The head of Microsoft announced evidence of the involvement of Russian intelligence in the cyber attack
Approximately 100 US companies and nine government agencies were affected by the hack using Orion software of SolarWinds, which is...
threatintel
Private Information of 50,000 French Healthcare Workers Stolen
French authorities unearthed a glut of stolen credentials on the dark web, apparently belonging to the healthcare workers. The authorities...
Total Cookie Protection Launched in The New Upgrade of Firefox
Mozilla's latest Firefox 86 has been rolled -out for desktop, Mac, Windows, and Linux platforms. The browser upgrade brings features...
Lazarus targets defense industry with ThreatNeedle
Lazarus targets defense industry with ThreatNeedle (PDF) We named Lazarus the most active group of 2020. We’ve observed numerous activities...
ScareCrow – Payload Creation Framework Designed Around EDR Bypass
If you want to learn more about the techniques utlized in this framework please take a look at Part 1...
APT-Hunter – Threat Hunting Tool For Windows Event Logs Which Made By Purple Team Mindset To Provide Detect APT Movements Hidden In The Sea Of Windows Event Logs To Decrease The Time To Uncover Suspicious Activity
APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements...
Kali Linux 2021.1 – Penetration Testing and Ethical Hacking Linux Distribution
Time for another Kali Linux release! – Kali Linux 2021.1. This release has various impressive updates. The summary of the changelog...
Building a Holistic VRM Strategy That Includes the Web Application Layer
Building security into your overall vulnerability risk management (VRM) strategy is a must-do in the age of the all-important web...
Multiple Unauthenticated Remote Code Control and Execution Vulnerabilities in Multiple Cisco Products
What’s up?On Feb. 24, 2021, Cisco released many patches for multiple products, three of which require immediate attention by organizations...
Google discloses technical details of Windows CVE-2021-24093 RCE flaw
Google Project Zero team disclosed the details of a recently patched remote code execution vulnerability (CVE-2021-24093) in Windows Operating system....
Thousands of VMware Center servers exposed online and potentially vulnerable to CVE-2021-21972 flaw
A Chinese security researcher published a PoC code for the CVE-2021-21972 vulnerability in VMware Center, thousands of vulnerable servers are exposed online....
Ukraine: nation-state hackers hit government document management system
Ukraine ‘s government attributes a cyberattack on the government document management system to a Russia-linked APT group. The Ukraine ‘s...
A Cryptomining botnet abuses Bitcoin blockchain transactions as C2 backup mechanism
Crooks are exploiting BTC blockchain transactions to hide backup command-and-control (C2) server addresses for a cryptomining botnet. Security experts from...
LazyScripter: From Empire to double RAT
Malwarebytes’ Threat Intelligence analysts are continually researching and monitoring active malware campaigns and actor groups as the prevalence and sophistication...
A Crypto Mining Botnet is Abusing Bitcoin Blockchains
Security experts from Akamai have detected another botnet utilized for illegal cryptocurrency mining exercises that are abusing Bitcoin (BTC) transactions...
Experts listed the methods used by fraudsters to obtain personal data
As noted by experts, information leakage in large companies does not often happen, but data theft can occur through contractorsScammers...
Bitcoin Slips 17% to $45,000 as Caution Sweeps Over Crypto
Bitcoin, the world’s largest cryptocurrency slumped as much as 17 percent to $45,000 on Tuesday, sparking concerns from investors over...
Russia Accused by Ukraine for Major Cyber Attacks
Ukraine on Monday alleged major attacks against the Ukrainian security and defense website by unidentified Russian Internet networks but did...
FedEx and DHL Express Hit with Phishing Attacks
Researchers reported on Tuesday that they discovered two email phishing assaults targeting at least 10,000 mailboxes at FedEx and DHL...
BlackMamba – C2/post-exploitation Framework
BlackMamba is a multi client C2/post exploitation framework with some spyware features. Powered by Python 3.8.6 and QT Framework. Some...
BugBountyScanner – A Bash Script And Docker Image For Bug Bounty Reconnaissance
A Bash script and Docker image for Bug Bounty reconnaissance, intended for headless use. Low on resources, high on information...
VMware vCenter Server CVE-2021-21972 Remote Code Execution Vulnerability: What You Need to Know
This blog post was co-authored by Bob Rudis and Caitlin Condon. What’s up?On Feb. 23, 2021, VMware published an advisory...
Software Engineering, Vulnerability and Risk Management: Revolutionizing the Security Landscape at Rapid7
Do you know about CVE-2013-4866? No? It details a hardcoded PIN in a Smart Bidet giving attackers access to the...
APT32 state hackers target human rights defenders with spyware
Vietnam-linked APT32 group targeted Vietnamese human rights defenders (HRDs) between February 2018 and November 2020. Vietnam-linked APT32 (aka Ocean Lotus)...
