NFT Collector Scammed into Buying Fake Banksy Bidding
A hacker compromised a site of famed street artist Banksy and sold an NFT (non-fungal token) of artist's art for...
Security
The largest banks in Russia were subjected to a large-scale DDoS attack
A new large-scale DDoS attack carried out late in the evening on September 2 led to the system failure of...
Irish Regulator Fines WhatsApp $266 Million for Breaching EU Privacy Regulations
Facebook-owned WhatsApp has been directed to pay a 225 million euros ($266 million) fine for violating the EU’s General Data...
TIGMINT – OSINT (Open Source Intelligence) GUI Software Framework
An OSINT (Open Source Intelligence) software framework with an objective of making cyber investigations more convinient by implementing abstraction mechanisms...
Penelope – Shell Handler
Penelope is an advanced shell handler. Its main aim is to replace netcat as shell catcher during exploiting RCE vulnerabilities....
A server of the Jenkins project hacked by exploiting a Confluence flaw
The development team behind the Jenkins server disclose a security breach, threat actors deployed a cryptocurrency miner on one of its...
Ragnar Locker gang threatens to leak data if victim contacts law enforcement
The Ragnar Locker ransomware operators threaten to leak stolen data if the victims attempt to contact law enforcement agencies. The...
ProtonMail logged IP address of French activist after foreign request approved by Swiss authorities
A police report revealed that the popular encrypted email service provider ProtonMail shared the IP address of a French activist with the...
TrickBot gang developer arrested at the Seoul international airport
A Russian man accused of being a member of the infamous TrickBot gang was arrested while trying to leave South...
A week in security (August 30 – September 5)
Last week on Malwarebytes Labs ProxyToken: another nail-biter from Microsoft ExchangeMacs turn on apps signed by Symantec, treat them as...
Ransomware Attacks Increased Exponentially in 2021
The growing threat of ransomware has been highlighted by NCC Group's Research Intelligence and Fusion Team (RIFT) analysis. Between January-March...
This NPM Package with Millions of Weekly Downloads Patched a RCE Flaw
A critical remote code execution (RCE) flaw has been fixed in the popular NPM package "pac-resolver." Developer Tim Perry discovered the...
Hackers Exploit Camera Vulnerabilities To Spy On Parents
Various zero day vulnerabilities in home baby monitor could be compromised that lets threat actors hack into camera feed and...
Mozi Botnet Creators Arrested by Chinese Law Enforcement Authorities
Cybersecurity researchers from the Chinese information security firm Netlab Qihoo 360 reported that at the beginning of this year the...
More than 60,000 Parked Domains Were Vulnerable to AWS Hijacking
MarkMonitor, a domain registrar, had left over 60,000 parked domains susceptible to domain hijacking.MarkMonitor, now part of Clarivate, is a...
packetsifterTool – A Tool To Aid Analysts In Sifting Through A Packet Capture (Pcap) To Find Noteworthy Traffic
PacketSifter is a tool to perform batch processing of PCAP data to uncover potential IOCs.Simply initializePacketSifter with your desired integrations...
Nettacker – Automated Penetration Testing Framework
OWASP Nettacker project is created to automate information gathering, vulnerability scanning and eventually generating a report for networks, including services,...
Netgear addresses severe security flaws in 20 of its products
Netgear has released security updates to address high-severity vulnerabilities affecting several of its smart switches used by businesses. Netgear has...
Malware found pre-installed in cheap push-button mobile phones sold in Russia
Security researcher ValdikSS found malware preinstalled in four low-budget push-button mobile phones available for sale on Russian e-stores. A Russian...
FBI IC3 warns of a spike in sextortion attacks
The FBI Internet Crime Complaint Center (IC3) warns of a spike in sextortion attacks since the beginning of 2021 that...
Pacific City Bank hit by AVOS Locker Ransomware
Pacific City Bank was hit by AVOS Locker Ransomware operators, the gang claims to have stolen sensitive file from the...
Surge in Sextortion Attacks Cost Targeted Users $8 This Year
The FBI IC3 (Internet Crime Complaint Center) raised an alert about a great surge in sextortion complaints since January 2021,...
Microsoft Links SolarWinds Serv-U SSH 0-Day Attack to a Chinese Hacking Group
Microsoft Threat Intelligence Center has published technical facts regarding a now-patched, 0-day remote code execution exploit affecting SolarWinds Serv-U managed...
Babuk Ransomware Full Source Code Leaked On A Russia-Speaking Hacking Forum
The complete source code for the Babuk ransomware has been leaked by a threat actor on a Russian-speaking hacking forum,...
