Revisiting the NSIS-based crypter
This blog post was authored by hasherezade NSIS (Nullsoft Scriptable Install System) is a framework dedicated to creating software installers....
Security
Threat Actors Release Patient Data Stolen from New Zealand Hospitals to the Local Media
Cybercriminals who targeted hospitals in New Zealand’s Waikato district have published the stolen patient data to the local media outlets,...
S&P: Cyberattacks Could Trigger More Rating Actions on Banks
Since the Covid pandemic intensified digitalization and remote working, the banking sector is becoming more vulnerable to cybercrime, according to...
An Advisory Issued by Carnegie Mellon University Warns Against the Vulnerability in Checkbox Survey
In the wild, CERT Coordination Center (CERT/CC) in Carnegie Mellon University alerts about a Checkbox Survey vulnerability that might enable...
BazaLoader Malware is Being Distributed by Hackers Using a Bogus Streaming Website
Proofpoint identified the phishing attempt in early May, which entailed hackers creating a phoney movie-streaming website named BravoMovies and stocking...
IT threat evolution Q1 2021
Targeted attacks Putting the ‘A’ into APT In December, SolarWinds, a well-known IT managed services provider, fell victim to a...
IT threat evolution Q1 2021. Mobile statistics
The statistics presented here draw on detection verdicts returned by Kaspersky products as provided by users who consented to share...
IT threat evolution Q1 2021. Non-mobile statistics
These statistics are based on detection verdicts of Kaspersky products received from users who consented to provide statistical data. Quarterly...
magicRecon – A Powerful Shell Script To Maximize The Recon And Data Collection Process Of An Objective And Finding Common Vulnerabilities
MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common...
Bucky – An Automatic S3 Bucket Discovery Tool
Bucky is an automatic tool designed to discover S3 bucket misconfiguration, Bucky consists up of two modules Bucky firefox addon...
Experts devised a new attack to bypass Microsoft PatchGuard
A security researcher discovered a bug in PatchGuard Windows security feature that can allow loading unsigned malicious code into the...
COVID-19 – Phishing attacks target employees that come back to the office
Hackers are attempting to exploit the return to the “new normal” after the governments are removing restrictions imposed in response...
The slow trend away from facial recognition technology
It’s been a busy few weeks for facial recognition technology. Its oft-maligned abilities frequently wind up in tales of privacy...
A week in security (May 24 -30)
Last week on Malwarebytes Labs we discussed VPN Android apps, how even the FBI has to deal with insider threats,...
The Ministry of Internal Affairs of Russia will launch a program for recognizing deepfakes in the fall of 2022
The scientific and industrial company "High Technologies and Strategic Systems" (HT and SS SIJSC) will develop a computer program for...
HPE Patches the Zero-Day Vulnerabiity in Systems Insight Manager Software for Windows
Hewlett Packard Enterprise (HPE) has released a security update to patch critical zero-day remote code execution (RCE) vulnerability in its...
FireEye: Transportation and Telecom Firms Being Hit in Chinese Espionage
According to security firm FireEye, a massive Chinese espionage operation against US and European government entities includes four new hacking...
APT: China-Based Threat Group Attacks Pulse Secure VPNs
Several hacker groups that are supposed to support Chinese long-term economic goals continue in the defense, high-tech, public, transportation, and...
Kaiju – A Binary Analysis Framework Extension For The Ghidra Software Reverse Engineering Suite
CERT Kaiju is a collection of binary analysis tools for Ghidra. This is a Ghidra/Java implementation of some features of...
CheeseTools – Self-developed Tools For Lateral Movement/Code Execution
This repository has been made basing onto the already existing MiscTool, so big shout-out to rasta-mouse for releasing them and...
Interpol has intercepted $83 million from financial cyber crimes
Interpol has intercepted $83 million in illicit funds transferred from victims to the accounts used by crooks. An operation conducted...
These 2 attacks allow to alter certified PDF Documents
Researchers disclosed two new attack techniques that allow modifying visible content on certified PDF documents without invalidating the digital signature....
Security Affairs newsletter Round 316
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
Facefish Backdoor delivers rootkits to Linux x64 systems
Qihoo 360 NETLAB spotted a new backdoor dubbed Facefish that could allow attackers to take over Linux systems and steal...
