Microsoft finds a flaw in macOS, dubbed Shrootless (CVE-2021-30892), that can allow attackers to bypass System Integrity Protection (SIP). Microsoft discovered a...
A vulnerability in the popular the OptinMonster plugin allows unauthorized API access and sensitive information disclosure. A high-severity vulnerability (CVE-2021-39341)...
HTTPUploadExfil is a (very) simple HTTP server written in Go that's useful for getting files (and other information) off a...
ESET researchers discovered a previously undescribed loader for Windows binaries, tracked as Wslink, that runs as a server and executes...
AbstractEmu is a new Android malware that can root infected devices to take complete control and evade detection with different tricks. Security...
Ranzy Locker ransomware emerged in late 2020, when the variant began to target victims in the United States. According to a flash alert issued...
German authorities have identified a Russian man named Nikolay K. who is suspected to be a prominent member of the...
Dumping revelant information on compromised targets without AV detection DPAPI dumpingLots of credentials are protected by DPAPI. We aim at...
Unlike traditional malware, which relies on a file being written to a disk, fileless malware is intended to be memory...
Threat actors have stolen $130 million worth of cryptocurrency assets from the Cream Finance decentralized finance (DeFi) platform. C.R.E.A.M. Finance...
During the 2021 edition of the SAS conference, I had the pleasure of delivering a workshop focused on reverse-engineering Go...
Security firm Avast released today decryptors for AtomSilo and LockFile ransomware that allow victims to recover their files for free....
Grief ransomware operators claim to have compromised computer systems at US National Rifle Association (NRA) and added it to their...
Download Clash If you like the site, please consider joining the telegram channel or supporting us on Patreon using the...
Researchers from cybersecurity firm Avast released a decryption tool for Babuk ransomware that allows victims to recover their files for...
I’m proud to announce the release of the 9th edition of the ENISA Threat Landscape (ETL) on the state of...
Have you ever had someone run up to you in the street and insist you take their free knife? I...
On two consecutive days Apple has released a few important patches. iOS 14.8.1 comes just a month after releasing iOS...
Bruteforcing on Hidden parameters to find SSRF vulnerability using GET and POST MethodsNOTELorsrf has been added to scant3r with useful...
North Korea-linked Lazarus APT group is extending its operations and started targeting the IT supply chain on new targets. North...
A cyberattack has disrupted gas stations from the National Iranian Oil Products Distribution Company (NIOPDC) across Iran. A cyber attack...
For more than four years, the Global Research and Analysis Team (GReAT) at Kaspersky has been publishing quarterly summaries of...
Dark HunTOR: Police corps across the world have arrested 150 individuals suspected of buying or selling illicit goods on the...
This webapp is a browser and desktop password manager compatible with KeePass databases. It doesn't require any server or additional...
