SonicWall addresses critical CVE-2021-20026 flaw in NSM devices
Positive Technologies experts provide details about potential impact of a recently fixes command injection flaw in SonicWall NSM devices. Positive...
OSINT
Kaseya CEO: “The impact of this incredibly sophisticated attack is very minimal”
The official YouTube channel of Kaseya, the latest organization attacked by no less than the criminals behind REvil ransomware, released...
Racing against a real-life ransomware attack, with Ski Kacoroski: Lock and Code S02E12
At 11:37 pm on the night of September 20, 2019, cybercriminals launched a ransomware attack against Northshore School District in...
This iPhone Bug Exists Even After Network Settings Reset
Two weeks after the iphone wifi bug was found, the same cybersecurity analyst Carl Schou discovered a similar different case....
DDoS Attack on Filipino Media Outlets Linked to Philippine Government and Army
Sweden-based digital rights nonprofit Qurium Media has reported a targeted campaign of distributed denial-of-service (DDoS) attacks on Filipino media outlets...
Water Agency WSSC Hit by Ransomware Attack
On May 24th, WSSC Water witnessed a ransomware attack that incapacitated a portion of its network. WSSC Water has been...
Experts Said How Cybercriminals Make Money on Russian Gamers
One of the most popular fraud schemes involves buying or selling an account in online games. An attacker can offer...
Microsoft Alerts of Critical PowerShell 7 Code Execution Vulnerability
Microsoft is alerting customers to upgrade their installations of PowerShell 7 as soon as possible to protect themselves against a.NET...
Sharperner – Simple Executable Generator With Encrypted Shellcode
Sharperner is a tool written in CSharp that generate .NET dropper with AES and XOR obfuscated shellcode. Generated executable can...
TiEtwAgent – PoC Memory Injection Detection Agent Based On ETW, For Offensive And Defensive Research Purposes
This project was created to research, build and test different memory injection detection use cases and bypass techniques. The agent...
Approximatively 1,500 businesses impacted by the ransomware attack that hit Kaseya
Kaseya confirmed that the REvil supply-chain ransomware attack hit fewer than 60 of its customers and their customers. Software provider Kaseya...
Operation Lyrebird: Group-IB assists INTERPOL in identifying suspect behind numerous cybercrimes worldwide
Group-IB supported INTERPOL in its Operation Lyrebird that allowed to identify a threat actor presumably responsible for multiple attacks. Group-IB, one of the leading...
QNAP addressed a critical flaw that allows compromising NAS devices
Taiwanese vendor QNAP addressed a critical flaw, tracked as CVE-2021-28809, that could be exploited to compromise vulnerable NAS devices. Taiwanese vendor...
ENISA publishes Cybersecurity guide for SMEs
ENISA publishes Cybersecurity guide for SMEs, a document that aims at providing suggestions to secure their business During the COVID-19...
CISA, FBI share guidance for MSPs and their customers impacted in Kaseya attack
CISA and the FBI published guidance for the victims impacted by the REvil supply-chain ransomware attack against Kaseya. CISA and the...
A week in security (June 28 – June 4)
Last week on Malwarebytes Labs: Is it Game Over for VR Advergaming?Lil’ skimmer, the Magecart impersonatorWhat is the WireGuard VPN...
Industrial Facilities are at Risk of Data Theft and Ransomware Attacks
Recently, multinational cybersecurity software company ‘Trend Micro’ has published a new report on cybersecurity in which it has highlighted the...
PrintNightmare Threat Continues, Microsoft Confirms Exploit Present in All Variants
Microsoft has marked CVE-2021-34527 remote code execution vulnerability (print Spooler) called "Print Nightmare." EHN previously reported that the latest bug...
Newly discovered Mirai Botnet is Exploiting DVR in DDoS Attack
On Thursday, cybersecurity experts disclosed details regarding a newly discovered Mirai-inspired botnet called "mirai_ptea". It exploits an undisclosed flaw in...
Researchers Detail the New Two-Step Cryptography Technique
The accessibility of computer system resources on-demand, in particular data storage and computational power, without direct active user management is...
NSA and FBI Blame Russia for Massive ‘Brute Force’ Attacks on Microsoft 365
American intelligence and law enforcement agencies have accused a Kremlin-backed hacking group for a two-year campaign to breach into Microsoft...
REvil ransomware attack against MSPs and its clients around the world
An attack perpetrated by REvil aka Sodinokibi ransomware gang against Managed Service Providers (MSPs) and their clients was discovered on...
Salus – Security Scanner Coordinator
Salus (Security Automation as a Lightweight Universal Scanner), named after the Roman goddess of protection, is a tool for coordinating...
Backstab – A Tool To Kill Antimalware Protected Processes
Have these local admin credentials but the EDR is standing in the way? Unhooking or direct syscalls are not working...
