Dispelling Zoom Bugbears: What You Need to Know About the Latest Zoom Vulnerabilities
Wow, this past week has been a pretty long year for Zoom.As the COVID-19 global pandemic moved the whole knowledge-working...
threatintel
SOC Automation: Accelerate Threat Detection and Response with SIEM and SOAR
At Rapid7, we have the opportunity to talk to security professionals from all types of organizations. Whether we’re conversing with...
GDPR: An impact around the world
A little more than one month after the European Union enacted the General Data Protection Regulation (GDPR) to extend new...
Hackers use fake Zoom domains to spread malware
The coronavirus pandemic is forcing many people around the world to work remotely. This has significantly increased the popularity of...
Zeus Sphinx Malware Reappears amid Coronavirus Phishing Scams
In this particular scam, the recipients receive phishing emails asking them to donate money by filling forms for coronavirus or...
Hackers use Bill Gates themed video to sell off Ponzi Crypto Scheme
Recently, tens of YouTube accounts were hacked to broadcast a Ponzi cryptocurrency scheme by renaming the hacked YouTube accounts as...
FProbe – Take A List Of Domains/Subdomains And Probe For Working HTTP/HTTPS Server
FProbe - Fast HTTP ProbeInstallationGO111MODULE=on go get -u github.com/theblackturtle/fprobeFeaturesTake a list of domains/subdomains and probe for working http/https server.Optimize RAM...
MSSQLi-DUET – SQL Injection Script For MSSQL That Extracts Domain Users From An Active Directory Environment Based On RID Bruteforcing
SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing. Supports various...
How to Measurably Reduce False Positive Vulnerabilities by Up To 22%
If you’ve been in the security industry for any amount of time, you’re no stranger to false positives. They show...
Raccoon Stealer’s Abuse of Google Cloud Services and Multiple Delivery Techniques
With additional insights/analysis from Augusto Remillano II and Don Ovid Ladores Raccoon emerged as Malware as a Service (MaaS) last...
Important tips for safe online shopping post COVID-19
As more and more countries order their citizens inside in response to COVID-19, online shopping—already a widespread practice—has surged in...
Hackers switched from direct theft of money to gaining control over the infrastructure of companies
According to the report by Rostelecom Solar JSOC, hackers changed the focus of attacks, switching from direct theft of money...
A Rise in New Cyberspying by a Suspected Chinese Group Detected By a U.S Cybersecurity Firm
A surge in new cyberspying by a speculated Chinese group that dates as far back as to late January was...
This COVID-19 Website By Google Tells You All You Need To Know About Coronavirus!
The first step anyone took after hearing the first of the Coronavirus was ‘Googling’ it. Google has been a solution,...
WhatsApp’s Latest Feature will Let Users Verify Forwarded Messages on Google
Owing to the lockdown due to the outbreak of the global pandemic Covid-19, people are once again resorting to their...
Holy water: ongoing targeted water-holing attack in Asia
On December 4, 2019, we discovered watering hole websites that were compromised to selectively trigger a drive-by download attack with...
Awspx – A Graph-Based Tool For Visualizing Effective Access And Resource Relationships In AWS Environments
auspex noun: An augur of ancient Rome, especially one who interpreted omens derived from the observation of birds.awspx is a...
Pulsar – Network Footprint Scanner Platform – Discover Domains And Run Your Custom Checks Periodically
Pulsar is an automated network footprint scanner for Red Teams, Pentesters and Bounty Hunters. Its focused on discovery of organization...
A Chat with Jonathan Cran About Intrigue and Security in the COVID-19 Pandemic
In a recent episode of Rapid7’s podcast, Security Nation, we talked with Jonathan Cran, Head of Research at Kenna Security....
Sale of Dharma ransomware source code draws hackers’ scrutiny, but the price is right
An unidentified party has reportedly placed the source code for Dharma ransomware up for sale on at least two Russian...
Lock and Code S1Ep3: Dishing on data privacy with Adam Kujawa
This week on Lock and Code, we discuss the top security headlines generated right here on Labs and around the...
Security Experts say number of network nodes in the Russian Federation accessible via RDP
Positive Technologies experts said that the number of network nodes in the Russian Federation accessible via the Remote Desktop Protocol...
6 Simple Tricks to Prevent your Smartphone from Hackers
If hackers trespass into your smartphones, they can send fake emails, fake alerts using your camera, and even control user...
CVE-2020-0796 – Windows SMBv3 LPE Exploit #SMBGhost
Windows SMBv3 LPE Exploit AuthorsDaniel García Gutiérrez (@danigargu) Manuel Blanco Parajón (@dialluvioso_) Referenceshttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0796 https://www.synacktiv.com/posts/exploit/im-smbghost-daba-dee-daba-da.html https://www.fortinet.com/blog/threat-research/cve-2020-0796-memory-corruption-vulnerability-in-windows-10-smb-server.html#.Xndfn0lv150.twitter https://www.mcafee.com/blogs/other-blogs/mcafee-labs/smbghost-analysis-of-cve-2020-0796/ http://blogs.360.cn/post/CVE-2020-0796.html https://blog.zecops.com/vulnerabilities/vulnerability-reproduction-cve-2020-0796-poc/ Download CVE-2020-0796...
