Threat Report Portugal: Q1 2021
The Threat Report Portugal: Q1 2021 compiles data collected on the malicious campaigns that occurred from January to March, Q1, of 2021....
threatintel
Chinese APT Actors Attack Russian Defense In An Espionage Attack
An earlier anonymous backdoor malware, called PortDoor, is probably being used by Chinese APT (advanced persistent threat) hackers to attack...
Microsoft Discovered Several Security Flaws in IoT Operating Systems
Security researchers at Microsoft recently uncovered a series of critical memory allocation vulnerabilities in the Internet of Things (IoT). Microsoft...
Babuk Quits Ransomware Encryption, Focuses on Data-Theft Extortion
The Babuk ransomware group has decided to close the affiliate program and switch to an extortion model that does not...
Toxic Eye Malware is Utilizing Telegram
As of 2021, numerous users left WhatsApp for messaging to various other applications that promised improved data protection only after...
First Horizon Bank Online Accounts Hacked to Steal Customers’ Funds
The financial institution, First Horizon Corporation reported that earlier this month some of its customers’ online banking accounts have been...
WinPmem – The Multi-Platform Memory Acquisition Tool
The WinPmem memory acquisition driver and userspaceWinPmem has been the default open source memory acquisition driver for windows for a...
Storm-Breaker – Tool Social Engineering (Access Webcam, Microphone, OS Password Grabber And Location Finder) With Ngrok
Tool Social Engineering (Access Webcam, Microphone, OS Password Grabber And Location Finder) With NgrokFeatures:Get Device Information Without Any Permissions Access...
WeSteal, a shameless commodity cryptocurrency stealer available for sale
The bold author of a new cryptocurrency stealer, dubbed WeSteal, is promising its customers a leading way to make money...
Security Affairs newsletter Round 312
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
Hacking a Tesla Model X with a DJI Mavic 2 drone equipped with a WIFI dongle
A security duo has demonstrated how to hack a Tesla Model X’s and open the doors using a DJI Mavic...
Cloud hosting provider Swiss Cloud suffered a ransomware attack
Swiss cloud hosting provider Swiss Cloud has suffered a ransomware attack that seriously impacted its server infrastructure. On April 27...
AgeLocker ransomware operation targets QNAP NAS devices
Taiwanese vendor QNAP is warning its customers of AgeLocker ransomware attacks on their NAS devices. Crooks behind the AgeLocker ransomware...
Hotbit Shut Down all Services After a Cyberattack
After an alleged cyberattack on Thursday, cryptocurrency trading site Hotbit has shut down all of its services. A note on...
Banca di Credito Cooperativo Bank Suffers a Major Cyber Attack
A suspected cyber-attack by hackers has paralyzed the operations of the 188 branches of the Banca di Credito Cooperativo (Bcc)...
Hackers Attack Apple Prior to Launch Event, Demand Ransom
On the day when Apple was ready to declare a new series of products at its Spring Load Event, there...
Hacking Group That Targeted D.C. Police Briefly Posts Internal Police Files
Hackers who allegedly gained access to the D.C. police department's computer network briefly posted the personnel files of at least...
New FiveHands Ransomware Deploy Into SonicWall Internal System
Earlier this year, money-oriented cybercriminals leveraged a zero-day vulnerability that has been introduced by SonicWall in its Secure Mobile Access...
Nginxpwner – Tool to look for common Nginx misconfigurations and vulnerabilities
Nginxpwner is a simple tool to look for common Nginx misconfigurations and vulnerabilities.Install:cd /optgit clone https://github.com/stark0de/nginxpwnercd nginxpwnerchmod +x install.sh./install.sh Usage:Target...
Paragon – Red Team Engagement Platform With The Goal Of Unifying Offensive Tools Behind A Simple UI
Paragon is a Red Team engagement platform. It aims to unify offensive tools behind a simple UI, abstracting much of...
Flaws in the BIND software expose DNS servers to attacks
The Internet Systems Consortium (ISC) released updates for the BIND DNS software to patch several denial-of-service (DoS) and potential RCE...
Babuk crew announced it will stop ransomware attacks
Babuk ransomware operators shut down their affiliate program and announced to stop using ransomware, the group plans to move on...
China-linked APT uses a new backdoor in attacks at Russian defense contractor
China-linked APT group targets Russian nuclear sub designer with an undocumented backdoor A China-linked cyberespionage group targets a Russian defense...
Researchers sound the alarm after GitHub floats stricter policies
GitHub CEO Nat Friedman speaks at GitHub Universe 2020. GitHub on Thursday solicited the comments of the security research community...
