Subfinder – A Subdomain Discovery Tool That Discovers Valid Subdomains For Websites
subfinder is a subdomain discovery tool that discovers valid subdomains for websites by using passive online sources. It has a...
threatintel
Hackers Exploit Vulnerabilities in Pulse VPN and Android Devices to Launch Heavy Cyberattack
The vulnerability named CVE-2019-1150 has affected Pulse VPN's network and is regarded as highly 'severe.' Whereas vulnerability named CVE-2019-2215 targets...
The Russian quality system (Roskachestvo) gave recommendations on protecting data in social networks
Scammers in social networks use social engineering techniques to hack a user account. In this regard, Roskachestvo experts recommend setting...
Corona Impacts Amazon; More Than One Million Products Banned
The e-commerce giant has finally started taking steps to secure against the corona epidemic by banning more than one million...
Facebook Sues Data Analytics Firm for Improperly Harvesting User Data
On Thursday, Facebook filed a federal lawsuit in California Court against OneAudience, a New Jersey-based marketing firm mainly involved in...
Cyber Flashing- Another Horrendous Way of Sexual Assault Via The Internet!
Of all the horrible things a pervert could do using the cyber means, Cyber Flashing is by far the most...
Extended-SSRF-Search – Smart SSRF Scanner Using Different Methods Like Parameter Brute Forcing In Post And Get…
This tool search for SSRF using predefined settings in different parts of a request (path, host, headers, post and get...
IoTGoat – A Deliberately Insecure Firmware Based On OpenWrt
The IoTGoat Project is a deliberately insecure firmware based on OpenWrt. The project’s goal is to teach users about the...
Domen toolkit gets back to work with new malvertising campaign
Last year, we documented a new social engineering toolkit we called “Domen” being used in the wild. Threat actors were...
Bretagne Télécom recovered 30 TB data in a ransomware attack by DoppelPaymer
Bretagne Télécom, a cloud service provider was hacked by DoppelPaymer, ransomware that exploited CVE-2019-19781 vulnerability in unpatched servers.Bretagne Télécom is...
Hackers launch DDoS Attacks to Target Australian Banks
Hackers threatening banks in Monero to pay large amounts of money, and if the demands are not met, hackers have...
Polyshell – A Bash/Batch/PowerShell Polyglot!
PolyShell is a script that's simultaneously valid in Bash, Windows Batch, and PowerShell (i.e. a polyglot).This makes PolyShell a useful...
Mouse Framework – An iOS And macOS Post Exploitation Surveillance Framework That Gives You A Command Line Session With Extra Functionality Between You And A Target Machine Using Only A Simple Mouse Payload
About Mouse FrameworkMouse Framework is an iOS and macOS post exploitation surveillance framework that gives you a command line session...
Mac adware is more sophisticated and dangerous than traditional Mac malware
As the data revealed in our State of Malware report showed, Mac threats are on the rise, but they are...
Stalkerware and online stalking are accepted by Americans. Why?
Despite warnings from domestic abuse networks, privacy rights advocates, and a committed faction of cybersecurity vendors, Americans may be accepting...
Security is Clearview’s top priority?
Clearview AI an American technology company was, as of late breached as hackers figured out how to exploit a security...
Are your rewards and loyalty points getting less? You might want to take a look!
The universe is lazy, everything that occurs follows the principle of least action. It should be no surprise that living...
Police found Ukrainian hackers who insulted Greta Thunberg in Odessa
Attackers broke into the terminal of the Odessa airport and scolded the eco-activist.Law enforcement authorities in Odessa (Ukraine) said that...
Roaming Mantis, part V
Kaspersky has continued to track the Roaming Mantis campaign. The group’s attack methods have improved and new targets continuously added...
Multi-Juicer – Run Capture The Flags And Security Trainings With OWASP Juice Shop
Running CTFs and Security Trainings with OWASP Juice Shop is usually quite tricky, Juice Shop just isn't intended to be...
Progress-Burp – Burp Suite Extension To Track Vulnerability Assessment Progress
Burp Suite extension to track vulnerability assessment progress.Features Capture items (unique requests) from the Burp Suite tools (Proxy, Repeater, Target)....
How to Define Business Value for Security Programs
One prominent area where security programs often struggle is when the security team must demonstrate the business outcomes achieved for...
Fraudsters cloak credit card skimmer with fake content delivery network, ngrok server
Threat actors love to abuse legitimate brands and infrastructure—this, we know. Last year we exposed how web skimmers had found...
WhatsApp and Telegram Group Links Leaked Online
A security researcher recently discovered that a lot of WhatsApp and Telegram Group invite links that may not be up...
