COVID-19 vaccine appointment system attacked in Italy
In another cyberattack on a healthcare system, threat-actors have tried to throw a wrench into the ongoing COVID-19 vaccine roll-out...
OSINT
Widespread Cyber Espionage Attacks Use New Chinese Spyware
According to new research, a threat actor believed to be of Chinese origin was linked to a series of ten...
Bot Protection Available in Azure Web App Firewall
Microsoft recently announced that WAF (Web Application Firewall) bot safety tool has attained general availability status on Azure Application Gateway...
The FBI and SEC Provided Guidance Against Imposter Scams
The FBI and SEC have come with new guidance for investors to fight against financial scams. Users are being suggested...
Microsoft Warns Office 365 Users of ‘Sneaky’ Phishing Campaign
Microsoft's Security Intelligence staff has issued an alert to Office 365 users and administrators to watch out for a sneaky...
Despite Data Leak and Glitches, Foreigners able to Register on Vaccine Site
Thailand's new vaccination appointment registration website, expatvac.consular.go.th, has received mixed reviews since its launch. Many people reported that they had a...
Uchihash – A Small Utility To Deal With Malware Embedded Hashes
Uchihash is a small utility that can save malware analysts the time of dealing with embedded hash values used for...
SharpLAPS – Retrieve LAPS Password From LDAP
The attribute ms-mcs-AdmPwd stores the clear-text LAPS password. This executable is made to be executed within Cobalt Strike session using...
China-linked APT31 targets Russia for the first time
China-linked APT31 group employed a new strain of malware in attacks aimed at entities in Mongolia, Belarus, Canada, the US,...
INFRA:HALT flaws impact OT devices from hundreds of vendors
INFRA:HALT is a set of vulnerabilities affecting a popular TCP/IP library commonly OT devices manufactured by more than 200 vendors....
Cyber Defense Magazine – August 2021 has arrived. Enjoy it!
Cyber Defense Magazine August 2021 Edition has arrived. We hope you enjoy this month’s edition…packed with over 148 pages of...
China-linked APT groups target telecom companies in Southeast Asia
China linked APT groups have targeted networks of at least five major telecommunications companies operating in Southeast Asia since 2017....
Zoom and gloom? Video comms org agrees to settle for $85m
Zoom has agreed to an $85m settlement regarding privacy, zoom-bombing, and data sharing. The class action privacy lawsuit filed in...
The 3 biggest threats reaching for your antivirus software’s off switch
Having antivirus (AV) software on your computer is a staple. Modern antivirus offers layered protection—a cybersecurity approach that uses multiple...
RDP brute force attacks explained
While you read these words, the chances are that somebody, somewhere, is trying to break in to your computer by...
APT31 hackers attacked Russian companies for the first time
The representatives of the company Positive Technologies reported that the hacker group APT31, known for its attacks on state structures...
McAfee: Hacking Team Babuk Has Flaws In It’s Business Models
Recently, ransomware hacking groups have been mostly focusing on Microsoft Windows OS. McAfee researched dedicated Linux and Unix based ransomware,...
Google: Android Apps Must Provide Privacy Information By April 2022
Some days back Google has announced that the company is about to launch its Google Play ‘Safety Section’ feature that...
Severe Vulnerabilities Discovered in IP Camera Firmware Used by Multiple Vendors
Security researchers at RandoriSec have identified numerous critical and high-severity flaws in IP camera firmware made by UDP Technology, a...
Chipotle’s Email Marketing Account Compromised to Spread Malware
In mid-July, a new phishing attack was detected that used a compromised mailing service account. In the four days between...
Doldrums – A Flutter/Dart Reverse Engineering Tool
To flutter: to move in quick, irregular motions, to beat rapidly, to be agitated.Doldrums: a period of stagnation. Doldrums is...
Rz-Ghidra – Deep Ghidra Decompiler And Sleigh Disassembler Integration For Rizin
This is an integration of the Ghidra decompiler and Sleigh Disassembler for rizin. It is solely based on the decompiler...
Cisco fixed Remote Code Execution issue in Firepower Device Manager On-Box software
Cisco addressed a vulnerability in the Firepower Device Manager (FDM) On-Box software that allows attackers to execute arbitrary code on...
Experts found potential remote code execution in PyPI
A flaw in the GitHub Actions workflow for PyPI ’s source repository could be exploited to potentially execute arbitrary code...
