Fewer False Alarms, Faster Reporting: InsightVM Introduces New One-Click Fix For False Positives
Let’s talk about false positives. They’re frustrating and faulty, but also about as certain as death and taxes for anyone...
OSINT
Introducing Enhanced Endpoint Telemetry (EET) in InsightIDR
Rapid7 detection and response customers have access to, and insights from, our experts and research driving the industry forward. This...
FIFA 21 game scams: watch out for unsporting conduct
Despite COVID-19, soccer season is slowly ebbing its way back into daily life around the world. It’s also sneaking back...
Silent Librarian APT right on schedule for 20/21 academic year
A threat actor known as Silent Librarian/TA407/COBALT DICKENS has been actively targeting universities via spear phishing campaigns since schools and...
Mikrot8Over – Fast Exploitation Tool For Mikrotik RouterOS
mikrot8over: Fast exploitation tool for Mikrotik RouterOS up to 6.38.4 This is reworked original Mikrotik Exploit. Added Python 2 compatibility...
MEDUZA – A More Or Less Universal SSL Unpinning Tool For iOS
"MEDUZA" ("медуза") means "jellyfish" in Ukrainian What is MEDUZA?It's a Frida-based tool, my replacement for SSLKillSwitch. I created it for...
Heartland Dental’s Ambitions Land Them in the Cloud
Managing security for the largest Dental Support Organization (DSO) in the United States is no easy task. And sometimes, you...
There Goes The Neighborhood: Dealing # With CVE-2020-16898 (a.k.a. “Bad Neighbor”)
by Bob Rudis If you’re in the U.S. and were waiting for an “October surprise”, look no further than CVE-2020-16898...
Money stolen from bank accounts of Russians twice as much as last year
In Russia, for the period from January to August 2020, more than 100 thousand thefts of funds from a Bank...
Common Phishing Email Malware Attachments That You Need To Avoid
One of the most popular ways of distributing malware is via malicious email attachments poised as invoices, payment recipes, error...
PoetRAT Targeting Public and Private Sector in Azerbaijan
APT groups have been targeting the public sector and other major organizations in Azerbaijan via recent versions of PoetRAT. Notably,...
A Government-Backed Advert for Career Opportunities in Cyber Security Taken Down Mere Hours After Release
A campaign originally meant to draw in more individuals to career opportunities in cybersecurity has gone under hefty analysis and...
Apple denied Durov’s statement about the request to block Telegram channels about Belarus
The founder of Telegram, Pavel Durov, accused Apple of trying to "avoid responsibility for complying with its own rules" by...
Nuubi Tools – Information Ghatering, Scanner And Recon
Nuubi Tools: Information-ghatering|Scanner|Recon Options: -h/--help | Show help message and exitArguments: -b/--banner | Banner grabing of target ip address -s/--subnet...
DamnVulnerableCryptoApp – An App With Really Insecure Crypto
Why?If you try to learn a little bit more about crypto, either because you want to know how the attacks...
Patch Tuesday – October 2020
Microsoft brings us an October's Update Tuesday with 87 vulnerabilities, a sub-100 number we haven't experienced in quite some time....
2021 Detection and Response Planning, Part 2: Driving SOC Efficiency With a Detections-First Approach to SIEM
This is the second installment of our series around 2021 security planning. In part one, Rapid7 Detection and Response Practice...
Amazon Prime Day—8 tips for safer shopping
Avid Amazon Prime Day shoppers may have been worried they’d missed it this year—thanks coronavirus. Fear not, last month Amazon...
Lock and Code S1Ep17: Journalism’s role in cybersecurity with Alfred Ng and Seth Rosenblatt
Most everything about cybersecurity—the threats, the vulnerabilities, the breaches and the blunders—doesn’t happen in a vacuum. And the public doesn’t...
O365Enum – Enumerate Valid Usernames From Office 365 Using ActiveSync, Autodiscover V1, Or Office.Com Login Page
Enumerate valid usernames from Office 365 using ActiveSync, Autodiscover, or office.com login page.Usageo365enum will read usernames from the file provided...
Wave-Share – Serverless, Peer-To-Peer, Local File Sharing Through Sound
A proof-of-concept for WebRTC signaling using sound. Works with all devices that have microphone + speakers. Runs in the browser....
What’s New in InsightIDR: Q3 2020 in Review
In July, we provided a rundown of what was new in InsightIDR, our cloud-based SIEM tool, from the first half...
SEC Consult SA-20201012-0 :: Reflected Cross-Site Scripting and Unauthenticated Malicious File Upload in Sage DPW
Posted by SEC Consult Vulnerability Lab on Oct 12SEC Consult Vulnerability Lab Security Advisory < 20201012-0 > ======================================================================= title: Reflected...
The Covid-19 Pandemic Forces Businesses To Prioritise Investment In Cybersecurity Despite The Overall IT Budget Cuts
As per a Kaspersky report on ‘Investment adjustment: aligning IT budgets with changing security priorities’ organizations and businesses have...
