
