PS2EXE – Module To Compile Powershell Scripts To Executables
Overworking of the great script of Ingo Karstein with GUI support. The GUI output and input is activated with one...
OSINT
Europol arrested 106 fraudsters, members of a major crime ring
Europol, along with Italian and Spanish police, dismantled a major crime organization linked to the Italian Mafia that focuses on...
Pakistani man sentenced to 12 years of prison for his role in AT&T hacking scheme
A Pakistani national has been sentenced to 12 years of prison in the US for his role in a hacking...
Numando, a new banking Trojan that abuses YouTube for remote configuration
Numando, a new banking Trojan that abuses YouTube, Pastebin, and other public platforms as C2 infrastructure and to spread. ESET...
Epik – 15,003,961 breached accounts
In September 2021, the domain registrar and web host Epik suffered a significant data breach, allegedly in retaliation for hosting...
City of Yonkers Refuses to Pay Ransom After Attackers Demand $10 million
The City of Yonkers has refused to pay the ransom after ransomware attackers demanded a ransom of $10 million to...
German Election Authority Confirms Probable Cyber Attack
Suspected hackers momentarily impacted the website of the authority managing Germany's September 26 federal election, a spokesperson for the agency...
Hackers Impersonate Bank Customers and Make $500k in Fraudulent Credit Card Payments
Hackers from other countries were able to impersonate 75 bank clients and made $500,000 in fraudulent credit card payments. This...
New Malware Variant Employs Windows Subsystem for Linux for Attacks
Security experts have found a new malware variant that uses Windows Subsystem for Linux to infect systems covertly. The research...
InlineExecute-Assembly – A PoC Beacon Object File (BOF) That Allows Security Professionals To Perform In Process .NET Assembly Execution
InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assembly...
QLOG – Windows Security Logging
QLOG provides enriched Event Logging for security related events on Windows based systems. It is under heavy development and currently...
Why Edward Snowden is urging users to stop using ExpressVPN?
The popular whistleblower Edward Snowden recommends customers of ExpressVPN VPN service to stop using it. Last week the Israeli cybersecurity...
Security Affairs newsletter Round 332
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free...
The Biden administration plans to target exchanges supporting ransomware operations with sanctions
US Government is expected to issue sanctions against crypto exchanges, wallets, and traders used by ransomware operations to cash out...
Threat actor has been targeting the aviation industry since at least 2018
Security researchers from the Cisco Talos team uncovered a spear-phishing campaign targeting the aviation industry for two years avoiding detection....
Hackers attack Russian organizations through a new Microsoft Office vulnerability
Information security specialists from Kaspersky Lab reported that hackers are trying to attack Russian companies through a new vulnerability in...
Republican Governors Association Targeted in Microsoft Exchange Server Attacks
The Republican Governors Association was one of many U.S. organizations attacked in March when a nation-state group exploited vulnerabilities in...
Scammers Use ‘IT Support-Themed Email’ to Target Organizations
Cybersecurity researchers at Cofense Phishing Defense Center (PDC) have unearthed a new phishing campaign that uses 'information technology (IT) support-themed...
South Africa’s Department of Justice hit by a Ransomware Attack
South Africa's Justice Department was attacked earlier this month by a major ransomware attack and has been struggling since then...
A Look at the Triple Extortion Ransomware
Ransomware has traditionally concentrated on encryption, but one of the most common recent additions is the exfiltration and threatening disclosure...
BatchQL – GraphQL Security Auditing Script With A Focus On Performing Batch GraphQL Queries And Mutations
BatchQL is a GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations. This script is...
Concealed Position – Bring Your Own Print Driver Privilege Escalation Tool
Concealed Position is a local privilege escalation attack against Windows using the concept of "Bring Your Own Vulnerability". Specifically, Concealed...
Expert discloses details and PoC code for Netgear Seventh Inferno bug
A new critical vulnerability in Netgear smart switches can be exploited by an attacker to potentially execute malicious code and...
CVE-2021-26333 AMD Chipset Driver flaw allows obtaining sensitive data
Chipmaker AMD has addressed a vulnerability in PSP driver, tracked as CVE-2021-26333, that could allow an attacker to obtain sensitive...
