OrderSnapp – 1,304,447 breached accounts
In June 2020, the restaurant solutions provider OrderSnapp suffered a data breach which exposed 1.3M unique email addresses. Impacted data...
Security
MMG Fusion – 2,660,295 breached accounts
In December 2020, the dental practice management service MMG Fusion was the victim of a data breach which exposed 2.6M...
Telegram Bug in Mac Allows User To Save Secret Chats
Cybersecurity experts have found a technique for Telegram users of Mac to keep self disappearing texts or view the messages...
Detecting Cobalt Strike: Cybercrime Attacks
One of the latest researches revealed that cybercriminals who employ malware often use the Cobalt Strike tool to release multiple...
Several Critical Flaws Detected in Las Vegas’s Leading Casinos
External attack surface management platform, Reposify, has discovered multiple vulnerabilities in the IT networks of Las Vegas’s leading casinos. Recently,...
New DNS Flaw Enables ‘Nation-State Level Spying’ on Companies
Researchers discovered a new category of DNS vulnerabilities hitting major DNS-as-a-Service (DNSaaS) providers, which may enable attackers to get access...
Inadequate Payment Leads the Affiliate to Leak the Ransomware Gang’s Technical Manual
A frustrated Conti affiliate revealed the gang's training material during attacks and released details on one of the administrators of...
Go-Shellcode – A Repository Of Windows Shellcode Runners And Supporting Utilities
go-shellcode is a repository of Windows Shellcode runners and supporting utilities. The applications load and execute Shellcode using various API...
cThreadHijack – Beacon Object File (BOF) For Remote Process Injection Via Thread Hijacking
___________.__ .______ ___ .__ __ __ _____ ___/| |_________ ____ _____ __| _/ | |__| |__|____ ____ | | ___/...
RansomEXX ransomware hit computer manufacturer and distributor GIGABYTE
Taiwanese manufacturer and distributor of computer hardware GIGABYTE was a victim of the RansomEXX ransomware gang. RansomEXX ransomware gang hit...
RansomEXX ransomware leaks files stolen from Italian luxury brand Zegna
RansomEXX ransomware operators hit the popular Italian luxury fashion house Ermenegildo Zegna Holding and started leaking stolen files. Zegna is one of...
Ivanti fixed a critical code execution issue in Pulse Connect Secure VPN
Security firm Ivanti addressed a critical vulnerability in its Pulse Connect Secure VPN appliances that could be exploited to execute...
Apple’s search for child abuse imagery raises serious privacy questions
The Internet has been on fire since the August 4 discovery (disclosed publicly by Mathew Green) that Apple will be...
Edge’s Super Duper Secure Mode benchmarked: How much speed would you trade for security?
In an attempt to make Edge more secure, the Microsoft Vulnerability Research team has started to experiment with disabling Just-In-Time...
Crime-as-a-Service Makes Advanced Phishing Attacks Easier For Amateurs
CaaS (Crime as a Service) is a practice where veteran hackers sell tools and knowledge required to perform a cybercrime....
Security Flaw in AWS S3 Possess Security Threat for Business Organizations
New security flaws have emerged in the AWS’ Amazon Simple Storage Service (S3) buckets which are now exposed via additional...
Amazon Fined With EUR 746 Million By Luxembourg Over Data Protection
Amazon has been fined 746 million ($880 million) Euros by the Luxembourg government over data protection rules. Despite its powerful...
Security Researcher Discovers Serious Flaw in Chromium, Bags $15,000 Reward
A recently patched vulnerability in the Chromium project enabled malicious parties to inject code in embedded site pages, despite the...
Spanish botnet attacked Russian companies
StormWall, the provider of services for protecting networks from DDoS attacks, said that Russian companies have been attacked by one...
TwiTi – Tool for extracting IOCs from tweet
TwiTi, a tool for extracting IOCs from tweets, can collect a large number of fresh, accurate IOCs. TwiTi does classifying...
WARCannon – High Speed/Low Cost CommonCrawl RegExp In Node.js
WARCannon was built to simplify and cheapify the process of 'grepping the internet'.With WARCannon, you can:Build and test regex patterns...
Conti Leak Indicators – What to block, in your SOC….
Security expert provided leak indicators for Conti ransomware operations that were recently disclosed by a disgruntled affiliate. An affiliate of...
VMware addresses critical flaws in its products
VMware has addressed a critical vulnerability that affects multiple products that could be exploited to gain access to confidential information....
BlackMatter ransomware also targets VMware ESXi servers
BlackMatter gang rapidly evolves, the group has developed a Linux version that allows operators to targets VMware’s ESXi VM platform....
