Totp-Ssh-Fluxer – Take Security By Obscurity To The Next Level (This Is A Bad Idea, Don’T Really Use This Please)
Some people change their SSH port on their servers so that it is slightly harder to find for bots or...
threatintel
RedWarden – Flexible CobaltStrike Malleable Redirector
RedWarden - Flexible CobaltStrike Malleable Redirector(previously known as proxy2's malleable_redirector plugin) Let's raise the bar in C2 redirectors IR resiliency,...
Russia behind a massive spear-phishing campaign that hit Ukraine
Ukraine warned of a “massive” spear-phishing campaign carried out by Russia-linked threat actors against its government and private businesses. Three...
Experts found an RCE vulnerability in QNAP Q’center
Researchers at cybersecurity firm Shielder discovered a remote code execution on QNAP Q’center through a manipulated QPKG installation package. Researchers...
Russian cybercrime forums launch contests for cryptocurrency hacks
Cybercriminals in Russian underground forums have been invited to take part in competitions for hacking cryptocurrency and NFT. Several Russian...
A week in security (May 31 – June 6)
Last week on Malwarebytes Labs, we looked at an interesting trend in facial recognition technology—hint: it’s a slow fade, the...
WhatsApp Hijack Scam, Here’s All You Need To Know
By posing as a friend and asking for SMS security codes, scammers are continuing to target WhatsApp users and hijack...
Google Meet’s Server Down Globally, Twitter Flooded With Complaints
Since worldwide lockdown and restrictions over workplaces, schools and universities have been imposed, people are facing several problems. However, it...
TeamTNT Targeting Organizations Via Cryptojacking Malware
A cybercriminal gang known as TeamTNT has been ramping up its cloud-focused cryptojacking operations for some time now. TeamTNT operations...
Ransomware Hits News Stations in US, Affects Local Broadcast
Two local television news stations have been shut down since Thursday, experts say it because of a ransomware attack on...
Fake Oximeter Apps For Smart Devices, Here’s How To Check If It’s Safe Or Not
In recent days the demand for oximeters has gone up owing to the deadly second wave of Covid-19 in India....
Krane – Kubernetes RBAC Static Analysis And Visualisation Tool
Krane is a simple Kubernetes RBAC static analysis tool. It identifies potential security risks in K8s RBAC design and makes...
Typodetect – Detect The Active Mutations Of Domains
This tool gives blue teams, SOC's, researchers and companies the ability to detect the active mutations of their domains, thus...
Chinese SharpPanda APT developed a new backdoor in the last 3 years
Check Point Research (CPR) said that the Chinese APT group SharpPanda spent three years developing a new backdoor to spy...
Security Affairs newsletter Round 317
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
REvil Ransomware spokesman releases an interview on recent attacks
The REvil ransomware operators said in an interview on the “Russian OSINT” Telegram channel that they accidentally targeted United States-based...
US arrested Latvian woman who developed part of Trickbot malware
The US Department of Justice (DOJ) announced the arrest of a Latvian woman for her alleged role in the development...
Cryptocurrency Addiction: Here’s Alll You Need to Know!
Cryptocurrency addiction is defined as compulsive cryptocurrency trading and related behaviors that have negative implications in a person's life. Cryptocurrency...
Hacking Group DarkSide Attacks Colonial Pipeline With a Ransomware
Hacking group DarkSide, which was behind the recent ransomware attack on Colonial Pipeline, operates in a much common way than...
Serious Flaws Identified in CODESYS Industrial Automation Software
Cybersecurity researchers at Russian cybersecurity firm Positive Technologies discovered as many as ten critical flaws impacting CODESYS automation computer software...
Hackers Reportedly Target Cox Media Group Stations
‘Cox Media Group’, is one of the largest media conglomerates in the United State, earlier today, the organization has to...
VMware Becomes New Target of FreakOut Malware
A new dangerous "Freakout" alias malware campaign has just targeted unpatched Linux workstations that handle Network Attached Storage (NAS) and...
Shepard – In Progress Persistent Download/Upload/Execution Tool Using Windows BITS
This is an IN PROGRESS persistance tool using Windows Background Intelligent Transfer Service (BITS). Functionality: File Download, File Exfiltration, File...
BlackCocaine Ransomware, a new malware in the threat landscape
Cyble researchers investigated a recent attack on an India-based IT firm that was hit by the BlackCocaine Ransomware gang. Recently Cyber researchers for Cyble...
