Spyse: All-In-One Cybersecurity Search Engine
Spyse is a cybersecurity search engine for finding technical information about different internet entities, business data, and vulnerabilities. It’s an...
Glupteba malware leverages blockchain as a communications channel
Glupteba malware does something novel: It uses the bitcoin blockchain as a communications channel to receive updated configuration information. That’s...
Web skimmer hides within EXIF metadata, exfiltrates credit cards via image files
They say a picture is worth a thousand words. Threat actors must have remembered that as they devised yet another...
Group-IB disclosed data about a Russian-speaking hacker who hacked hundreds of companies
Computer security specialists at Group-IB have identified a suspected hacker with nickname Fxmsp who has been trading on the Darknet...
Bharti Airtel on cyber high alert – upgrades security measures
New Delhi: Bharti Airtel, India's major telecom service provider has upgraded it's cyber security to a higher threat level for...
Colabcat – Running Hashcat On Google Colab With Session Backup And Restore
Run Hashcat on Google Colab with session restore capabilities with Google Drive.UsageGo to the link below to open a copy...
CorsMe – Cross Origin Resource Sharing MisConfiguration Scanner
A Misconfiguration Scanner cors misconfiguration scanner tool based on golang with speed and precision in mind !Misconfiguration type this scanner...
How to Free Recover Deleted Files on Your Mac
There are many scenarios where you would want to recover deleted data from your Mac. These deleted files could be...
Customer Spotlight: How Amedisys CISO Proves Security’s Value to the Business
Vulnerability management can often feel like a thankless job, especially when your leadership team has a difficult time understanding the...
Triton v0.8 and ARMv7: A Guideline for Adding New Architectures
As you may have read in our previous blog post, the release of Triton v0.8 came with a lot of...
Coughing in the face of scammers: security tips for the 2020 tax season
In spite of everything happening in the world right now—the 2020 tax season is about to come to an end,...
Twitter Data Breach: Apology Sent to Potentially Affected Business Clients
The cyberspace has reportedly witnessed a fivefold increase in malicious attacks since the spread of the Coronavirus pandemic, it's primarily...
Sifter 7.4 – OSINT, Recon & Vulnerability Scanner
Sifter is a osint, recon & vulnerability scanner. It combines a plethara of tools within different module sets in order...
Back to Basics: Maintaining Cloud Migration Oversight While Navigating the New Normal
On the fifth and final installment of our Remote Work Readiness Series, Rapid7 taps industry insiders for what the future...
Experts discovered phishing emails in Office 365 accounts
Check Point experts discovered a sophisticated phishing campaign aimed at collecting corporate data and compromising Microsoft Office 365 accounts. To...
Hmmcookies – Grab Cookies From Firefox, Chrome, Opera Using A Shortcut File (Bypass UAC)
Grab cookies from Firefox, Chrome, Opera using a shortcut file (bypass UAC)Legal disclaimer:Usage of HMMCOOKIES for attacking targets without prior...
Business Secure: How AI is Sneaking into our Restaurants
Prior to pandemic days, the restaurant industry talked of computers that might end up taking over their daily responsibilities. They’d...
Malicious doc campaign unleashes Cobalt Strike on gov’t, military orgs in South Asia
A military-themed malware campaign targeting military and government organizations in South Asia unleashes “maldocs” that spread full remote-access trojan (RAT)...
Magnitude exploit kit – evolution
Exploit kits are not as widespread as they used to be. In the past, they relied on the use of...
A zero-day guide for 2020: Recent attacks and advanced preventive techniques
Zero-day vulnerabilities enable threat actors to take advantage of security blindspots. Typically, a zero-day attack involves the identification of zero-day...
Firefox Web Browser Launching Its Own Paid VPN Service
The Firefox Private Network service launched in beta just the previous year as a browser extension for desktop versions of...
Oh, what a boot-iful mornin’
In mid-April, our threat monitoring systems detected malicious files being distributed under the name “on the new initiative of the...
InQL – A Burp Extension For GraphQL Security Testing
To use inql in Burp Suite, import the Python extension:Download the Jython JarStart Burp SuiteExtender Tab > Options > Python...
TokenBreaker – JSON RSA To HMAC And None Algorithm Vulnerability POC
Token Breaker is focused on 2 particular vulnerability related to JWT tokens.None AlgorithmRSAtoHMACRefer to this link about insights of the...
