Clop Ransomware operators plunder US universities
Clop ransomware gang leaked online data stolen from Stanford Medicine, University of Maryland Baltimore, and the University of California. Clop...
OSINT
Data of 533 million Facebook users leaked in a hacking forum for free
On April 3, a user has leaked the phone numbers and personal data of 533 million Facebook users in a...
Facebook – 2,529,621 breached accounts
In April 2021, a large data set of 533 million Facebook users was made freely available for download. Encompassing approximately...
Russian hackers suspected of stealing thousands of US State Department emails
In 2020, Russian hackers stole thousands of emails from U.S. State Department employees. As Politico reported, this is the second...
Protect Your Android Phones from Android ‘System Update’ Malware
 Security researchers at Zimperium zLabs have discovered a new ‘sophisticated’ Android malware posing as a software update application. This malware...
Russian Law Requires Smart Devices To Come Pre-Installed With Domestic Software
Russia is taking security measures against technology that can hurt big tech companies in the region. In light of new...
Mackenzie Scott Scam: Fraudsters asking Fake Donations in Billionaire’s name
 A major phishing campaign that reached tens of thousands of inboxes impersonated as MacKenzie Bezos-Scott grant foundation promising monetary advantages...
Hacker Hacks Underground Covid Vaccine Market On Dark Web
 In a recent cybersecurity incident, an attacker hacked down a vaccine marketplace that was running on the dark web....
DefenderCheck – Identifies The Bytes That Microsoft Defender Flags On
Quick tool to help make evasion work a little bit easier. Takes a binary as input and splits it until...
SharpGPOAbuse – Tool To Take Advantage Of A User’S Edit Rights On A Group Policy Object (GPO) In Order To Compromise The Objects That Are Controlled By That GPO
SharpGPOAbuse is a .NET application written in C# that can be used to take advantage of a user's edit rights...
Capital One discovered more customers’ SSNs exposed in 2019 hack
More clients of Capital One have been impacted in the 2019 data breach, the US bank is notifying them of...
Activision warns of Call of Duty Cheat tool used to deliver RAT
The popular video game publisher Activision is warning gamers that threat actors are actively disguising a remote-access trojan (RAT) in...
Attackers are abusing GitHub infrastructure to mine cryptocurrency
The popular code repository hosting service GitHub is investigating a crypto-mining campaign abusing its infrastructure. Code repository hosting service GitHub launched an investigation...
Evolution and rise of the Avaddon Ransomware-as-a-Service
The Avaddon ransomware operators updated their malware after security researchers released a public decryptor in February 2021. The Avaddon ransomware...
FBI and CISA are warning of APT actors targeting Fortinet FortiOS servers
FBI and CISA published a joint alert to warn of advanced persistent threat (APT) groups targeting Fortinet FortiOS to access networks...
TIM’s Red Team Research (RTR) team found 5 zero-day flaws in the CA eHealth Performance Manager product
Researchers from TIM’s Red Team Research discovered five new vulnerabilities affecting the CA eHealth Performance Manager product. Researchers from TIM’s...
Man Indicted In Kansas Water Facility Breach
 Today the US Department of Justice charged a Kansas man for breaching a public water system and trying to shut...
Hackers Attack Users With Malware Using Underground Call Centres
 BazarLoader malware actors have started working with underground call centres to fool targets of their spamming campaign by making...
Russia has created a new data transmission device with protection against cyber threats
It is the first SD-WAN-class development that supports Russian encryption algorithms and is included in the Russian software registry.Sberbank's press...
Cybercrimial are Using Twitter as a Doorway to Target Indonesian Banks
 Group-IB, a global threat hunting firm, has discovered traces of an ongoing phishing campaign targeting Indonesia’s largest banks that cybercriminals...
Telemetry Data is Being Shared by Google and Apple Despite the user Explicitly Opting out
 A new study revealing Apple and Google's monitoring of mobile devices is making headlines. It discusses how, despite the fact...
Browser lockers: extortion disguised as a fine
Browser lockers (aka browlocks) are a class of online threats that prevent the victim from using the browser and demand...
Tuf – A Framework For Securing Software Update Systems
This repository is the reference implementation of The Update Framework (TUF). It is written in Python and intended to conform...
SecretScanner – Find Secrets And Passwords In Container Images And File Systems
Deepfence SecretScanner can find any potential secrets in container images or file systems. What are Secrets?Secrets are any kind of...
