Launched OSSISNa, the Observatory for the Protection of the National Strategic Industrial System
On 11th December 2020, the Observatory for the Protection of the National Strategic Industrial System (OSSISNa) was officially announced. On...
Security
Digging the recently leaked Chinese Communist Party database
KELA researchers analyzed a database recently leaked online that contains data for 1.9 million Chinese Communist Party members in Shanghai....
FireEye, GoDaddy, and Microsoft created a kill switch for SolarWinds backdoor
Microsoft, FireEye, and GoDaddy have partnered to create a kill switch for the Sunburst backdoor that was employed in the...
HPE discloses critical zero-day in Systems Insight Manager
HPE has disclosed a zero-day vulnerability in the latest versions of its HPE Systems Insight Manager (SIM) software for both...
SEC Consult SA-20201217-0 :: Multiple critical vulnerabilities in Trend Micro InterScan Web Security Virtual Appliance (IWSVA)
Posted by SEC Consult Vulnerability Lab on Dec 17SEC Consult Vulnerability Lab Security Advisory < 20201217-0 > ======================================================================= title: Multiple...
Likely lead generation scam targets potential Malwarebytes MSP partners
Recently, Malwarebytes discovered a potential lead generation scam targeting companies that are interested in our Malwarebtyes Managed Service Provider (MSP)...
Facebook Shuts Down Fake Accounts Associated With Russia and French Military
Earlier this week, in a press conference, Facebook closed two misinformation networks related to Russia, one of which was associated...
Police detained hackers who stole more than 20 million rubles
Police officers of the Chuvash Republic, with the assistance of BI.ZONE experts detained the organizers of a criminal group that...
Freki – Malware Analysis Platform
Freki is a free and open-source malware analysis platform.GoalsFacilitate malware analysis and reverse engineering; Provide an easy-to-use REST API...
Ghost Framework – An Android Post-Exploitation Framework That Exploits The Android Debug Bridge To R emotely Access An Android Device
About Ghost FrameworkGhost Framework is an Android post-exploitation framework that exploits theAndroid Debug Bridge to remotely access an Android device....
Happy HaXmas from the Rapid7 Team!
Happy HaXmas, everyone! This has been quite the year, but we’re thrilled that we’re able to keep up our favorite...
EU Digital Services and Digital Markets Acts aim at setting new rules for tech giants
The European Union is going to unveil two laws, the Digital Services and Digital Markets Acts, that will impose new...
Sextortion campaign uses Goontact spyware to target Android and iOS users
Security experts spotted a new malware strain, named Goontact, that allows its operators to spy on both Android and iOS...
Microsoft partnered with security firms to sinkhole the C2 used in SolarWinds hack
Microsoft and its partners have seized the primary domain used in the SolarWinds attack to identify the victims through sinkholing....
PyMICROPSIA Windows malware includes checks for Linux and macOS
Experts discovered a new Windows info-stealer, named PyMICROPSIA, linked to AridViper group that is rapidly evolving to target other platforms....
Flaws in Medtronic MyCareLink can allow attackers to take over implanted cardiac devices
Experts reported flaws in Medtronic ’s MyCareLink Smart 25000 Patient Reader product that could be exploited to take control of...
Norwegian cruise company Hurtigruten was hit by a ransomware
Norwegian cruise company Hurtigruten disclosed a cyber attack that impacted its entire worldwide digital infrastructure. The Norwegian cruise company Hurtigruten...
Kaspersky researchers found 360,000 malicious files per day in 2020
Researchers at Kaspersky discovered an average of 360,000 new malicious files every day over the past 12 months – 18,000...
Threat profile: Egregor ransomware is making a name for itself
What is Egregor? Egregor ransomware is a relatively new ransomware (first spotted in September 2020) that seems intent on making...
NCSC: Be Cyber Aware, especially during the Christmas season
In early December, the National Cyber Security Centre, a UK-based cybersecurity body and a part of GCHQ, kicked off the next chapter...
Hackers Dropping Malware via Free WinZip Trial Popup Vulnerability
Researchers have discovered a critical security flaw in WinZip 24 that targets users with malware. WinZip trial popup vulnerability...
Russian hackers broke into the systems of the United States Department of the Treasury and Department of Commerce
The Russian Embassy in the United States has already called the accusations against Moscow baseless. They recalled that Vladimir Putin...
Kaspersky Security Bulletin 2020. Statistics
All statistics in this report are from the global cloud service Kaspersky Security Network (KSN), which receives information from components...
APKLab – Android Reverse Engineering WorkBench For VS Code
APKLab seamlessly integrates the best open-source tools: Apktool, Jadx, uber-apk-signer and more to the excellent VS Code so you can...
