Momentum botnet spotted in the wild
A new botnet dubbed Momentum has been found targeting Linux systems running on a variety of different processors and pushing...
threatintel
Building a Daily Threat Simulation Tool with Todd Beebe
In the latest episode of our podcast, Security Nation, we sat down to talk with Todd Beebe about the automated...
New Consumer Online Privacy Rights Act (COPRA) would empower American users
Despite the already dizzying number of comprehensive data privacy proposals before the US Senate—nearly 10 have been introduced since mid-2018—yet...
In Berlin, Russian and German scientists discussed the danger of smart gadgets
By December 15, on behalf of President Vladimir Putin, the Russian government should prepare a Federal project "Artificial intelligence", which...
nodeCrypto v2.0 – Ransomware Written In NodeJs
nodeCrypt is a linux Ransomware written in NodeJs that encrypt predefined files.This project was created for educational purposes, you are...
Pbtk – A Toolset For Reverse Engineering And Fuzzing Protobuf-based Apps
Protobuf is a serialization format developed by Google and used in an increasing number of Android, web, desktop and more...
Mac threat detections on the rise in 2019
Conventional wisdom has been that, although not invulnerable to cyberthreats (as some old Apple ads would have you believe), Macs...
A week in security (December 9 – 15)
Last week on Malwarebytes Labs, we cautioned readers against purchasing potentially privacy-invasive, cyber-insecure smart doorbells, warned about a new credit...
State Bank of India Issues Warning of Juice Jacking
In recent months there has been a rise in cyber-frauds with people losing money on online payment or digital transactions....
ATM Attacks-Know how AtMs cab be hacked under 20 minutes!!!
Want to know something interesting and alarming? A research report published last year revealed that most ATM's can be hacked...
Online Payments for Water Services Intercepted By Hackers
The City of Waco warns residents that their online payments for water services may have been impeded by hackers who...
TheTHE – Simple, Shareable, Team-Focused And Expandable Threat Hunting Experience
TheTHE is an environment intended to help analysts and hunters over the early stages of their work in an easier,...
Automating Application Security Testing Within Your Atlassian Bamboo Pipelines
This blog post is part three of our ongoing Automation with InsightAppSec series. Make sure to check out part one...
DDoS Attacks and IoT Exploits: New Activity from Momentum Botnet
by Aliakbar Zahravi We recently found notable malware activity affecting devices running Linux, a platform that has battled numerous issues...
Rambler claimed the rights to the Nginx web server
Rambler Group claimed a violation of its exclusive copyright on the Nginx web server, which was developed by a former...
New Orleans: Mayor Declares State of Emergency after a Cyberattack
The city of New Orleans after being hit by a cyberattack, declared a state of emergency wherein the employees and...
Russian Telegram Accounts Hacked by Intercepting One Time Password (OTP)
According to a firm Group-IB, in the last few weeks a dozen Russian entrepreneurs saw their Telegram accounts hacked. And...
Nginx Log Check – Nginx Log Security Analysis Script
Nginx Log Security Analysis ScriptFeaturesStatistics Top 20 AddressSQL injection analysisScanner alert analysisExploit detectionSensitive path accessFile contains attackWebshellFind URLs with response...
EXIST – Web Application For Aggregating And Analyzing Cyber Threat Intelligence
EXIST is a web application for aggregating and analyzing CTI (cyber threat intelligence).EXIST is written by the following software.Python 3.5.4Django...
Intel Chips Now Exploitable? Sensitive Data Could Be Compromised By Reducing Chips’ Voltage!
Hackers can now allegedly, exploit Intel chips via voltage alterations which could lead to messed up flow of electricity only...
Haaukins – A Highly Accessible And Automated Virtualization Platform For Security Education
Haaukins is a highly accessible and automated virtualization platform for security education, it has three main components (Docker, Virtualbox and...
CyberRange – The Open-Source AWS Cyber Range
This CyberRange project represents the first open-source Cyber Range blueprint in the world.This project provides a bootstrap framework for a...
Dread Zeppelin: Ransomware targets health care and IT sectors in U.S., Europe
Cybercriminals have spun off a ransomware that was originally known to target Russian organizations into a new malicious encryptor used...
New Women in CyberSecurity (WiCyS) veterans program aims to bridge skills gap, diversify sector
The cybersecurity industry has a problem: We have zero unemployment rate. Or so we’re told. With experts predicting millions of job...
