Zyxel Warns Customers About Hackers Targeting its Firewalls & VPN Devices
Zyxel, a manufacturer of enterprise routers and VPN devices, has issued a notification that attackers are targeting its devices and...
OSINT
Detecting unknown threats: a honeypot how-to
Catching threats is tricky business, especially in today’s threat landscape. To tackle this problem, for many years сybersecurity researchers have...
AWS Pen-Testing Laboratory – Pentesting Lab With A Kali Linux Instance Accessible Via Ssh And Wireguard VPN And With Vulnerable Instances In A Private Subnet
PenTesting laboratory deployed as IaC with Terraform on AWS. It deploys a Kali Linux instance accessible via ssh & wireguard...
Heappy – A Happy Heap Editor To Support Your Exploitation Process
Heappy is an editor based on gdb/gef that helps you to handle the heap during your exploitation development. The project...
Microsoft investigates threat actor distributing malicious Netfilter Driver
Microsoft is investigating an strange attack, threat actor used a driver signed by the company, the Netfilter Driver, to implant...
The builder for Babuk Locker ransomware was leaked online
The builder for the Babuk Locker ransomware was leaked online, threat actors can use it to create their own ransomware...
Six typosquatting packages in PyPI repository laced with crypto miner
Researchers discovered six rogue packages in the official Python programming language’s PyPI repository containg cryptocurrency mining malware. Experts from security firm Sonatype have...
A week in security (June 21 – June 27)
Last week on Malwarebytes Labs: Want to stop ransomware attacks? Send the cybercriminals to jail, says Brian Honan: Lock and...
Atlassian Patched Vulnerabilities in its Domains
On Wednesday 23rd of June, cyber-security experts uncovered key vulnerabilities in the Atlassian project and software development platform that might...
Hackers are Remotely Erasing Western Digital Hard Drives
The whole goal of using a network-attached storage device is to have a hard drive where you can back up...
This Malware Generated $2 Million After Abusing 222,000 Windows Systems
Avast researchers published a report on Thursday regarding the discovery of a cryptocurrency mining malware that abuses Windows Safe mode...
800+ Million WordPress Users Records Leaked Online
On 16 April 2021, security researcher Jeremiah Fowler together with the Website Planet Research Team revealed a non-password secured database...
Crackonosh Malware Exploits Windows Safe Mode to Mine Cryptocurrency Secretly
Researchers have uncovered a variant of cryptocurrency-mining malware that exploits Windows Safe Mode during attacks. Researchers at Avast have termed the...
Mythic – A Collaborative, Multi-Platform, Red Teaming Framework
A cross-platform, post-exploit, red teaming framework built with python3, docker, docker-compose, and a web browser UI. It's designed to provide...
HoneyCreds – Network Credential Injection To Detect Responder And Other Network Poisoners
HoneyCreds network credential injection to detect responder and other network poisoners. RequirementsRequires Python 3.6+ (tested on Python 3.9)smbprotocolcffisplunk-sdk Installationgit clone https://github.com/Ben0xA/HoneyCreds.gitcd...
Crackonosh Monero miner made $2M after infecting 222,000 Win systems
Researchers have discovered a strain of cryptocurrency-mining malware, tracked as Crackonosh, that abuses Windows Safe mode to avoid detection. Researchers from Avast...
Security Affairs newsletter Round 320
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
Hackers target Cisco ASA devices after a PoC exploit code was published online
Experts warn of attacks against Cisco ASA devices after researchers have published a PoC exploit code on Twitter for a...
Mercedes-Benz data breach impacted roughly 1000 individuals
Mercedes-Benz USA disclosed a data breach that impacted 1.6 million customers, exposed data includes financial data and social security numbers...
Attackers Pummelled the Gaming Industry During the Pandemic
According to Akamai, a content delivery network (CDN), the gaming business has seen more cyberattacks than any other industry during...
VMware Patches Authentication Bypass in Carbon Black App Control
VMware, the California-based cloud computing and virtualization technology firm has patched an authentication bypass vulnerability in its Carbon Black App...
A New GoLang Trojan ChaChi Used in Attacks Against US Schools
A new Trojan written in the Go programming language has shifted its focus from government agencies to schools in the...
Mercedes-Benz USA: Nearly 1,000 Customers’ Data Accessible Online
Mercedes-Benz USA stated on Thursday 24th of June, that sensitive information was made inadvisably accessible on a cloud storage network...
SharpHook – Tool Tath Uses Various API Hooks In Order To Give Us The Desired Credentials
SharpHook is inspired by the SharpRDPThief project, It uses various API hooks in order to give us the desired credentials....
