Security Researcher Discovers Serious Flaw in Chromium, Bags $15,000 Reward
A recently patched vulnerability in the Chromium project enabled malicious parties to inject code in embedded site pages, despite the...
OSINT
Spanish botnet attacked Russian companies
StormWall, the provider of services for protecting networks from DDoS attacks, said that Russian companies have been attacked by one...
TwiTi – Tool for extracting IOCs from tweet
TwiTi, a tool for extracting IOCs from tweets, can collect a large number of fresh, accurate IOCs. TwiTi does classifying...
WARCannon – High Speed/Low Cost CommonCrawl RegExp In Node.js
WARCannon was built to simplify and cheapify the process of 'grepping the internet'.With WARCannon, you can:Build and test regex patterns...
Conti Leak Indicators – What to block, in your SOC….
Security expert provided leak indicators for Conti ransomware operations that were recently disclosed by a disgruntled affiliate. An affiliate of...
VMware addresses critical flaws in its products
VMware has addressed a critical vulnerability that affects multiple products that could be exploited to gain access to confidential information....
BlackMatter ransomware also targets VMware ESXi servers
BlackMatter gang rapidly evolves, the group has developed a Linux version that allows operators to targets VMware’s ESXi VM platform....
Conti ransomware affiliate leaked gang’s training material and tools
An affiliate of the Conti RaaS has leaked the training material shared by the group with its network along with...
Cryptominer ELFs Using MSR to Boost Mining Process
The Uptycs Threat Research Team recently observed Golang-based worm dropping cryptominer binaries which use the MSR (Model Specific Register) driver. By UPTYCS THREAT...
Amazon will pay you $10 for your palm prints. Should you be worried?
Retail giant Amazon recently offered to pay $10 USD for your palm prints. Would you offer them your hand? Many...
What is Tor?
Tor, The Onion Router Tor (The Onion Router) is free software used to keep your online communications safe and secure...
Over 92% of Pharmaceutical Firms are Prone to Cyber Attacks, New Report Highlights
Reposify, the leading external attack surface management platform published its Pharmaceutical Industry Attack Surface Exposures Report analyzing the security status...
A Silicon Valley Venture Capital Firm Attacked by A Ransomware; Asked for Ransom
A Silicon Valley advanced technology venture capital organization was hit hard by a ransomware attack in July 2021. The firm...
New Robocall Bot on Telegram can Trick Targets Into Giving Up Their Password
Researchers at CyberNews have identified a new form of automated social engineering tool that can harvest one-time passwords (OTPs) from...
Lemon Duck Develops into a Botnet Trying Hands-On-Keyboard Attacks
Throughout the past two years, a fine crypto-mining malware outbreak has developed into a gigantic botnet system and is now...
Spam and phishing in Q2 2021
Quarterly highlights The corporate sector In Q2 2021, corporate accounts continued to be one of the most tempting targets for cybercriminals....
ChangeTower – Tool To Help You Watch Changes In Webpages And Get Notified Of Any Changes
ChangeTower is intended to help you watch changes in webpages and get notified of any changes written in Go This...
Elpscrk – An Intelligent Common User-Password Profiler Based On Permutations And Statistics
An Intelligent common user-password profiler that's named after the same tool in Mr.Robot series S01E01In simple words, elpscrk will ask...
Italian energy company ERG hit by LockBit 2.0 ransomware gang
ERG SPA, an Italian energy company, reports a minor impact on its operations after the recent ransomware attack conducted by LockBit 2.0...
Cisco fixes critical, high severity vulnerabilities in VPN routers
Cisco fixed critical, high severity pre-auth security vulnerabilities impacting multiple Small Business VPN routers. Cisco addressed critical and high severity...
Advanced Technology Ventures discloses ransomware attack and data breach
The American venture capital firm Advanced Technology Ventures (ATV) disclosed a ransomware attack, crooks also stole data of some private investors. Advanced...
US CISA and NSA publish guidance to secure Kubernetes deployments
US CISA and NSA released new guidance that provides recommendations on how to harden Kubernetes deployments and minimize the risk...
NSA issues advice for securing wireless devices
By releasing an information sheet that provides guidance on securing wireless devices while in public (pdf)—for National Security System, Department...
Chrome casts away the padlock—is it good riddance or farewell?
It’s been an interesting journey for security messaging where browsers are concerned. Back in the day, many of the websites...
