Cobalt Stike Beacon Detected – 47[.]95[.]207[.]79:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
OSINT
Cobalt Stike Beacon Detected – 185[.]198[.]57[.]155:7443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Robinhood data breach exposes 7 Million users’ information
Robinhood disclosed a security breach, an unidentified threat actor gained unauthorized access to approximately 7 million customer records. Robinhood Markets,...
Microsoft Patch Tuesday security updates for November 2021 fix 2 Zero-Days actively exploited
Microsoft Patch Tuesday security updates for November 2021 address 55 vulnerabilities in multiple products and warn of two actively exploited...
Private Set Membership (PSM) – Cryptographic Protocol That Allows Clients To Privately Query
Private Set Membership (PSM) is a cryptographic protocol that allows clients to privately query whether the client's identifier is a...
Smart TV adverts put a wrinkle in your programming
Smart TVs are back in the news due to the potential pitfalls of embedded advertising. It may come as a...
Clop gang exploiting CVE-2021-35211 RCE in SolarWinds Serv-U in recent attack
The Clop ransomware gang is exploiting CVE-2021-35211 vulnerability in SolarWinds Serv-U to compromise corporate networks. Threat actors always look for...
How to remove adware on an Android phone
It shouldn’t be surprising that Android devices are the targets of threats like adware and other Potentially Unwanted Programs (PUPs)....
Internationa law enforcement arrested REvil ransomware affiliates in Romania and Kuwait
Romanian police arrested two alleged Sodinokibi/REvil ransomware affiliates accused to have orchestrated attacks against thousands of victims. Romanian law enforcement...
ActMobile (unverified) – 1,583,193 breached accounts
In October 2021, security researcher Bob Diachenko discovered an exposed database he attributed to ActMobile, the operators of Dash VPN...
Ddosify – High-performance Load Testing Tool
FeaturesProtocol Agnostic - Currently supporting HTTP, HTTPS, HTTP/2. Other Note: If the request count is too low for the...
US DoS offers a reward of up to $10M for leaders of REvil ransomware gang
The U.S. government offers up to $10 million for identifying or locating leaders in the REvil/Sodinokibi ransomware operation The Department...
Ukrainian REvil affiliate charged with Ransomware Attack on Kaseya
The US DoJ has charged a REvil ransomware affiliate that is suspected to have orchestrated the attack on Kaseya MSP...
DDoS attacks in Q3 2021
News overview Q3 2021 brought two new DDoS attack vectors, potentially posing a serious threat, including for major web resources....
Multiple video games break after domain name snafu
We’ve seen quite a few complaints from gamers this past weekend, unable to load up and play games on the...
Ransomware attack disrupted store operations in the Netherlands and Germany
Electronics retail giant MediaMarkt was hit by a ransomware attack that disrupted store operations in the Netherlands and Germany. Electronics retail...
Koppeling – Adaptive DLL Hijacking / Dynamic Export Forwarding
This project is a demonstration of advanced DLL hijack techniques. It was released in conjunction with the "Adaptive DLL Hijacking"...
Why we fail at getting the cybersecurity basics right, with Jess Dodson: Lock and Code S02E21
The cybersecurity basics should be just that—basic. Easy to do, agreed-upon, and adopted at a near 100 percent rate by...
Healthcare – Patient or Perpetrator? – The Cybercriminals Within
The healthcare industry might be known for the work it does to treat patients. But it is also a prime...
Operation Cyclone targets Clop Ransomware affiliates
Operation Cyclone – Six alleged affiliates with the Clop ransomware operation were arrested in an international joint law enforcement operation...
Kunyu – More Efficient Corporate Asset Collection
Kunyu, More Efficient Corporate Asset Collection 0x00 IntroduceTool introductionKunyu (kunyu), whose name is taken from , is actually a professional...
A week in security (Nov 1 – Nov 7)
Last week on Malwarebytes Labs Celebrity jewelry house Graff falls victim to ransomwareLessons from a real-life ransomware attackIs Apple’s Safari...
Nation-state actors target critical sectors by exploiting the CVE-2021-40539 flaw
Experts warn of an ongoing hacking campaign that already compromised at least nine organizations worldwide from critical sectors by exploiting...
Hungarian official confirms Hungary used NSO Group Pegasus spyware
A Hungarian government official confirmed that his government has bought and used the controversial NSO Group’s Pegasus spyware. Lajos Kosa,...
