Republican Party of Texas – 72,596 breached accounts
In September 2021, the Republican Party of Texas was hacked by a group claiming to be "Anonymous" in retaliation for...
threatintel
Scrummage – The Ultimate OSINT And Threat Hunting Framework
VERSION 3.6Code efficiency enhancements and bug fixes for plugins, and improved logging.Significant UI/UX enhancements.Organisation specific settings and configurations, allowing for...
UK newspaper The Telegraph exposed a 10TB database with subscriber data
The UK media outlet The Telegraph has leaked 10 TB of subscriber data after failing to properly secure one of...
LANtenna attack allows exfiltrating data from Air-Gapped systems via Ethernet cables
Boffins devised a new technique, dubbed LANtenna, to exfiltrate data from systems in air-gapped networks using Ethernet cables as a...
pFuzz – Helps Us To Bypass Web Application Firewall By Using Different Methods At The Same Time
pFuzz is an advanced red teaming fuzzing tool which we developed for our research. It helps us to bypass web...
Apache patch a zero-day flaw exploited in the wild
Apache has addressed two vulnerabilities, one of which is a path traversal and file disclosure flaw in its HTTP server...
Unnamed Ransomware gang uses a Python script to encrypt VMware ESXi servers
An unnamed ransomware gang used a custom Python script to target VMware ESXi and encrypt all the virtual machines hosted...
Facebook shoots own foot, hits Instagram and WhatsApp too
Mark Zuckerberg was left counting the personal cost of bad PR yesterday (about $6 billion, according to Bloomberg) on a...
Criminals were inside Syniverse for 5 years before anyone noticed
“A global privacy disaster”, “espionage gold”, and “a state-sponsored wet dream” are just some of the comments one can read...
CarPunk – The Car Hacking Toolkit
CARPUNK IS VERY SIMILAR TO CANghost, ONLY THE DEFFERENCE IS, IT COMES WITH OPTIONS TO ENABLE OR DISABLE INTERFACE AND...
Telco service provider giant Syniverse had unauthorized access since 2016
Syniverse service provider discloses a security breach, threat actors have had access to its databases since 2016 and gained some...
Windows 11 is out. Is it any good for security?
Windows 11, the latest operating system (OS) from Microsoft, launches today, and organizations have begun asking themselves when and if...
Dark web marketplace White House announces end to its operations
The dark web marketplace White House Market shuts down its operation, last week its operators announced that they were retiring....
Misconfigured Apache Airflow servers leak thousands of credentials
Experts discovered many misconfigured Apache Airflow servers exposed online that were leaking sensitive information from prominent tech firms. Apache Airflow is an...
US-CERT Bulletin (SB21-277):Vulnerability Summary for the Week of September 27, 2021
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
BurpCrypto – A Collection Of Burpsuite Encryption Plug-Ins, Support AES/RSA/DES/ExecJs(execute JS Encryption Code In Burpsuite)
Burpcrypto is a collection of burpsuite encryption plug-ins, supporting AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite).Build$ mvn packageUsage中文使用说明Download the precompiled jar...
Neiman Marcus data breach affects millions
Millions of Neiman Marcus customers have had their personal and financial information exposed in a data breach. In a press...
Facebook, WhatsApp, and Instagram are down worldwide, it’s panic online
Users worldwide are experiencing problems while accessing Facebook services, including Instagram and WhatsApp. Users worldwide are not able to access...
Police take a piece out of a ransomware gang, but won’t say which one
One of the world’s ransomware groups appears to be a couple of members short today—and about two million dollars less...
Pottawatomie County paid the ransom to recover its systems
Pottawatomie County restored operations that were suspended after a ransomware attack hit its systems on September 17, 2021. Officials at...
Two ransomware operators were arrested in Kyiv with EUROPOL’s support
Two ransomware operators arrested in Kyiv, Ukraine, that are suspected to have attacked more than 100 companies causing more than...
New APT ChamelGang Targets energy and aviation companies in Russia
ChamelGang APT is a new cyberespionage group that focuses on fuel and energy organizations and aviation industry in Russia ChamelGang...
Bopscrk – Tool To Generate Smart And Powerful Wordlists
bopscrk (Before Outset PaSsword CRacKing) is a tool to generate smart and powerful wordlists for targeted attacks.Included in BlackArch Linux...
Does Cybersecurity Awareness Month actually improve security?
October is Cybersecurity Awareness Month, formerly known as National Cybersecurity Awareness Month. The idea is to raise awareness about cybersecurity,...
