Russian Telegram Accounts Hacked by Intercepting One Time Password (OTP)
According to a firm Group-IB, in the last few weeks a dozen Russian entrepreneurs saw their Telegram accounts hacked. And...
Security
Nginx Log Check – Nginx Log Security Analysis Script
Nginx Log Security Analysis ScriptFeaturesStatistics Top 20 AddressSQL injection analysisScanner alert analysisExploit detectionSensitive path accessFile contains attackWebshellFind URLs with response...
EXIST – Web Application For Aggregating And Analyzing Cyber Threat Intelligence
EXIST is a web application for aggregating and analyzing CTI (cyber threat intelligence).EXIST is written by the following software.Python 3.5.4Django...
Intel Chips Now Exploitable? Sensitive Data Could Be Compromised By Reducing Chips’ Voltage!
Hackers can now allegedly, exploit Intel chips via voltage alterations which could lead to messed up flow of electricity only...
Haaukins – A Highly Accessible And Automated Virtualization Platform For Security Education
Haaukins is a highly accessible and automated virtualization platform for security education, it has three main components (Docker, Virtualbox and...
CyberRange – The Open-Source AWS Cyber Range
This CyberRange project represents the first open-source Cyber Range blueprint in the world.This project provides a bootstrap framework for a...
Dread Zeppelin: Ransomware targets health care and IT sectors in U.S., Europe
Cybercriminals have spun off a ransomware that was originally known to target Russian organizations into a new malicious encryptor used...
New Women in CyberSecurity (WiCyS) veterans program aims to bridge skills gap, diversify sector
The cybersecurity industry has a problem: We have zero unemployment rate. Or so we’re told. With experts predicting millions of job...
5 tips for building an effective security operations center (SOC)
Security is more than just tools and processes. It is also the people that develop and operate security systems. Creating...
Bitcoin fraud worth $ 359M caught by the Brazil Police
The Brazilian police have found what is said to be an alleged Bitcoins fraud that stole $ 359M from the...
A cyber- security provider discovers Microsoft, LinkedIn and many others becoming the most preferred targets for phishing
Akamai Technologies, Inc. an American content delivery network as of late discovered various issues, like the DDoS attacks, credential stuffing,...
Romanian cybercriminals sentenced to 20 years in prison for developing malware
Two Romanian citizens were sentenced to imprisonment for the development and operation of the Bayrob malware, which infected more than...
Maze Ransomware Exfiltrated Data of Southwire Firm, Threatens to Publish if Ransom Not Paid
Maze ransomware, a variant of Chacha Ransomware that has been leading the charge of various ransomware attacks lately, now claimed...
Dsiem – Security Event Correlation Engine For ELK Stack
Dsiem is a security event correlation engine for ELK stack, allowing the platform to be used as a dedicated and...
Exploitivator – Automate Metasploit Scanning And Exploitation
This has only been tested on Kali.It depends on the msfrpc module for Python, described in detail here: https://www.trustwave.com/Resources/SpiderLabs-Blog/Scripting-Metasploit-using-MSGRPC/Install the...
Metasploit Wrap-Up
Powershell Express Delivery The web_delivery module is often used to deliver a payload during post exploitation by quickly firing up...
The Most Commonly Exploited Web Application Vulnerabilities in a Production Environment
Some of the most common web application vulnerabilities tend to be the most exploited because they are difficult to spot,...
More than a Dozen Obfuscated APT33 Botnets Used for Extreme Narrow Targeting
This blog was originally published on November 13, 2019. By Feike Hacquebord, Cedric Pernet, and Kenney Lu The threat group...
Krampus-3PC malware redirects iPhone users to phishing pages
iPhone users who visited certain publishing websites that were compromised by a malvertising campaign may have gotten an unwelcome visit...
Snatch ransomware encrypts files in Safe Mode to thwart security software
A cybercriminal organization has been attacking Windows users with a hybrid ransomware and data stealer program that encrypts machines while...
Company sued for allegedly hijacking Facebook accounts to serve ads
In a lawsuit filed yesterday, Facebook is accusing a Hong Kong-based company of infecting individuals with malware in order to...
U.S. charges alleged members of “Evil Corp” cybercrime group for Zeus and Dridex campaigns
The U.S. today announced legal and regulatory action against the powerhouse cybercriminal group Evil Corp, filing hacking and bank fraud...
Tetris game app used to distribute PyXie Python RAT
A new remote access trojan whose name reminds one of a fairytale and not the potential nightmare it could bring...
Threat spotlight: The curious case of Ryuk ransomware
Ryuk. A name once unique to a fictional character in a popular Japanese comic book and cartoon series is now...
