Russian Hacking Forum Maza Hijacked, Suffers Data Breach
Cybercriminal forum Maza was recently hit by a data breach that led to the leak of user information. Earlier this...
OSINT
Threat Actors Target PrismHR in a Potential Ransomware Attack
PrismHR, a payroll company, suffered a cyber attack over the weekend that caused massive outages to its system. Although there...
CompuCom MSP Hit By DarkSide Ransomware Cyberattack
CompuCom, a US-managed service provider, has witnessed a DarkSide ransomware attack. It has resulted in a service outage and...
Kubestriker – A Blazing Fast Security Auditing Tool For Kubernetes
Kubestriker performs numerous in depth checks on kubernetes infra to identify the security misconfigurations and challenges that devops engineers/developers are...
CertEagle – Asset monitoring utility using real time CT log feeds
In Bugbounties “If you are not first , then you are last” there is no such thing as silver or...
Managed Services provider CompuCom by Darkside ransomware
US managed service provider CompuCom was the victim of a cyberattack that partially disrupted its operations, experts believe it was...
Five privilege escalation flaws fixed in Linux Kernel
Experts found five vulnerabilities in the Linux kernel, tracked as CVE-2021-26708, that could lead to local privilege escalation. Positive Technologies researcher Alexander...
Sunshuttle, the fourth malware allegedly linked to SolarWinds hack
FireEye researchers spotted a new sophisticated second-stage backdoor that was likely linked to threat actors behind the SolarWinds hack. Malware researchers...
VMware addresses Remote Code Execution issue in View Planner
VMware released a security patch for a remote code execution vulnerability that affects the VMware View Planner product. VMware released...
CISA emergency directive urges to fix Microsoft Exchange zero-days
The US Cybersecurity and Infrastructure Security Agency (CISA) has issued an emergency directive related to recently fixed Microsoft Exchange zero-days. ...
Group-IB: ransomware empire prospers in pandemic-hit world. Attacks grow by 150%
Group-IB published a report titled “Ransomware Uncovered 2020-2021”. analyzes ransomware landscape in 2020 and TTPs of major threat actors. Group-IB, a...
Microsoft links new malware to SolarWinds hackers
Microsoft released details on later-stage malware the company says was used by the group behind the SolarWinds espionage campaign. (Microsoft)Microsoft...
Update now! Chrome fix patches in-the-wild zero-day
The Microsoft Browser Vulnerability Research team has found and reported a vulnerability in the audio component of Google Chrome. Google...
Kaspersky detected new ransomware attack on Russian companies
Kaspersky Lab has recorded a series of targeted attacks targeting Russian financial and transport companies. Hackers used a previously unknown...
US Telemarketing Company Leaks Data of 114,000 Consumers In a Cloud Storage Error
In a recent cybersecurity incident, a US telemarketing firm leaked sensitive data of tens of thousands of customers after a...
Zee5 Once Again Caught In Data Breach; Info Of 9 Million Users Exposed
Zee5, an Indian Leading giant over-the-top (OTT) platform has witnessed a data breach. According to the information, the data breach...
Crypto Exchange Platform WazirX Hit a Record High of $2 Billion in Trading Volumes
Cryptocurrency exchange platform, WazirX has almost doubled its trading volumes since February 1st, 2021 regardless of fears of a government-imposed...
FacePay fare payment system to launch in Moscow metro by the end of the year
"In the Moscow metro, by the end of 2021, we plan to launch contactless fare payment for travel through a...
Zero-day vulnerabilities in Microsoft Exchange Server
What happened? On March 2, 2021 several companies released reports about in-the-wild exploitation of zero-day vulnerabilities inside Microsoft Exchange Server....
PyBeacon – A Collection Of Scripts For Dealing With Cobalt Strike Beacons In Python
PyBeacon is a collection of scripts for dealing with Cobalt Strike's encrypted traffic. It can encrypt/decrypt beacon metadata, as well...
SharpSphere – .NET Project For Attacking vCenter
SharpSphere gives red teamers the ability to easily interact with the guest operating systems of virtual machines managed by vCenter....
Clop ransomware gang leaks data allegedly stolen from cybersecurity firm Qualys
Cybersecurity firm Qualys seems to have suffered a data breach, threat actors allegedly exploited zero-day flaw in their Accellion FTA server....
The Ursnif Trojan has hit over 100 Italian banks
Avast researchers reported that the infamous Ursnif Trojan was employed in attacks against at least 100 banks in Italy. Avast...
21 million free VPN users’ data exposed
Detailed credentials for more than 21 million mobile VPN app users were swiped and advertised for sale online last week,...
