Russia-Linked APT Group Exploited 3 Vulnerabilities in Exim Servers, NSA Warns
The russia-linked APT group have been running campaigns wherein the authors exploited a critical vulnerability (CVE-2019-10149), also called as "The...
Jshole – A JavaScript Components Vulnrability Scanner, Based On RetireJS
A JavaScript components vulnrability scanner, based on RetireJS.Why use JShole instead of RetireJS?By default, RetireJS only searches one page, but...
GitMonitor – A Github Scanning System To Look For Leaked Sensitive Information Based On Rules
GitMonitor is a Github scanning system to look for leaked sensitive information based on rules. I know that there are...
Amplifying Impact to Reduce Friction: A Guide to Security Team Efficiency
In a recent session of our Accelerate Threat Detection and Response with SIEM + SOAR webcast series, Rapid7 product leaders...
Teaching from home might become part of every teachers’ job description
“Hey Joe, I wanted to remind you that starting next Monday you will be expected to teach from home. The...
A brief history of video game saves and data modification
Games consoles and handhelds have always been an interesting battleground for hacking activities. The homebrew scene for using hardware in...
The First Ransomware Attack and the Ripples It Sent Forward In Time
What was once a simple piece of malware discovered just 20 years ago this month exhibited its capacity which transformed...
Cycldek: Bridging the (air) gap
Key findings While investigating attacks related to a group named Cycldek post 2018, we were able to uncover various pieces...
Kids on the Web in 2020
Technology is what is saving us from a complete change in the way of life in a world of a...
Eviloffice – Inject Macro And DDE Code Into Excel And Word Documents (Reverse Shell)
Win python script to inject Macro and DDE code into Excel and Word documents (reverse shell)Features:Inject malicious Macro on formats:...
Ligolo – Reverse Tunneling Made Easy For Pentesters, By Pentesters
Ligolo is a simple and lightweight tool for establishing SOCKS5 or TCP tunnels from a reverse connection in complete safety...
Custom Policy Builder Is Now in Open Preview in InsightVM
This post is part one of a two-part blog series on policy customization in InsightVM.To properly guard against security threats,...
Standing Together: A Public Statement from Rapid7 CEO Corey Thomas
It has been shocking for many people in the United States and around the world to see the stark racial...
Rapid7 Quarterly Threat Report: 2020 Q1
If calendars still hold any meaning for you, you may be dimly aware that it's now midway through the second...
Provider Volia reported to the cyber police about the intense cyberattacks on the server
Cable provider Volia appealed to the Cyber Police on the fact of fixing a DDoS attack on the Kharkov servers...
Inshackle – Instagram Hacks: Track Unfollowers, Increase Your Followers, Download Stories, Etc
Instagram hacks: Track unfollowers, Increase your followers, Download Stories, etcFeatures:Unfollow TrackerIncrease FollowersDownload: Stories, Saved Content, Following/followers list, Profile InfoUnfollow all...
GhostShell – Malware Indetectable, With AV Bypass Techniques, Anti-Disassembly, And More
In this malware, are used some techniques to try bypass the AVs, VMs, and Sandboxes, with only porpuse to learning...
Multilingual malware attacks on industrial sector suppliers designed to thwart detection
International equipment and software suppliers for the industrial sector last May suffered targeted malware attacks that employed numerous unconventional techniques to evade detection,...
Malware in GitHub-hosted projects designed to spread among open-source developers
Twenty-six open-source projects hosted on GitHub repositories were found to be infected with malware and capable of serving up weaponized...
Coronavirus campaigns lead to surge in malware threats, Labs report finds
In the first three months of 2020, as the world clamped down to limit coronavirus, cyber threats ramped up. Our...
A week in security (May 25 – 31)
Last week on Malwarebytes Labs, we published our most recent episode of our podcast Lock and Code, providing an in-depth...
Germany threatened Russia with sanctions for a hacker attack on the Bundestag
German Foreign Ministry spokeswoman Maria Adebar on Friday confirmed that Germany in connection with the case of a hacker attack...
Apple Plans to Expand Cloud-Based Services, Enters Cloud Computing Space
Apple is planning to invest more in streamlines and increasing its cloud-based and software services like iCloud, Newsplus, and Apple...
Is Data Science loosing all that hype?
All over the world companies are making cuts, the COVID-19 has lead to a major economic downfall, and companies are...
