DarkSide ransomware operators move 6.8M worth of Bitcoin after REvil shutdown
Darkside and BlackMatter ransomware operators have moved a large amount of their Bitcoin reserves after the recent shutdown of REvil’s...
OSINT
Ransomware: Why do backups fail when you need them most?
It’s widely known, and endlessly repeated, that the last, best line of defence against the potentially devastating effects of a...
We dig into the Game Players Code
Gaming security is getting a lot of attention at the moment. Rightly so; it’s a huge target for scammers and...
A bug is about to confuse a lot of computers by turning back time 20 years
For those of you that remember the fuss about the Y2K bug, this story may sound familiar. The Cybersecurity &...
PortBender – TCP Port Redirection Utility
PortBender is a TCP port redirection utility that allows a red team operator to redirect inbound traffic destined for one...
FIN7 cybercrime gang creates fake cybersecurity firm to recruit pentesters for ransomware attacks
FIN7 hacking group created fake cybersecurity companies to hire experts and involve them in ransomware attacks tricking them of conducting...
FiveSys, a new digitally-signed rootkit spotted by Bitdefender experts
Bitdefender researchers discovered a new Rootkit named FiveSys that abuses Microsoft-Issued Digital Signature signature to evade detection. FiveSys is a...
Evil Corp rebrands their ransomware, this time is the Macaw Locker
Evil Corp cybercrime gang is using a new ransomware called Macaw Locker to evade US sanctions that prevent victims from...
A flaw in WinRAR could lead to remote code execution
A vulnerability in the WinRAR is a trialware file archiver utility for Windows could be exploited by a remote attacker...
PEASS-ng – Privilege Escalation Awesome Scripts SUITE new generation
Basic TutorialHere you will find privilege escalation tools for Windows and Linux/Unix* and MacOS.These tools search for possible local privilege...
Administrators of bulletproof hosting sentenced to prison in the US
The United States Department of Justice sentenced two individuals that were providing bulletproof hosting to various malware operations. The United...
Update now! Chrome fixes more security issues
For the third time in a month Google has issued an update to patch for several security issues. This time...
Chrome targeted by Magnitude exploit kit
Exploit kits (EK) are not as widespread as they used to be. One of the reasons is likely that most...
NTFSTool – Forensics Tool For NTFS (Parser, MTF, Bitlocker, Deleted Files)
NTFSTool is a forensic tool focused on NTFS volumes. It supports reading partition info (mbr, partition table, vbr) but also...
US Bureau of Industry and Security bans export of hacking tools to authoritarian regimes
The Commerce Department’s Bureau of Industry and Security (BIS) would ban U.S. firms from selling hacking tools to authoritarian regimes....
Top 5 Attack Vectors to Look Out For in 2022
Threat actors are continually looking for better ways to target organizations, here are the top five attack vectors to look...
Russian-speaking cybercrime evolution: What changed from 2016 to 2021
Experts at Kaspersky have been investigating various computer incidents on a daily basis for over a decade. Having been in...
YouTube creators’ accounts hijacked with cookie-stealing malware
A Cookie Theft malware was employed in phishing attacks against YouTube creators, Google’s Threat Analysis Group (TAG) warns. Financially motivated...
PurpleFox botnet variant uses WebSockets for more secure C2 communication
Researchers warn of a new evolution of the PurpleFox botnet, operators included exploits and leverage WebSockets for C2 communication. Researchers...
Metabadger – Prevent SSRF Attacks On AWS EC2 Via Automated Upgrades To The More Secure Instance Metadata Service V2 (IMDSv2)
Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).MetabadgerPurpose and functionalityDiagnose...
High school student rickrolls entire school district, and gets praised
A student at a high school in Cook County successfully hacked into the Internet-of-Things (IoT) devices of one of the...
How to delete your Snapchat account
Snapchat is an instant messaging app popular with youngsters that allows users to send pictures and videos that are only...
Acer suffers a second data breach in a week
Tech giant Acer was hacked again in a few days, after the compromise of the servers in India, threat actors...
China-linked LightBasin group accessed calling records from telcos worldwide
China-linked cyberespionage group LightBasin hacked mobile telephone networks around the world and used specialized tools to access calling records. A...
