Managing Cyber Risk: The People Element
Explore the latest findings from Trend Micro’s Cyber Risk Index (2H’2021) and how to better manage people to minimize cyber risk across the digital attack surface. If you like the…
Patch Your WSO2: CVE-2022-29464 Exploited to Install Linux-Compatible Cobalt Strike Beacons, Other Malware
Users of WSO2 products are advised to update their respective products and platforms or to apply the temporary mitigation steps immediately. If you like the site, please consider joining the…
Wrongsecrets – Examples With How To Not Use Secrets
Welcome to the OWASP WrongSecrets p0wnable app. With this app, we have packed various ways of how to not store your secrets. These can help you to realize whether your…
Threat profile: RansomHouse makes extortion work without ransomware
Cybersecurity is an industry known for many hats: white hats, black hats, and grey hats. White hats refer to “the good people” in the industry for those who are not…
Runescape phish claims your email has been changed
A Runescape-themed missive landed in our email inbox today, claiming action is required to secure our account. The malicious email and the scam behind it are perfect examples of one…
CISA: Microsoft Releases Workaround Guidance for MSDT “Follina” Vulnerability
Microsoft Releases Workaround Guidance for MSDT "Follina" Vulnerability Microsoft has released workaround guidance to address a remote code execution (RCE) vulnerability—CVE-2022-30190, known as "Follina"—affecting the Microsoft Support Diagnostic Tool (MSDT)…
FBI warns of education sector credentials on dark web forums
The FBI is warning academics to be on their guard, as an embattled education sector continues to experience attacks and breaches, with data spilling onto the so-called dark web. The…
HackerOne Bug Bounty Disclosure: self-xss-in-attachments-namebymega7
Programme HackerOne Acronis Acronis Submitted by mega7 mega7 Report Self XSS in attachments name Full Report
HackerOne Bug Bounty Disclosure: blind-xss-on-https://open-vanillaforums-combymohit0786
Programme HackerOne Vanilla Vanilla Submitted by mohit0786 mohit0786 Report BlIND XSS on https://open.vanillaforums.com Full Report
HackerOne Bug Bounty Disclosure: improper-input-size-validation-on-the-user-new-session-name-can-result-in-server-side-ddos-bydemonia
Programme HackerOne Nextcloud Nextcloud Submitted by demonia demonia Report Improper input-size validation on the user new session name can result in server-side DDoS. Full Report
SideWinder carried out over 1,000 attacks since April 2020
SideWinder, an aggressive APT group, is believed to have carried out over 1,000 attacks since April 2020, Kaspersky reported. Researchers from Kaspersky have analyzed the activity of an aggressive threat…
K0Otkit – Universal Post-Penetration Technique Which Could Be Used In Penetrations Against Kubernetes Clusters
k0otkit is a universal post-penetration technique which could be used in penetrations against Kubernetes clusters. With k0otkit, you can manipulate all the nodes in the target Kubernetes cluster in a…
Is quantum teleportation the future of secure communications?
“Beam me up Scotty” will always remain my first association with teleportation. And as it stands now, we are still a long way from teleporting matter, but the teleportation of…
Microsoft shared workarounds for the Microsoft Office zero-day dubbed Follina
Microsoft released workarounds for a recently discovered zero-day vulnerability, dubbed Follina, in the Microsoft Office productivity suite. Microsoft has released workarounds for a recently discovered zero-day vulnerability, dubbed Follina and tracked as CVE-2022-30190 (CVSS…
Adecco – 4,284,538 breached accounts
In March 2021, news broke of a massive data breach impacting millions of Adecco customers in South America which was subsequently sold on a popular hacking forum. The breach exposed…
Cobalt Stike Beacon Detected – 52[.]77[.]233[.]216:5555
Cobalt Strike Beacon Detection Alerts
Cobalt Stike Beacon Detected – 120[.]25[.]251[.]41:443
Cobalt Strike Beacon Detection Alerts
Cobalt Stike Beacon Detected – 124[.]223[.]197[.]223:8888
Cobalt Strike Beacon Detection Alerts
Cobalt Stike Beacon Detected – 45[.]133[.]1[.]186:88
Cobalt Strike Beacon Detection Alerts
Cobalt Stike Beacon Detected – 42[.]194[.]196[.]97:8443
Cobalt Strike Beacon Detection Alerts
Cobalt Stike Beacon Detected – 119[.]3[.]152[.]152:8099
Cobalt Strike Beacon Detection Alerts
Cobalt Stike Beacon Detected – 121[.]4[.]34[.]103:80
Cobalt Strike Beacon Detection Alerts
Cobalt Stike Beacon Detected – 124[.]223[.]112[.]213:99
Cobalt Strike Beacon Detection Alerts
Cobalt Stike Beacon Detected – 107[.]148[.]201[.]113:7777
Cobalt Strike Beacon Detection Alerts