DDoS attacks in Q2 2021
News overview In terms of big news, Q2 2021 was relatively calm, but not completely eventless. For example, April saw the...
OSINT
CredPhish – A PowerShell Script Designed To Invoke Legitimate Credential Prompts And Exfiltrate Passwords Over DNS
CredPhish is a PowerShell script designed to invoke credential prompts and exfiltrate passwords. It relies on CredentialPicker to collect user...
LoGiC.NET – A More Advanced Free And Open .NET Obfuscator Using Dnlib
LoGiC.NET is a free and open-source .NET obfuscator that uses dnlib for folks that want to see how obfuscation works...
IBM Cost of a Data Breach study: average Cost of Data Breach exceeds $4.2M
The ‘Cost of a Data Breach’ report commissioned by IBM Security states that the cost of a data breach exceeded...
BlackMatter ransomware group claims to be Darkside and REvil succesor
BlackMatter ransomware gang, a new threat actor appears in the threat landscape and claims to combine TTPs of Darkside and...
Flaws in Zimbra could allow to takeover webmail server of a targeted organization
Researchers discovered flaws in Zimbra email collaboration software that could allow attackers to compromise email accounts by sending a malicious...
Kaseya Unitrends has unpatched vulnerabilities that could help attackers expand a breach
It must not be easy to work at Kaseya right now. While they are working as hard as they can...
The Clubhouse database “breach” is likely a non-breach. Here’s why.
Before the work week ended last week Friday, a security researcher found a leak of what is claimed to be...
Mobile County Officials Informs County Employees of Data Breach
The officials of Mobile County in southwest Alabama, have finally notified county employees of a computer system breach that compromised...
Q2 2021 Report by Digital Shadow, Abridged
Q2 2021 was among the most important ransomware periods, with several significant events taking place. Humans witnessed one of the...
WhatsApp CEO: US Allies’ National Security Officials Targeted with NSO Malware
According to WhatsApp CEO Will Cathcart, governments used NSO group malware to target high-ranking government officials all around the world. Cathcart...
3.8 Billion Phone Numbers of Clubhouse Users up for Sale on Dark Web
On a hacking forum, a threat actor has begun selling the confidential database of Clubhouse, which contains 3.8 billion phone...
Using MITRE D3FEND Framework (0.9.3-BETA-1)
The MITRE Corporation, one of the most respected organizations in the cybersecurity field, has released D3FEND, a complementary framework to...
TokenTactics – Azure JWT Token Manipulation Toolset
Azure JSON Web Token ("JWT") Manipulation Toolset Azure access tokens allow you to authenticate to certain endpoints as a user...
Reconmap – VAPT (Vulnerability Assessment And Penetration Testing) Automation And Reporting Platform
Reconmap is a vulnerability assessment and penetration testing (VAPT) platform. It helps software engineers and infosec pros collaborate on security...
South Africa’s logistics company Transnet SOC hit by a ransomware attack
Transnet SOC Ltd, a large South African rail, port and pipeline company, announced it was hit by a disruptive cyber attack. South Africa’s logistics company...
DIVD discloses three new unpatched Kaseya Unitrends zero-days
Experts found three new zero-day flaws in the Kaseya Unitrends service and warn users to avoid exposing the service to...
Hackers flooded the Babuk ransomware gang’s forum with gay porn images
The Babuk ransomware operators seem to have suffered a ransomware attack, threat actors flooded their forum gay orgy porn images....
Apple fixes CVE-2021-30807 flaw, the 13th zero-day this year
Apple released a security update that addresses CVE-2021-30807 flaw in macOS and iOS that may have been actively exploited to...
No More Ransom helped ransomware victims to save almost €1B
The No More Ransom initiative celebrates its fifth anniversary, over 6 million victims of ransomware attacks recover their files for...
OSX.XLoader hides little except its main purpose: What we learned in the installation process
Last week, Check Point Research described a new Mac variant of malware they call XLoader. It was identified as being...
A week in security (July 19 – July 25)
Last week on Malwarebytes Labs: Stopransomware(dot)gov, a one-stop hub for ransomware resourcesBeware, crypto-scammer seeks foreigner with BLOCK CHAIN ACCOUNTRemcos RAT...
IT expert: How To Avoid being Tracked by Photos
The director of the company IT-Reserve Pavel Myasoedov spoke about how to protect yourself from surveillance using photographs.Standards that allow...
Cloud-Delivered Malware Increased 68% in Q2, Netskope Reports
Cybersecurity firm Netskope published the fifth edition of its Cloud and Threat Report that covers the cloud data risks, menaces,...
