[No cON Name] #ncn2k20 CFP online – Barcelona
Posted by José Nicolás Castellano on Nov 10No cON Name 2020 - Online Edition Call For Papers https://www.noconname.org/call-for-papers/ *...
threatintel
SaltStack Pre-Authenticated Remote Root (CVE-2020-16846 and CVE-2020-25592): What You Need to Know
What’s up? We start the November critical vulnerability season with a pair of CVEs—CVE-2020-16846 and CVE-2020-25592—that, when combined, can result...
Visualizing Network Traffic Data to Drive Action
Top 5 multi group queries for analyzing network sensor dataWe launched the Insight Network Sensor earlier this year and have...
Mashable – 1,414,677 breached accounts
In approximately mid-2020, Mashable suffered a data breach that subsequently turned up publicly in November 2020. The data included 1.4...
Lazada RedMart – 1,107,789 breached accounts
In October 2020, news broke of Lazada RedMart data breach containing records as recent as July 2020 and being sold...
Lock and Code S1Ep19: Forecasting IoT cybersecurity with John Donovan and Adam Kujawa
This week on Lock and Code, we offer something special for listeners—a backstage pass to a cybersecurity training that we...
Cyber criminals scam bank customers pretending to be from bank security
Attackers call a potential victim and offer to install an app on their phone that "reliably protects money from theft."...
Online Grocery Store BigBasket faces Data Breach of 2 Crore Users
E-Grocery platform BigBasket has been attacked by a breach of data with a leak of almost 2 Crore user...
Hacker Spotlight: Interview with ‘Cyberboy’, Bug Bounty Hunter who Won $3000
A few days ago Indian bug bounty hunter, Shashank aka Cyberboy came up with a creative hack that led him...
Ghimob: a Tétrade threat actor moves to infect mobile devices
Guildma, a threat actor that is part of the Tétrade family of banking trojans, has been working on bringing in...
ReconNote – Web Application Security Automation Framework Which Recons The Target For Various Assets To Maximize The Attack Surface For Security Professionals & Bug-Hunters
Web Application Security Recon Automation FrameworkIt takes user input as a domain name and maximize the attack surface area by...
PCWT – A Web Application That Makes It Easy To Run Your Pentest And Bug Bounty Projects
A web application that makes it easy to run your pentest and bug bounty projects.DescriptionThe app provides a convenient web...
Advance Your Career: Life as a Rapid7 Belfast Software Engineer
The Belfast Team Partaking in #Rapid7GivesBack Month If you like the site, please consider joining the telegram channel or supporting...
Hackers Use RMS and Teamviewer To Attack Industrial Enterprises
In a recent report by cybersecurity firm Kaspersky, experts explained how there were certain modifications in attack campaign strategies and...
Apple Patches-Up Three Actively Exploited And Identified Zero-Day Vulnerabilities In its iPhone, iPod and iPad Devices
This month Apple released iOS 14.2 and iPad 14.2, which patched up a sum total of 24 vulnerabilities in different...
ShowStopper – Anti-Debug tricks exploration tool
The ShowStopper project is a tool to help malware researchers explore and test anti-debug techniques or verify debugger plugins or...
Hetty – An HTTP Toolkit For Security Research
Hetty is an HTTP toolkit for security research. It aims to become an open source alternative to commercial software like...
Russian expert told how to figure out surveillance via a webcam
It is becoming more and more difficult to find out whether you are being followed through a webcam. According to...
JSMon – JavaScript Change Monitor for BugBounty
Using this script, you can configure a number of JavaScript files on websites that you want to monitor. Everytime you...
Threagile – Agile Threat Modeling Toolkit
Threagile (see https://threagile.io for more details) is an open-source toolkit for agile threat modeling: It allows to model an architecture...
Update your iOS now! Apple patches three zero-day vulnerabilities
Apple has patched three vulnerabilities in iOS (and iPadOS) that were actively being exploited in targeted attacks. Vulnerabilities that are...
RegTech explained: a crucial toolset for the financial industry
Every organization in the financial industry needs to meet certain regulatory obligations, even if it’s just filing a tax return...
The Russian expert point out which smartphones are most vulnerable to surveillance
According to Anton Averin, Deputy Director of the Institute of Information Technologies of the Synergy University, if you wish and...
RansomEXX Trojan attacks Linux systems
We recently discovered a new file-encrypting Trojan built as an ELF executable and intended to encrypt data on machines controlled...
