What’s New in InsightVM: H1 2020 in Review
Throughout the first half of the year, we released updates and features to help security teams work more effectively and...
OSINT
The Russians were offered $10 million from the State Department for information about Russian hackers
Residents of Russia began to receive SMS about a way to get $10 million from the US State Department. In...
Online Exam Tool ProctorU Breached, Half A Million User Accounts Leaked Online
Around half a million online users were affected due to the breach of online examination software called "ProctorU," a platform...
IRFuzz – Simple Scanner with Yara Rule
IRFuzz is a simple scanner with yara rules for document archives or any files.Install1. PrerequisitesLinux or OS XYara: just use...
Evine – Interactive CLI Web Crawler
Evine is a simple, fast, and interactive web crawler and web scraper written in Golang. Evine is useful for a...
SharpAppLocker – C# Port Of The Get-AppLockerPolicy PS Cmdlet
C# port of the Get-AppLockerPolicy PS cmdlet _____ _ ___ _ _/ ___| | / _ | | | |...
PhishingKitTracker – Let’s Track Phishing Kits To Give To Research Community Raw Material To Stud
An extensible and freshly updated collection of phishingkits for forensics and future analysis topped with simple statsDisclaimerThis repository holds a...
Water Nue Phishing Campaign Targets C-Suite’s Office 365 Accounts
By Marshall Chen, Loseway Lu, Yorkbing Yap, and Fyodor Yarochkin (Trend Micro Research) A series of ongoing business email compromise...
A resurgence in DDoS Attacks amidst Global COVID-19 lockdowns
Findings of Link11's Security Operations Center (LSOC) uncovered a 97% increase in the number of attacks for the months of...
Spam and phishing in Q2 2020
Quarterly highlights Targeted attacks The second quarter often saw phishers resort to targeted attacks, especially against fairly small companies. To...
FestIn – S3 Bucket Weakness Discovery
FestIn is a tool for discovering open S3 Buckets starting from a domains.It perform a lot of test and collects...
Chalumeau – Automated, Extendable And Customizable Credential Dumping Tool
Chalumeau is automated,extendable and customizable credential dumping tool based on powershell and python.Main FeaturesWrite your own PayloadsIn-Memory executionExtract Password ListDashboard...
Virtual Black Hat: Rapid7 Experts Share Key Takeaways from Day 2 Sessions
This blog post is part 2 of a two-part blog series recapping Rapid7’s Black Hat debriefs as part of Virtual...
A hack that fools Face Recognition AI into false identification
Face recognition AI is increasingly being used at Airports and at other security outlets, especially during a pandemic to heed...
Russian experts warned about the dangers of watching movies on pirate sites
It is noted that hackers use streaming platforms, TV series and movies to distribute advertising and malware. They can add...
Number of fake delivery services increased in Russia
Alexander Vurasko, a leading Infosecurity analyst at Softline Company, said that during the pandemic, scammers learned how to qualitatively fake...
Inter skimming kit used in homoglyph attacks
As we continue to track web threats and credit card skimming in particular, we often rediscover techniques we’ve encountered elsewhere...
ProctorU – 444,453 breached accounts
In June 2020, the online exam service ProctorU suffered a data breach which was subsequently shared extensively across online...
Incident Response Analyst Report 2019
Download full report (PDF) As an incident response service provider, Kaspersky delivers a global service that results in global visibility...
TA551 (Shathak) Word docs push IcedID (Bokbot)
Introduction I've been tracking malicious Word documents from the TA551 (Shathak) campaign This year, we've seen a lot of Valak...
A Fork of the FTCode Powershell Ransomware, (Thu, Aug 6th)
Yesterday, I found a new malicious Powershell script that deserved to be analyzed due to the way it was dropped...
Gtunnel – A Robust Tunelling Solution Written In Golang
A TCP tunneling suite built with golang and gRPC. gTunnel can manage multiple forward and reverse tunnels that are all...
Taowu – A CobaltStrike Toolkit
TaoWu(檮杌) is a CobaltStrike toolkit. All the scripts are gathered on the Internet and slightly modified by myself. You can...
Virtual Black Hat: Rapid7 Experts Share Key Takeaways from Day 1 Sessions
Boy, oh boy, has Black Hat changed. Where we once looked up at the neon lights of Las Vegas, we...
