FIN7 cybercrime gang creates fake cybersecurity firm to recruit pentesters for ransomware attacks
FIN7 hacking group created fake cybersecurity companies to hire experts and involve them in ransomware attacks tricking them of conducting...
FIN7 hacking group created fake cybersecurity companies to hire experts and involve them in ransomware attacks tricking them of conducting...
Bitdefender researchers discovered a new Rootkit named FiveSys that abuses Microsoft-Issued Digital Signature signature to evade detection. FiveSys is a...
Evil Corp cybercrime gang is using a new ransomware called Macaw Locker to evade US sanctions that prevent victims from...
A vulnerability in the WinRAR is a trialware file archiver utility for Windows could be exploited by a remote attacker...
Basic TutorialHere you will find privilege escalation tools for Windows and Linux/Unix* and MacOS.These tools search for possible local privilege...
The United States Department of Justice sentenced two individuals that were providing bulletproof hosting to various malware operations. The United...
Summary: The fix for bug 63362 present in Apache Tomcat 10.1.0-M1 to 10.1.0-M5, 10.0.0-M1 to 10.0.11, 9.0.40 to 9.0.53 and...
Summary: IBM Cognos Analytics 11.1.7 and 11.2.0 could allow an authenticated user to execute code remotely due to incorrectly neutralizaing...
Summary: Imagicle Application Suite (for Cisco UC) before 2021.Summer.2 allows SQL injection. A low-privileged user could inject a SQL statement...
Summary: IBM Cognos Analytics 11.1.7 and 11.2.0 is vulnerable to priviledge escalation where a lower evel user could have access...
Summary: A remote disclosure of sensitive information vulnerability was discovered in Aruba ClearPass Policy Manager version(s): ClearPass Policy Manager 6.10.x...
For the third time in a month Google has issued an update to patch for several security issues. This time...
Exploit kits (EK) are not as widespread as they used to be. One of the reasons is likely that most...
NTFSTool is a forensic tool focused on NTFS volumes. It supports reading partition info (mbr, partition table, vbr) but also...
The Commerce Department’s Bureau of Industry and Security (BIS) would ban U.S. firms from selling hacking tools to authoritarian regimes....
Threat actors are continually looking for better ways to target organizations, here are the top five attack vectors to look...
Experts at Kaspersky have been investigating various computer incidents on a daily basis for over a decade. Having been in...
A Cookie Theft malware was employed in phishing attacks against YouTube creators, Google’s Threat Analysis Group (TAG) warns. Financially motivated...
Researchers warn of a new evolution of the PurpleFox botnet, operators included exploits and leverage WebSockets for C2 communication. Researchers...
Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).MetabadgerPurpose and functionalityDiagnose...
A student at a high school in Cook County successfully hacked into the Internet-of-Things (IoT) devices of one of the...
Snapchat is an instant messaging app popular with youngsters that allows users to send pictures and videos that are only...
Summary: A type confusion issue was addressed with improved state handling. This issue is fixed in iOS 12.5.5, iOS 14.4...
Summary: A type confusion issue was addressed with improved state handling. This issue is fixed in iOS 12.5.5, iOS 14.4...