GSS, one of the major European call center providers, suffered a ransomware attack
The customer care and call center provider GSS has suffered a ransomware attack that crippled its systems and impacted its...
OSINT
Ajarn – 266,399 breached accounts
In September 2021, the Thai-based English language teaching website Ajarn discovered they'd been the victim of a data breach dating...
Malware Creators Use Malformed Certificates To Trick Windows Validation
Google researchers have identified malware developers generating malformed code signatures that appear to be valid in Windows to bypass security...
African Bank Alerts of Data Breach With Personal Details Compromised
South African retail bank African Bank has confirmed that one of its debt recovery partners, Debt-IN, was targeted by a...
Port of Houston Attacked Employing Zoho Zero-Day Vulnerability
CISA officers on 23rd of September reported about a potential government-backed hacker organization that has tried to break the Port...
3.8 Billion Clubhouse and Facebook User Records are Being Sold Online
According to CyberNews, a database holding the records of about 3.8 billion Clubhouse and Facebook users is being auctioned at...
QueenSono – Golang Binary For Data Exfiltration With ICMP Protocol
QueenSono tool only relies on the fact that ICMP protocol isn't monitored. It is quite common. It could also been...
PoW-Shield – Project Dedicated To Fight DDoS And Spam With Proof Of Work, Featuring An Additional WA
Project dedicated to provide DDoS protection with proof-of-workDescriptionPoW Shield provides DDoS protection on OSI application layer by acting as a...
Threat actors are attempting to exploit VMware vCenter CVE-2021-22005 flaw
Immediately after the public release of the exploit code for the VMware vCenter CVE-2021-22005 flaw threat actors started using it....
Google addressed the eleventh Chrome zero-day flaw this year
Google released a Chrome emergency update for Windows, Mac, and Linux that addresses a high-severity zero-day flaw exploited in the wild....
European Union formally blames Russia for the GhostWriter operation
European Union representatives formally accused Russia of attempting to target the elections and political systems of several EU states. European...
CVE-2021-20034 flaw can allow SMA 100 device takeover, patch it now!
SonicWall fixed a critical security flaw, tracked as CVE-2021-20034, that impacts some Secure Mobile Access (SMA) 100 series products that...
Beware! Uber scam lures victims with alert from a real Uber number
This morning Malwarebytes Labs received a scam masquerading as a security alert from Uber. The alert was pretty convincing and...
SonicWall warns users to patch critical vulnerability “as soon as possible”
SonicWall has issued a security notice about its SMA 100 series of appliances. The vulnerability could potentially allow a remote...
Parents and teachers believe digital surveillance of kids outweighs risks
Schools in the US have been using surveillance software to keep an eye on their students, and such software has...
Employees in Retail Industry Most Frequently Targeted by Malicious Emails, New Study Reveals
A new study from security firm Tessian highlights the sophisticated techniques employed by threat actors to evade detection and trick...
Remotely Exploitable Zero-Day Vulnerability In MacOS Allows Code Execution
A zero-day security flaw in the macOS Finder system in Apple might enable remote attackers to deceive users to perform...
Marcus & Millichap Hit With Potential BlackMatter Ransomware
Marcus & Millichap, a publicly-traded real estate investment corporation became the victim of a recent cyberattack that may have been...
Bi. Zone: most of the leaks and hacks in Russian companies are related to old forgotten software
About 60% of information leaks and 85% of hacks in corporate computer networks are related to unaccounted-for digital assets.According to...
Haklistgen – Turns Any Junk Text Into A Usable Wordlist For Brute-Forcing
Turns any junk text into a usable wordlist for brute-forcing.Installationgo install github.com/hakluke/haklistgen@latest Usage ExamplesScrape all words out of an HTTP...
Reconky – A Great Content Discovery Bash Script For Bug Bounty Hunters Which Automate Lot Of Task And Organized It
Reconky is a script written in bash to automate the task of recon and information gathering.This Bash Script allows you...
Researcher released PoC exploit code for 3 iOS zero-day issues
Researcher release PoC exploit code for three iOS zero-day flaws after Apple delayed addressing them and did not credit him....
Cisco addresses 3 critical vulnerabilities in IOS XE Software
Cisco fixed three critical flaws impacting IOS XE operating system powering some of its devices, such as routers and wireless...
3.8 billion Clubhouse and Facebook user records allegedly scraped and merged, put for sale online
A user on a popular hacker forum is selling a database that purportedly contains 3.8 billion Clubhouse and Facebook user...
