March Patch Tuesday: LNK, Microsoft Word Vulnerabilities Get Fixes
Following the unexpectedly long list of fixes included in last month’s Patch Tuesday, March brings an even longer one, albeit...
Security
Years-long malware operation hides njRAT in cracked hacking tools
Malicious actors have been secretly embedding the njRAT remote access trojan in free hacking tools as well as cracks of those...
Rocket Loader skimmer impersonates CloudFlare library in clever scheme
Update: The digital certificate issued for httpsps has been revoked by GlobalSign. Fraudsters are known for using social engineering tricks...
Check Point: coronavirus has become a tool for hacker attacks on users and businesses
According to Check Point Threat Intelligence, more than 4,000 coronavirus-related domains have been registered worldwide since January 2020. 3% of...
Cisco Vulnerable Again; May Lead To Arbitrary Code Execution!
Earlier this year Cisco was in the headlines for the Zero-day vulnerabilities that were discovered in several of its devices...
The United States accused the manager of Group-IB of cybercrime
According to an indictment in a court database, US authorities accuse Nikita Kislitsin, manager of a Russian cybersecurity company Group-IB,...
Durham City, North Carolina Hit by Ransomware Attack
On Friday, The City of Durham, North Carolina suffered a cyberattack wherein Ryuk Ransomware crippled the city's IT systems and...
FuzzBench – Fuzzer Benchmarking As A Service
FuzzBench is a free service that evaluates fuzzers on a wide variety of real-world benchmarks, at Google scale. The goal...
SSRF Sheriff – A Simple SSRF-testing Sheriff Written In Go
This is an SSRF testing sheriff written in Go. It was originally created for the Uber H1-4420 2019 London Live...
Patch Tuesday – March 2020
Let's start off talking about CVE-2020-0688 from last month -- the Microsoft Exchange Validation Key RCE vulnerability. At the time...
Talking the Origins of THOTCON with Founder Nick Percoco
In a recent episode of Rapid7’s podcast, Security Nation, we talked with Nick Percoco, the creator of Chicago-based security conference...
Busting Ghostcat: An Analysis of the Apache Tomcat Vulnerability (CVE-2020-1938 and CNVD-2020-10487)
by: Magno Logan (Information Security Specialist) Discussions surrounding the Ghostcat vulnerability (CVE-2020-1938 and CNVD-2020-10487) found in Apache Tomcat puts it...
Durham, N.C. bull rushed by ransomware; recovery underway
The city of Durham, North Carolina and the government of Durham County have experienced disruptions since a ransomware attack last...
Don’t get fooled again: Fake coronavirus emails impersonate the WHO to deliver FormBook trojan
Fears over the novel coronavirus have triggered mass quarantines, Purell and Clorox shortages and financial market turmoil. As global concerns...
A week in security (March 2 – 8)
Last week on Malwarebytes Labs, we fired up part 1 of our series on child identity theft, asked how well...
International Women’s Day: awareness of stalkerware, monitoring, and spyware apps on the rise
Nine months ago, Malwarbytes recommitted itself to detecting invasive monitoring apps that can lead to the excessive harm of women—most...
Government based hacking groups are attacking Microsoft Exchange Servers
Various government-backed hacking groups and APTs are targeting and exploiting a vulnerability in Microsoft Exchange email servers. The vulnerability was...
Evil SSDP – Spoof SSDP Replies And Create Fake UPnP Devices To Phish For Credentials And NetNTLM Challenge/Response
This tool responds to SSDP multicast discover requests, posing as a generic UPNP device. Your spoofed device will magically appear...
Proton Framework – A Windows Post Exploitation Framework Similar To Other Penetration Testing Tools Such As Meterpreter And Powershell Invader Framework
About Proton FrameworkProton Framework is a Windows post exploitation framework similar to other penetration testing tools such as Meterpreter and...
How to Secure Containers, Applications, and Serverless Environments
This is the final post in our four-part series on security in the cloud. In part one, we discussed the...
Users can now Use 2 Step Verification on their Chrome and Safari Browser
Google has launched a new feature for ensuring users' security. You will now be able to enroll for 2 Factor...
250,000+ Login/Passwords Leaked in The Trident Crypto Fund Data Breach
More than 260,000 customers’ data was compromised online in a gigantic data breach that went down pretty recently.Trident Crypto Fund,...
NTLMRecon – A Tool To Enumerate Information From NTLM Authentication Enabled Web Endpoints
Note that the tool is still under development. Things may break anytime - hence, beta!A fast and flexible NTLM reconnaissance...
HoneyBot – Capture, Upload And Analyze Network Traffic
HoneyBot is a set of scripts and libraries for capturing and analyzing packet captures with PacketTotal.com. Currently this library provides...
