First Active Attack Exploiting CVE-2019-2215 Found on Google Play, Linked to SideWinder APT Group
by Ecular Xu and Joseph C Chen We found three malicious apps in the Google Play Store that work together to...
Security
The Russian Embassy in Sweden responded to the Swedish Minister’s statement about “Russian trolls”
The Russian Embassy in Sweden reacted to an interview with Swedish Minister of Energy and Information Technology Anders Igeman to...
Military Personnel and Veterans – faced the worst hit by scammers loosing 405 Million dollars since 2012
It's easy to trick anyone in a financial scam but hackers and scammers found their favorite victims in militants and...
Tishna – Complete Automated Pentest Framework For Servers, Application Layer To Web Security
Complete Automated pentest framework for Servers, Application Layer to Web SecurityInterfaceSoftware have 62 Options with full automation and can be...
AWS Report – Tool For Analyzing Amazon Resources
AWS Report is a tool for analyzing amazon resources.FeaturesSearch iam users based on creation dateSearch buckets publicSearch security group with...
The Internet isolation law will save the Russian Federation from isolation from the World Wide Web
In 2019, Russia took a number of measures to ensure the security of the information sphere, which in recent years...
Google Chrome Extension, Shitcoin Wallet found stealing passwords and crypto-wallet keys
MyCrypto platform, reported that Shitcoin Wallet, a Google Chrome extension was injecting JavaScript code on web pages , in order...
Warning! Ireland’s National Cyber Security Strategy; Fight Against Cyber-Crime
Ireland is all set to fight cyber-crime with its recently updated “National Cyber Security Strategy” which is way ahead of...
Email Server of Special Olympics of New York Hacked; Later Used To Launch a Phishing Campaign
A nonprofit organization committed towards competitive athletes with intellectual inabilities, The Special Olympics of New York as of late at...
WindowsFirewallRuleset – Windows Firewall Ruleset Powershell Scripts
About WindowsFirewallRulesetWindows firewall rulles organized into individual powershell scripts according to:Rule groupTraffic directionIP version (IPv4 / IPv6)Further sorted according to...
S3Tk – A Security Toolkit For Amazon S3
A security toolkit for Amazon S3Another day, another leaky Amazon S3 bucket— The Register, 12 Jul 2017Don’t be the... next......
New Magecart skimmers practice steganography, data transfer via WebSocket
A researcher has discovered a pair of new Magecart-style web skimmers, each one featuring an evasion technique that’s not typically...
Travelex sidelines online financial services following malware discovery
Foreign exchange financials company Travelex has suspended its UK-based digital services offline since New Year’s Eve, following the discovery of...
How not to buy drugs on the Internet
Disclaimer: This post is satirical in nature and meant to educate on the proliferation of scams, misinformation, and traps set...
Indian Security Researcher Finds Starbucks API Key Exposed on GitHub
Developers at Starbucks left an API (Application Programming Interface) key exposed to hackers with no password protection that could have...
SysWhispers – AV/EDR Evasion Via Direct System Calls
SysWhispers helps with evasion by generating header/ASM files implants can use to make direct system calls.All core syscalls are supported...
Kamerka GUI – Ultimate Internet Of Things/Industrial Control Systems Reconnaissance Tool
Ultimate Internet of Things/Industrial Control Systems reconnaissance tool.Powered by Shodan - Supported by Binary Edge & WhoisXMLAPIwriteup - https://medium.com/@woj_ciech/hack-the-planet-with-%EA%93%98amerka-gui-ultimate-internet-of-things-industrial-control-systems-5ff7d9686b29Demo -...
Attackers sink their meathooks into Landry’s restaurants’ payment card data
The Houston-based steakhouse, restaurant and hospitality company Landry’s, Inc. has advised customers of a point-of-sale malware attack that stole payment...
New evasion techniques found in web skimmers
For a number of years, criminals have been able to steal credit card details from unaware online shoppers without attracting...
XSpear v1.3 – Powerfull XSS Scanning And Parameter Analysis Tool
XSpear is XSS Scanner on ruby gemsKey featuresPattern matching based XSS scanningDetect alert confirm prompt event on headless browser (with...
AVCLASS++ – Yet Another Massive Malware Labeling Tool
AVCLASS++ is an appealing complement to AVCLASS , a state-of-the-art malware labeling tool.OverviewAVCLASS++ is a labeling tool for creating a...
7 Vulnerability Risk Management Resolutions To Consider in the New Year
It’s that time of year again, when people start making personal resolutions to better themselves in the new year. We...
Seattle- based Wyze alleged of data breach: Unpaired all devices from Google Assistant and Alexa
Seattle-based smart home appliance maker Wyze, which is popular for selling its products cheaper than its competitors, has been accused...
SQLMap v1.4 – Automatic SQL Injection And Database Takeover Tool
SQLMap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and...
