May 2020 Cisco Remote Vulnerabilities Guidance
Cisco has noted a whopping 34 vulnerabilities across two of its remote access and network inspection devices on May 6,...
Security
2FA app weaponized to infect Mac users with Dacls RAT
MacOS users who think they have protected themselves by downloading a particular two-factor authentication application may have actually infected their...
Data privacy law updates eyed by Singapore
In early 2019, Singapore’s data privacy regulators proposed that the country’s data privacy law could use two new updates—a data...
The Security Service of Ukraine (SBU) counted more than 100 cyberattacks on government websites
The SBU has neutralized 103 cyberattacks on information resources of state authorities since the beginning of the year.According to the...
French Cyber security Analyst Claims He Could Access Details Of Corona-Infected Persons Via The Government-Mandated Aarogya Setu App
A French cybersecurity analyst by the pseudonym 'Elliot Alderson' on Twitter claims he could access details of Corona infected people...
Germany has put a Russian “Dmitry Badin” on the international wanted list on suspicion of a cyberattack
The Office of the German Federal Public Prosecutor issued an arrest warrant for a Russian whom they suspect of hacking...
PowerSploit – A PowerShell Post-Exploitation Framework
PowerSploit is a collection of Microsoft PowerShell modules that can be used to aid penetration testers during all phases of...
HiveJack – This Tool Can Be Used During Internal Penetration Testing To Dump Windows Credentials From An Already-Compromised Host
This tool can be used during internal penetration testing to dump Windows credentials from an already-compromised host. It allows one...
How to Increase Your Security Team’s Visibility Within Your Organization—And What Happens When You Do
Security is a multi-faceted responsibility. First, you need visibility into vulnerabilities across your organization. Then, you need to ensure that...
Reverse Engineering a VxWorks OS Based Router
Introduction Embedded devices are a huge and wide world of options for CPU architectures, operating systems and file systems. You...
New Mac variant of Lazarus Dacls RAT distributed via Trojanized 2FA app
This blog post was authored by Hossein Jazi, Thomas Reed and Jérôme Segura. We recently identified what we believe is...
Credit card skimmer masquerades as favicon
Malware authors are notorious for their deceptive attempts at staying one step ahead of defenders. As their schemes get exposed,...
Attackers Exploit Two Vulnerabilities in SaltStack to Publish Arbitrary Control Messages and Much More
CISA has sent warnings to the users regarding two critical vulnerabilities in SaltStack Salt, an open-source remote task and configuration...
Fileless Malware Attacks and How To Fight Them!
It has been crystal clear over these years with the increase in a number of cyber-attacks of an equally unique...
DDoS attacks in Q1 2020
News overview Since the beginning of 2020, due to the COVID-2019 pandemic, life has shifted almost entirely to the Web...
Nexphisher – Advanced Phishing Tool For Linux & Termux
NexPhisher is an automated Phishing tool made for Termux & Linux .The phishing Pages are Taken from Zphisher under GNU...
TorghostNG – Make All Your Internet Traffic Anonymized Through Tor Network
TorghostNG is a tool that make all your internet traffic anonymized through Tor network.Rewritten from TorGhost with Python 3.TorghostNG was...
Why SOAR Is an Essential Cybersecurity Tool for Financial Services Companies
Security in the financial services world remains as essential as ever. It seems news about hackers stealing customer banking data...
Targeted Ransomware Attack Hits Taiwanese Organizations
A new targeted attack has infected several organizations in Taiwan with a new ransomware family, which we have dubbed ColdLock....
Vulnerabilities in two VPNs opened door to fake, malicious updates
Hackers can exploit critical vulnerabilities in PrivateVPN and Betternet – since fixed – to push out fake updates and plant...
‘About Coronavirus’ app locks Android screens with repackaged malware
An existing version of the Android device screen-locking malware SLocker has apparently been copied and repackaged in the form of...
Explained: cloud-delivered security
As a counterpart to security for your assets in the cloud, you may also run into solutions that offer security...
Moscow has denied accusations of stealing coronavirus-related developments
Accusations of the British authorities against Russia of allegedly stealing coronavirus developments by Russian hackers are "typical corona - madness"...
“CursedChrome”, a chrome extension used by hackers to make your browser into a proxy
Security researchers have found a Chrome extension that turns Chrome browsers in proxy bots that enables the hacker to browse...
