Gaming-related cyberthreats in 2020 and 2021
The video game industry is soaring, not in the least thanks to the lockdowns, which forced people to look for...
Security
LazySign – Create Fake Certs For Binaries Using Windows Binaries And The Power Of Bat Files
Create fake certs for binaries using windows binaries and the power of bat files Over the years, several cool tools...
Process-Dump – Windows Tool For Dumping Malware PE Files From Memory Back To Disk For Analysis
Process Dump is a Windows reverse-engineering command-line tool to dump malware memory components back to disk for analysis. Often malware...
Are you using a Sophos UTM appliance? Be sure it is up to date!
A researcher disclosed technical details of a critical remote code execution vulnerability, tracked as CVE-2020-25223, patched last year. In September,...
LPE zero-day flaw in Razer Synapse allows attackers to take over Windows PCs
A zero-day vulnerability in Razer Synapse could allow threat actors to gain Windows admin privileges by plugging in a Razer...
Memorial Health System forced to cancel surgeries after ransomware attack
Health organization Memorial Health System was hit by a disruptive cyber attack that forced it to cancel surgeries and divert...
Google discloses unpatched Microsoft WFP Default Rules AppContainer Bypass EoP
Google disclosed the details of a Windows ​​AppContainer vulnerability because Microsoft initially had no plans to fix it. Google Project...
The US State Department was Recently Hit by a Cyber Attack
 According to a Fox News correspondent, the US State Department was hit by a cyberattack, and the Department of Defense...
The average price of access to a hacked company in the darknet reached $5,400
Specialists of the Israeli company Kela analyzed more than 1 thousand ads for the sale of initial access to the...
Ransomware on a Charge: Another Wake-Up Call for U.S. Shipping Industry
 As the threat of ransomware attacks increases, the U.S. shipping industry is facing a particularly high resistance in safeguarding its...
Flubot Malware Targets Australians, Spreads Via SMS
 Muddled phone SMSs and phantom calls attack smartphones in a new wave of hoaxes throughout Australia, including the one that...
Pegasus iPhone Hacks Used as Bait in Extortion Scam
 A new extortion fraud attempts to profit from the recent Pegasus iOS spyware attacks to threaten victims to pay a...
Keimpx – Check For Valid Credentials Across A Network Over SMB
keimpx is an open source tool, released under the Apache License 2.0. It can be used to quickly check for...
SQLancer – Detecting Logic Bugs In DBMS
SQLancer (Synthesized Query Lancer) is a tool to automatically test Database Management Systems (DBMS) in order to find logic bugs...
Security Affairs newsletter Round 328
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free...
T-Mobile data breach could be worse than initially thought, 54 million customers impacted
T-Mobile data breach could be worse than initially thought, an update to the investigation reveals that over 54 million individuals...
U.S. State Department was recently hit by a cyber attack
The U.S. State Department was recently hit by a cyber attack, the Department of Defense Cyber Command might have suffered...
New LockFile ransomware gang uses ProxyShell and PetitPotam exploits
A new ransomware gang named LockFile targets Microsoft Exchange servers exploiting the recently disclosed ProxyShell vulnerabilities. A new ransomware gang...
Mozi P2P Malware Targets Netgear, Huawei, and ZTE Network Gateways
 Mozi, a peer-to-peer (P2P) malware known to target internet-of-things devices, has developed new capabilities to target network gateways manufactured by...
Zix: Attackers Increasingly Adopting New Techniques to Target Users
 Cybercriminals are continuously expanding their toolkit by experimenting with new strategies and approaches in order to improve their effectiveness against...
Hacker Rewarded With $500,000 and a CSA Job by Poly Network
 Lately, it has been a turbulence-filled time for Poly Networks. The company creates software to handle the exchange between different...
Database of 70 Million AT&T Users Being Sold on a Hacker Forum
 The same threat actor is selling 70 million AT&T customers' records just days after the T-Mobile data leak. The data...
XLMMacroDeobfuscator – Extract And Deobfuscate XLM Macros (A.K.A Excel 4.0 Macros)
XLMMacroDeobfuscator can be used to decode obfuscated XLM macros (also known as Excel 4.0 macros). It utilizes an internal XLM...
Brutus – An Educational Exploitation Framework Shipped On A Modular And Highly Extensible Multi-Tasking And Multi-Processing Architecture
An educational exploitation framework shipped on a modular and highly extensible multi-tasking and multi-processing architecture. Brutus: an IntroductionLooking for version...
