Iranian Hacking Group Targets Several Middle East Companies Via Malicious Campaign
Security researchers at Trend Micro found proof of malicious activity by ‘MuddyWater’ automatically programmed tool (APT) that has aimed at...
In just $16, Hackers May Steal User Data Via SMS Attack
Smartphone users are facing a new confidentiality and security risk as text messaging services are currently misused to secretly divert...
OffensivePipeline – Tool To Download, Compile (Without Visual Studio) And Obfuscate C# Tools For Red Team Exercises
OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises. OffensivePipeline downloads the tool...
Rafel-Rat – Android Rat Written In Java With WebPanel For Controlling Victims
Rafel is Remote Access Tool Used to Control Victims Using WebPanel With More Advance Features.Main FeaturesAdmin Permission Add App To...
Millions of sites could be hacked due to flaws in popular WordPress plugins
Experts found vulnerabilities in two WordPress plugins that could be exploited to run arbitrary code and potentially take over a...
CISA and FBI warn of ongoing TrickBot attacks
CISA and FBI are warning of ongoing TrickBot attacks despite security firms took down the C2 infrastructure of the infamous botnet...
Millions of People Can Lose Sensitive Data through Travel Apps, Privacysavvy reports
According to a report published by researchers at PrivacySavvy, many travel companies expose users’ data through their booking apps. In...
XcodeSpy Mac malware targets Xcode Developers with a backdoor
Unknown threat actors have been using a new XcodeSpy Mac malware to target software developers who use Apple’s Xcode integrated...
CVE-2020-13936
Summary: An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands...
CVE-2020-24983
Summary: An issue was discovered in Quadbase EspressReports ES 7 Update 9. An unauthenticated attacker can create a malicious HTML...
CVE-2021-21518
Summary: Dell SupportAssist Client for Consumer PCs versions 3.7.x, 3.6.x, 3.4.x, 3.3.x, Dell SupportAssist Client for Business PCs versions 2.0.x,...
CVE-2021-21381
Summary: Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. In Flatpack since version 0.9.4...
CVE-2021-27085
Summary: Internet Explorer Remote Code Execution Vulnerability Reference Links(if available): https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-27085 CVSS Score (if available) v2: / HIGH v3: /...
Apple developers targeted by malicious Xcode project
A man stands in front of Apple store in Berlin, Germany. Threat actors have abused the Run Script feature in...
NFTs explained: daylight robbery on the blockchain
Did you hear about the JPG file that sold for $69 million? I’ll give you some more detail, the JPG...
HelloKitty: When Cyberpunk met cy-purr-crime
On February 9, after discovering a compromise, CD Projekt Red (CDPR) announced to its 1+ million followers on Twitter that...
What are Smishing Attacks? How to Prevent Them?
Smishing is a cyber assault that utilizes SMS text messages to delude its victims into giving sensitive data to a...
U.S. authorities found no evidence of Russian hackers’ influence on the presidential election
U.S. authorities found no evidence that hackers affiliated with foreign governments were able to block voters from voting, alter votes,...
India’s Top 5 Banks Targeted in a Phishing Scam
The customers of State Bank of India (SBI), ICICI, HDFC, Axis Bank, and Punjab National Bank (PNB) have been alerted...
Microsoft Cloud Users Hit by Global Outage
Microsoft has recognized a new change to an authentication system as a potential reason for a blackout that scourged clients...
A 38-Year-Old Indian Professor, Lost Rs 10 Lakh to a Scammer in Cryptocurrency Trading
A Bengaluru-based 38-year-old professor new to the cryptocurrency world lost Rs 10 lakh in bitcoins to a scammer, who assured...
Convuster: macOS adware now in Rust
Introduction Traditionally, most malicious objects detected on the macOS platform are adware: besides the already familiar Shlayer family, the TOP...
AnonX – An Encrypted File Transfer Via AES-256-CBC
An Encrypted File transfer via AES-256-CBC AnonX is an encrypted file uploader and downloader. The uploaded archive lasts for one...
Strafer – A Tool To Detect Potential Infections In Elasticsearch Instances
Elasticsearch infections are rising exponentially. The adversaries are exploiting open and exposed Elasticsearch interfaces to trigger infections in the cloud...
