Cloud Misconfiguration is Still the Leading Source of Cloud Data Violations
Almost everybody by now is workings from home and 84 percent are worried that new security vulnerabilities have been generated...
Security
MeterPwrShell – Automated Tool That Generate The Perfect Powershell Payload
Automated Tool That Generate A Powershell Oneliner That Can Create Meterpreter Shell On Metasploit,Bypass AMSI,Bypass Firewall,Bypass UAC,And Bypass Any AVs....
M365_Groups_Enum – Enumerate Microsoft 365 Groups In A Tenant With Their Metadata
The all_groups.py script allows to enumerate all Microsoft 365 Groups in a Azure AD tenant with their metadata: name visibility:...
An issue in the Linux Kernel could allow the hack of your system
An information disclosure issue in Linux Kernel allows KASLR bypass could be potentially exploited in attacks in the wild. An...
Purple Lambert, a new malware of CIA-linked Lambert APT group
Cybersecurity firm Kaspersky discovered a new strain of malware that is believed to be part of the arsenal of theUS...
RotaJakiro Linux backdoor has flown under the radar since 2018
Experts recently uncovered a Linux backdoor, dubbed RotaJakiro, that has flown under the radar for many years while harvest and...
Naikon APT group uses new Nebulae backdoor in attacks aimed at military orgs
China-linked APT Naikon employed a new backdoor in multiple cyber-espionage operations targeting military organizations from Southeast Asia in the last 2 years....
DoJ building the guardrails for Microsoft Exchange-type malware takedowns
Assistant Attorney General for National Security John Demers, speaks during a virtual news conference at the Department of Justice on...
Bitcoin scammers phish for wallet recovery codes on Twitter
We’re no strangers to the Twitter customer support DM slide scam. This is where someone watches an organisation perform customer...
Watch out! Android Flubot spyware is spreading fast
Using a proven method of text messages about missed deliveries, an old player on the Android malware stage has returned...
Covid-19 has led to Increase in Cyberattacks Against Banks and Insurers
According to recent studies, the coronavirus pandemic and working from home (WFH) provisions are triggering a "huge" increase in attacks...
NTLM Relay Attack Exploits Windows RPC Flaws
Security researchers at SentinelLabs revealed the details of a newly identified NTLM (New Technology LAN Manager) relay attack that exploits...
Apple will pay $100 million to Russian hackers for leaking data on new products
Apple's database was hacked due to cybersecurity deficiencies of the Taiwanese equipment manufacturer. The stolen information is estimated at $50...
Leaked Apple Schematics & Extortion Threats Removed From Dark Web
According to MacRumors, the ransomware group that stole schematics from Apple supplier Quanta Computer last week and threatened to release...
5.6 Million Customer Records Leaked as Music Marketplace Giant Reverb Suffers Data Breach
The sensitive information of some leading artists has been compromised in data breaches witnessed by the world's biggest online music...
PwnLnX – An Advanced Multi-Threaded, Multi-Client Python Reverse Shell For Hacking Linux Systems
An advanced multi-threaded, multi-client python reverse shell for hacking linux systems. There's still more work to do so feel free...
Invoke-Stealth – Simple And Powerful PowerShell Script Obfuscator
Invoke-Stealth is a Simple & Powerful PowerShell Script Obfuscator. This tool helps you to automate the obfuscation process of any...
Google addresses a high severity flaw in V8 engine in Chrome
Google released updates for Chrome 90 that address a new serious issue, tracked as CVE-2021-21227, in the V8 JavaScript engine...
UK rail network Merseyrail hit by ransomware gang
UK rail network Merseyrail was hit by a cyberattack, ransomware operators breached the corporate email system to disclose the attack...
Cloud misconfiguration, a major risk for cloud security
Misconfigured cloud-based databases continue to cause data breaches, millions of database servers are currently exposed across cloud providers. Fugue’s new State...
FBI shares with HIBP 4 million email addresses involved in Emotet attacks
The FBI has shared with Have I Been Pwned service 4 million email addresses collected by Emotet botnet and employed...
Descomplica – 4,845,378 breached accounts
In March 2021, the Brazilian EdTech company Descomplica suffered a data breach which was subsequently posted to a popular hacking...
Jefit – 9,052,457 breached accounts
In August 2020, the workout tracking app Jefit suffered a data breach. The data was subsequently sold within the hacking...
Ransomware group threatens to leak information about police informants
One day after a ransomware group shared hacked data that allegedly belonged to the Washington, D.C. Police Department online, the...
