Detection evasion in CLR and tips on how to detect such attacks
In terms of costs, the age-old battle that pits attacker versus defender has become very one sided in recent years....
PyHook – An Offensive API Hooking Tool Written In Python Designed To Catch Various Credentials Within The API Call
PyHook is the python implementation of my SharpHook project, It uses various API hooks in order to give us the...
Weakpass – Rule-Based Online Generator To Create A Wordlist Based On A Set Of Words
The tool generates a wordlist based on a set of words entered by the user.For example, during penetration testing, you...
MailRipV2 – Improved SMTP Checker / SMTP Cracker With Proxy-Support, Inbox Test And Many More Features
Your SMTP checker / SMTP cracker for mailpass combolists including features like: proxy-support (SOCKS4 / SOCKS5) with automatic proxy-scraper and...
Apache OpenOffice is currently impacted by a remote code execution flaw
Apache OpenOffice (AOO) is currently impacted by a remote code execution flaw, tracked as CVE-2021-33035, that has yet to be...
Black Matter gang demanded a $5.9M ransom to NEW Cooperative
U.S. The farmers cooperative NEW Cooperative was hit by Black Matter ransomware gang that is demanding a $5.9 million ransom....
Data of 106 million visitors to Thailand leaked online
Security researchers discovered an unsecured database exposed online containing the personal information of millions of visitors to Thailand. The popular...
Large phishing campaign targets EMEA and APAC governments
Security researchers uncovered a large phishing campaign targeting multiple government departments in APAC and EMEA countries. Researchers from cybersecurity firm...
BlackMatter Ransomware Victim: Bumper to Bumper Autoparts
BlackMatter Ransomware NOTE: The information on this page is automated and scraped directly from the BlackMatter Onion Dark Web Tor...
CVE-2020-14386
Summary: A flaw was found in the Linux kernel before 5.9-rc4. Memory corruption can be exploited to gain root privileges...
CVE-2021-33909
Summary: fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to...
CVE-2021-33909
Summary: fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to...
CVE-2021-33909
Summary: fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to...
CVE-2021-33909
Summary: fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to...
CVE-2021-34719
Summary: Multiple vulnerabilities in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker with a low-privileged...
CVE-2021-34719
Summary: Multiple vulnerabilities in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker with a low-privileged...
CVE-2021-30800
Summary: This issue was addressed with improved checks. This issue is fixed in iOS 14.7. Joining a malicious Wi-Fi network...
CVE-2021-30800
Summary: This issue was addressed with improved checks. This issue is fixed in iOS 14.7. Joining a malicious Wi-Fi network...
CVE-2021-30792
Summary: An out-of-bounds write was addressed with improved input validation. This issue is fixed in iOS 14.7, macOS Big Sur...
Microsoft makes a bold move towards a password-less future
In a recent blog Microsoft announced that as of September 15, 2021 you can completely remove the password from your...
Freedom Hosting operator gets 27 years for hosting Dark Web child abuse sites
The wheels of justice have turned, if perhaps a bit slower than you may have expected. A Dublin resident, Eric...
A week in security (Sept 13 – Sept 19)
Last week on Malwarebytes Labs Why backups aren’t a “silver bullet” against ransomware, with Matt Crape: Lock and Code S02E17The...
Numando: a Banking Trojan Targeting Brazil Abuses YouTube for Spreading
ESET researchers have continued their investigation on the Latin American banking trojans with Numando, primarily targeting Brazil and seldom Mexico...
Links Detected Between MSHTML Zero-Day Attacks and Ransomware Operations
The exploitation of a recently fixed Windows zero-day vulnerability was attributed to known ransomware operators, according to Microsoft and threat...
