Follow me on twitter Follow @RedPacketSec and join the Telegram channel Welcome to the NICER Protocol Deep Dive blog series! When we started researching what all was out on the internet way back in January, we had no idea we’d end up with a hefty, 137-page tome of a research […]
News
2422 posts
Follow me on twitter Follow @RedPacketSec and join the Telegram channel The much popular messaging application earlier announced that they will be rolling out a new ‘Disappearing Messages’ feature, where sent messages disappear after seven days around this month. Now, this particular feature is available for Indian users to avail […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel Manchester United affirmed the hacking on the club and revealed systems required for the match remained secure. Have been hit by a cyber-attack on their systems however state they are not “currently aware of any breach of personal […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel This prototype identifies security risk sources (i.e., threats and vulnerabilities) and types of attack consequences based on AutomationML (AML) artifacts. The results of the risk identification process can be used to generate cyber-physical attack graphs, which model multistage cyber […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel Security Incident Response Automated Simulations (SIRAS) are internal/controlled actions that provide a structured opportunity to practice the incident response plan and procedures during a realistic scenarios. the main idea of SIRAS is create an detection-as-a-code testing scenarios to facilitate […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel A (coverage-)guided fuzzer for dynamic language interpreters based on a custom intermediate language (“FuzzIL”) which can be mutated and translated to JavaScript. Usage The basic steps to use this fuzzer are: Download the source code for one of the […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel Routopsy is a toolkit built to attack often overlooked networking protocols. Routopsy currently supports attacks against Dynamic Routing Protocols (DRP) and First-Hop Redundancy Protocols (FHRP). Most of the attacks currently implemented make use of a weaponised ‘virtual router’ as […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel The Seoul skyline in South Korea (Flickr – Laurie Nevayhttps://www.flickr.com/photos/laurienevay/, CC BY-SA 2.0 https://creativecommons.org/licenses/by-sa/2.0, via Wikimedia Commons). A newly reported supply chain attack involved malicious hackers compromising financial and government websites so they would deliver malware to unsuspecting visitors. […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel A new Grelos skimmer variant tied to Magecart Group could potentially lure online shoppers to fill out phony payment forms over the upcoming holidays. A unique cookie could allow attackers to connect to a recent variant of the Grelos […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel Black Friday 2020 promises to be somewhat different from years gone by thanks to COVID-19. The annual surge of in-store chaos and trolley dashes isn’t compatible with social distancing, and so retailers will be looking to drive shoppers online. […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel Online shopping has seen a dramatic increase in the months following the Covid-19 outbreak as more and more people opt-out of visiting physical stores. Such a phenomenon does not go unnoticed or without additional consequences. During the same time […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel We recently looked into ways phishing mails are evolving, attackers getting creative by the day. But a new trend has taken up the dark web, and soon phishing campaigns for ransomware and malware will be a thing of […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel Managed hosting provider Managed.com has temporarily taken down all its servers and web hosting systems offline including clients’ websites in response to a REvil ransomware attack that compromised public-facing web hosting systems. The threat actors behind the security […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel A company whose cold-storage capacities are extremely integral to the U.S. food-supply chain and the Coronavirus vaccine distribution affirmed an operation affecting cyberattack, as per a filing with the Securities and Exchange Commission (SEC). Americold is by far […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel These statistics are based on detection verdicts of Kaspersky products received from users who consented to provide statistical data. Quarterly figures According to Kaspersky Security Network, in Q3: Kaspersky solutions blocked 1,416,295,227 attacks launched from online resources across the […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel The statistics presented here draw on detection verdicts returned by Kaspersky products and received from users who consented to providing statistical data. Quarterly figures According to Kaspersky Security Network, the third quarter saw: 1,189 797 detected malicious installers, of […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel Targeted attacks MATA: Lazarus’s multi-platform targeted malware framework The more sophisticated threat actors are continually developing their TTPs (Tactics, Techniques and Procedures) and the toolsets they use to compromise the systems of their targets. However, malicious toolsets used to […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel Invoke-AntiVM is a set of modules to perform VM detection and fingerprinting (with exfiltration) via Powershell. Compatibility Run the script check-compatibility.ps1 to check what modules or functions are compatibile with the powershell version. Our goal is to achieve compatibility […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports. Jira Integration Note Please keep in mind, this project is in early development. Launch with Docker Install Docker Create a .env file and […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel In 2016, threat actors pulled off a basic but devastating botnet attack that harnessed the power of the Internet of Things (IoT). After gathering a list of 61 default username and password combinations for IoT devices, threat actors scanned […]
Follow me on twitter Follow @RedPacketSec and join the Telegram channel The Ministry of Digital Development, Communications and Mass Media of the Russian Federation (the Russian Ministry of Digital Development) will launch an application to track contacts of patients with COVID-19 The head of the Department Maksut Shadaev confirmed that […]