Eagle – Yet Another Vulnerability Scanner
Project Eagle is a plugin based vulnerabilities scanner with threading support used for detection of low-hanging bugs on mass scale...
Security
HackBrowserData – Decrypt Passwords/Cookies/History/Bookmarks From The Browser
hack-browser-data is an open-source tool that could help you decrypt data (passwords / bookmarks / cookies / history) from the...
Open-Xchange Security Advisory 2020-10-13
Posted by Open-Xchange GmbH via Fulldisclosure on Oct 16Dear subscribers, we're sharing our latest advisory with you and like to...
Re: Google’s Android: remote install backdoor in Google Play Services
Posted by Enrico Weigelt, metux IT consult on Oct 16Hello folks, In short, Google's playstore receives notifications from Google and...
Java deserialization vulnerability in QRadar RemoteJavaScript Servlet
Posted by Securify B.V. via Fulldisclosure on Oct 16------------------------------------------------------------------------ Java deserialization vulnerability in QRadar RemoteJavaScript Servlet ------------------------------------------------------------------------ Abstract ------------------------------------------------------------------------ A...
How Covid fatigue puts your physical and digital health in jeopardy
After six months of social distancing, sheltering in place, working from home, distance learning, mask-wearing, hand-washing, and plenty of hand-wringing,...
QR code scams are making a comeback
Just when we thought the QR code was on its way out, the pandemic has led to a return of...
The infamous Barnes & Noble breached by a Cyber Attack
Barnes & Noble, an American bookseller among the Fortune 100 company just confirmed that they have been breached by a...
Russia considers the accusations by the Norwegian authorities of the cyber attack as a provocation
Russia considers the accusations by the Norwegian authorities against it in the cyber attack a deliberate provocation. This statement was...
Russia A Suspect of Norwegian Parliament Cyber Attack?
In September, Norwegian authorities said that email accounts of a few authorities had been undermined during a cyber-attack, and some...
IAmTheKing and the SlothfulMedia malware family
On October 1, 2020, the DHS CISA agency released information about a malware family called SlothfulMedia, which they attribute to...
Mail-Swipe – Script To Create Temporary Email Addresses And Receive Emails
Mail Swipe is a python script that helps you to create temporary email addresses and receive emails at that address....
Zracker – Zip File Password BruteForcing Utility Tool based on CPU-Power
Zracker is a Zip File Password BruteForcing Utility Tool based on CPU-Power. Yet available for Linux only ... Supports WordList...
Fewer False Alarms, Faster Reporting: InsightVM Introduces New One-Click Fix For False Positives
Let’s talk about false positives. They’re frustrating and faulty, but also about as certain as death and taxes for anyone...
Introducing Enhanced Endpoint Telemetry (EET) in InsightIDR
Rapid7 detection and response customers have access to, and insights from, our experts and research driving the industry forward. This...
FIFA 21 game scams: watch out for unsporting conduct
Despite COVID-19, soccer season is slowly ebbing its way back into daily life around the world. It’s also sneaking back...
Silent Librarian APT right on schedule for 20/21 academic year
A threat actor known as Silent Librarian/TA407/COBALT DICKENS has been actively targeting universities via spear phishing campaigns since schools and...
Mikrot8Over – Fast Exploitation Tool For Mikrotik RouterOS
mikrot8over: Fast exploitation tool for Mikrotik RouterOS up to 6.38.4 This is reworked original Mikrotik Exploit. Added Python 2 compatibility...
MEDUZA – A More Or Less Universal SSL Unpinning Tool For iOS
"MEDUZA" ("медуза") means "jellyfish" in Ukrainian What is MEDUZA?It's a Frida-based tool, my replacement for SSLKillSwitch. I created it for...
Heartland Dental’s Ambitions Land Them in the Cloud
Managing security for the largest Dental Support Organization (DSO) in the United States is no easy task. And sometimes, you...
There Goes The Neighborhood: Dealing # With CVE-2020-16898 (a.k.a. “Bad Neighbor”)
by Bob Rudis If you’re in the U.S. and were waiting for an “October surprise”, look no further than CVE-2020-16898...
Money stolen from bank accounts of Russians twice as much as last year
In Russia, for the period from January to August 2020, more than 100 thousand thefts of funds from a Bank...
Common Phishing Email Malware Attachments That You Need To Avoid
One of the most popular ways of distributing malware is via malicious email attachments poised as invoices, payment recipes, error...
PoetRAT Targeting Public and Private Sector in Azerbaijan
APT groups have been targeting the public sector and other major organizations in Azerbaijan via recent versions of PoetRAT. Notably,...
