Ransomware operators exploit VMWare ESXi flaws to encrypt disks of VMs
Ransomware operators are exploiting two VMWare ESXi vulnerabilities, CVE-2019-5544 and CVE-2020-3992, to encrypt virtual hard disks. Security experts are warning...
threatintel
CISA: Many victims of SolarWinds hackers had no direct connection to SolarWinds
The U.S. CISA reveals that many of the victims of the SolarWinds hackers had no direct connection to SolarWinds. The...
Experts discovered a new Trickbot module used for lateral movement
Experts spotted a new Trickbot module that is used to scan local networks and make lateral movement inside the target...
Operation NightScout: supply chain attack on NoxPlayer Android emulator
Experts uncovered a new supply chain attack leveraging the update process of NoxPlayer, a free Android emulator for PCs and...
StoryBird – 1,047,200 breached accounts
In August 2015, the storytelling service StoryBird suffered a data breach exposing 4 million records with 1 million unique email...
Fonix ransomware gives up life of crime, apologizes
Ransomware gangs deciding to pack their bags and leave their life of crime is not new, but it is a...
Users on Alert as Text Scamming Attack on The Rise
The fear of scam messages may seem far now, and even distant. With the rise of well-engineered and sophisticated attacks...
USCellular Hit by a Data Breach After Hackers Access CRM Software
 US Cellular, which is a mobile network operator, has suffered a data breach after threat actors gained access to...
Cybersecurity Researchers Identifies an Updated Variant of ‘Pro-Ocean’ Malware
 Cybersecurity experts have discovered an updated version of ‘Pro-Ocean malware’, this malware was used as a weapon by a cybercriminal...
DDoS Attacks increase by 154% in 2020 states Neustar
 DDoS- Distributed Denial of Service is a cyber attack on a specific server or network. It attempts to disrupt the...
Lebanese Cedar Targeted Telecoms, Hosting’s, ISPs Worldwide
 A "persistent attacker group" with supposed connections to Hezbollah has retooled its malware arsenal with a new version of a...
Flawfinder – A Static Analysis Tool For Finding Vulnerabilities In C/C++ Source Code
This is "flawfinder" by David A. Wheeler. Flawfinder is a simple program that scans C/C++ source code and reports potential...
Web-Brutator – Modular Web Interfaces Bruteforcer
Fast Modular Web Interfaces BruteforcerInstallpython3 -m pip install -r requirements.txt Usage$ python3 web-brutator.py -h __ __ ___. __________ __ __...
Addressing the OT-IT Risk and Asset Inventory Gap
Cyber-espionage and exploitation from nation-state-sanctioned actors have only become more prevalent in recent years, with recent examples including the SolarWinds...
Rapid7 Acquires Leading Kubernetes Security Provider, Alcide
Organizations around the globe continue to embrace the flexibility, speed, and agility of the cloud. Those that have adopted it...
Experts warn of active exploitation of SonicWall zero-day in the wild
Researchers from the security firm NCC Group warn of the exploitation in the wild of a SonicWall zero-day vulnerability. Security...
Google discloses a severe flaw in widely used Libgcrypt encryption library
Google discovered a flaw in GNU Privacy Guard (GnuPG)’s Libgcrypt encryption library that could be exploited to get remote code...
Exploiting a bug in Azure Functions to escape Docker
Expert disclosed an unpatched vulnerability in Microsoft Azure Functions that could be exploited to escape the Docker container hosting them....
Pixlr – 1,906,808 breached accounts
In October 2020, the online photo editing application Pixlr suffered a data breach exposing 1.9 million subscribers. Impacted data included...
A week in security (January 25 – January 31)
January 28 was Data Privacy Day, but for Malwarebytes Labs, it was Data Privacy Week. As such, we’re packed with...
‘Android Worm’ Malware is Spreading Via WhatsApp User Contact List
 Security expert Lucas Stefanko unearthed the malware known as ‘Android Worm’. Threat actors are using this malware as a weapon...
Google Researcher Groß Identifies the BlastDoor Device in Apple iOS 14
 Last year, Apple rolled out iOS 14 with many new features, tighter privacy laws, and elements that make the iPhone...
MOSE – Post Exploitation Tool For Configuration Management Servers.
MOSE is a post exploitation tool that enables security professionals with little or no experience with configuration management (CM) technologies...
OpenCVE – CVE Alerting Platform
OpenCVE, formerly known as Saucs, is a platform used to locally import the list of CVEs and perform searches on...
