Stay Wary of Third-Party Apps: Malware App ‘CovidLock’ Locks User Out of their Phone
In an attempt to block misinformation from being spread by developers taking advantage of the COVID-19 charged environment, Google started...
OSINT
Lazydocker – The Lazier Way To Manage Everything Docker
A simple terminal UI for both docker and docker-compose, written in Go with the gocui library.Minor rant incoming: Something's not...
Pypykatz – Mimikatz Implementation In Pure Python
Mimikatz implementation in pure Python. At least a part of it :)Runs on all OS's which support python>=3.6 WIKISince version...
Redefining How to Measure the Success of Your Vulnerability Management Program
Could your team be wasting its time reporting vulnerability metrics that don’t matter? Security teams often fall into the trap...
Foreign APT groups use coronavirus phishing lures to drop RAT malware
Each day, as the novel coronavirus multiplies and spreads, so do cyber scams capitalizing on users’ fears and thirst for...
Password found to rescue victims of malicious COVID-19 tracker app
Members of the IT and cybersecurity communities have successfully obtained a password key for victims of CovidLock Android ransomware, which...
Lock and Code S1Ep2: On the challenges of managed service providers
This week on Lock and Code, we discuss the top security headlines generated right here on Labs and around the...
APT36 jumps on the coronavirus bandwagon, delivers Crimson RAT
Since the coronavirus became a worldwide health issue, the desire for more information and guidance from government and health authorities...
Cybersecurity experts told how to protect yourself when working from home
After the World Health Organization (WHO) officially recognized the outbreak of COVID-2019 as a pandemic, many employers offered their employees...
Hackers take advantage of Coronavirus panic, launch Cyberattacks
The whole world is in high alert with coronavirus COVID-19, as being declared a pandemic and every government is making...
MonitorMinor: vicious stalkerware
The other day, our Android traps ensnared an interesting specimen of stalkerware — commercial software that is usually used to...
Token-Reverser – Word List Generator To Crack Security Tokens
Word list generator to crack security tokens.Example use case You are testing reset password function Reset password token was sent...
shuffleDNS – Wrapper Around Massdns Written In Go That Allows You To Enumerate Valid Subdomains
shuffleDNS is a wrapper around massdns written in go that allows you to enumerate valid subdomains using active bruteforce as...
How Rapid7 Customer Hilltop Holdings Integrates Security Tools for a Multi-Layered Approach
Recently, we interviewed Anthony Edwards, director of security operations for Hilltop Holdings, about how his financial holdings organization approaches multi-level...
Our Commitment to Keeping Your Organization Secure During COVID-19
COVID-19 has created a great deal of concern and uncertainty, and we want to reassure our customers that your security...
How to WFH and Keep Your Digital Self Safe
We have rapidly entered a new era of living with a global pandemic. As a result, many are working from...
2 New Android Malwares on The Hunt to Gain Control of User’s Account
As per discoveries of competent security software two new Android malware is on the hunt to 'discreetly' access control of...
Google rewards 100,000$ as bug bounty prize!
Google has awarded 100,000 dollars prize to a Dutch researcher Wouter ter Maat for the Google Cloud Platform (GCP), for...
AWSGen.py – Generates Permutations, Alterations And Mutations Of AWS S3 Buckets Names
AWSGen.py is a simple tool for generates permutations, alterations and mutations of AWS S3 Buckets Names.Download AWSGen.py Original Source
Jeopardize – A Low(Zero) Cost Threat Intelligence & Response Tool Against Phishing Domains
Jeopardize tool is developed to provide basic threat intelligence&response capabilities against phishing domains at the minimum cost as possible. It...
Tor Browser Bug Executes Uncalled for JavaScript Codes!
The well-known Tor is allegedly experiencing some kind of bug in its mechanism. It has hence warned the users to...
TEA – Ssh-Client Worm
A ssh-client worm made with tas framework.How it works?This is a fakessh-client that manipulates the tty input/output to execute arbitrary...
Zelos – A Comprehensive Binary Emulation Platform
Zelos (Zeropoint Emulated Lightweight Operating System) is a python-based binary emulation platform. One use of zelos is to quickly assess...
Russian cybercrime forums seen selling malware-sabotaged COVID-19 map
The recently discovered weaponized coronavirus map found to infect victims with a variant of the information-stealing AZORult malware has been...
