Steamship Authority answers question: Who’s the next ransomware victim?
After the attacks on Colonial Pipeline and JBS, many may have been wondering, as we did, what the next ransomware...
Coronavirus phishing: “Welcome back to the office…”
As offices start to slowly open back up, the theoretically post-pandemic world is changing its threat landscape once again, and...
Cybercrime Forum Publishes Alleged Database, Source Code From Russian Firm That Helped Parler
A seller on a famous cybercrime website claims to be selling source code and a database that they claim belongs...
Myanmar President’s Office Hacked for the Second Time
A cyber-espionage hacking gang is suspected of breaking into the Myanmar president's office website and injecting a backdoor trojan into...
The first users got SIM cards with Russian encryption
Voentelecom has started implementing SIM cards that should create a "trusted environment" on smartphones. The transition to such SIM cards...
Every tenth significant IT system in Russia is infected with malware
According to Rostelecom-Solar research, every 10th critical information infrastructure (CII) in the Russian Federation is compromised by malware. Even hackers...
Industrial Switches Given by the Vendors Affected by a Same Vulnerability
Industrial switches that were given by the vendors have been affected by a same vulnerability, the reason being they all...
Email spoofing: how attackers impersonate legitimate senders
Introduction In a nutshell, email spoofing is the creation of fake emails that seem legitimate. This article analyzes the spoofing...
Bn-Uefi-Helper – Helper Plugin For Analyzing UEFI Firmware
Helper plugin for analyzing UEFI firmware. This plugin contains the following features: Apply the correct prototype to the entry point...
403Fuzzer – Fuzz 403/401Ing Endpoints For Bypasses
Fuzz 403ing endpoints for bypasses Follow on twitter! @intrudirThis tool will check the endpoint with a couple of headers such...
Flaws in Realtek RTL8170C Wi-Fi module allow hijacking wireless communications
Researchers found multiple flaws in the Realtek RTL8170C Wi-Fi module that could be exploited to elevate privileges and hijack wireless...
FBI confirmed that JBS was hit by the REvil ransomware gang
The US FBI announced that REvil ransomware gang (also known as Sodinokibi) is behind the attack that hit JBS Foods....
AMT Games data breach: Millions of Users’ Messages, Account IDs, and IP Addresses Exposed
WizCase’s security team discovered an unsecured ElasticSearch server owned by AMT Games which exposed 1.47 TB of data. This leak exposed...
Cyber Defense Magazine – June 2021 has arrived. Enjoy it!
Cyber Defense Magazine June 2021 Edition has arrived. We hope you enjoy this month’s edition…packed with over 129 pages of...
Critical 0day in the Fancy Product Designer WordPress plugin actively exploited
A critical zero-day vulnerability in the Fancy Product Designer WordPress plugin exposes more than 17,000 websites to attacks. Researchers from...
CVE-2021-21206
Summary: Use after free in Blink in Google Chrome prior to 89.0.4389.128 allowed a remote attacker to potentially exploit heap...
CVE-2021-21207
Summary: Use after free in IndexedDB in Google Chrome prior to 90.0.4430.72 allowed an attacker who convinced a user to...
CVE-2020-36197
Summary: An improper access control vulnerability has been reported to affect earlier versions of Music Station. If exploited, this vulnerability...
CVE-2020-27815
Summary: A flaw was found in the JFS filesystem code in the Linux Kernel which allows a local attacker with...
CVE-2021-33563
Summary: Koel before 5.1.4 lacks login throttling, lacks a password strength policy, and shows whether a failed login attempt had...
Dominos India – 22,527,655 breached accounts
In April 2021, 13TB of compromised Dominos India appeared for sale on a hacking forum after which the company acknowledged...
JBS says it is recovering quickly from a ransomware attack
This week another major supplier reported it had been hit with ransomware. After the Colonial Pipeline attack last month, this...
Poisoned Installers Found in SolarWinds Hackers Toolkit
The ongoing multi-vendor investigations into the SolarWinds mega-hack took a new turn this week when additional malware artifacts were discovered...
New Zealand Reserve Bank: Taking Action to Respond to Data Breach Reports
Two independent investigations into an unauthorized data breach and the handling of sensitive information have been announced by the Reserve...
