UPnP Vulnerability Affects Billion of Devices Allowing DDoS Attacks, Data Exfiltration
A new security vulnerability affecting devices running UPnP protocol has been discovered by a researcher named Yunus Çadırcı; dubbed as...
Three defendants in the case of the hacker group Lurk released from jail
The court of Yekaterinburg replaced the preventive measures in the form of detention with house arrest for three defendants in...
Atlas – Quick SQLMap Tamper Suggester
Atlas is an open source tool that can suggest sqlmap tampers to bypass WAF/IDS/IPS, the tool is based on returned...
Stegcloak – Hide Secrets With Invisible Characters In Plain Text Securely Using Passwords
StegCloak is a pure JavaScript steganography module designed in functional programming style, to hide secrets inside text by compressing and...
How Team Collaboration Can Help You Scale the Vulnerability Mountain
“I feel like I’m buried under my growing mountain of vulnerabilities,” said every security professional ever. While this is a...
Patch Tuesday: Fixes for LNK, SMB, and SharePoint Bugs
This month’s Patch Tuesday had the highest number of entries so far in 2020 — a whopping 129, a continuation...
Honda and Enel impacted by cyber attack suspected to be ransomware
Car manufacturer Honda has been hit by a cyber attack, according to a report published by the BBC, and later...
ParetoLogic facing complaint of alleged wrongdoing
A short while ago we reported on the FTC ruling against payment provider RevenueWire. Now, another Canadian company is under...
Russians were warned about the danger of installing banking apps on the phones
In some situations, the use of the program could lead to leakage of personal information. The specialist gave advice on...
Is a cyber pandemic looming over our heads?
The year 2020 is proving to be quite a hassle and the adversities don't seem to be slowing down. COVID-19...
Singapore’s Move to Facilitate Contact Tracing Amidst the Covid-19 Pandemic Rejected by Its Residents
While each country is attempting to stymie the outbreak of the disastrous coronavirus in different ways, Singapore attempted the same...
Looking at Big Threats Using Code Similarity. Part 1
Today, we are announcing the release of KTAE, the Kaspersky Threat Attribution Engine. This code attribution technology, developed initially for...
BabyShark – Basic C2 Server
This is a basic C2 generic server written in Python and Flask. This code has based ideia to GTRS, which...
URLCrazy – Generate And Test Domain Typos And Variations To Detect And Perform Typo Squatting, URL Hijacking, Phishing, And Corporate Espionage
URLCrazy is an OSINT tool to generate and test domain typos or variations to detect or perform typo squatting, URL...
Patch Tuesday – June 2020
June 2020's Microsoft Patch Tuesday gives us a whopping 129 CVEs patched (excluding Adobe Flash which addresses CVE-2020-9633 -- a...
Developing Sustainable Vulnerability Management with Katie Moussouris
On this week’s episode of Security Nation, we’re delighted to be joined by Katie Moussouris, CEO and Founder of Luta...
Playing Around With The Fuchsia Operating System
Introduction Fuchsia is a new operating system developed by Google, targeting the AArch64 and x86_64 architectures. While little is known...
Malware found in popular barcode apps produces ads that instantly vanish
A pair of Android barcode reader apps that were downloaded more than 1 million times were found to contain ad...
Lock and Code S1Ep8: Securely working from home (WFH) with John Donovan and Adam Kujawa
This week on Lock and Code, we discuss the top security headlines generated right here on Labs and around the...
Banks asked to postpone the transition to Russian software until 2023
According to the conclusion of the National Financial Market Council (Rosfinsovet), the transition of financial institution owners to Russian software...
Information Sharing can Strengthen the Cybersecurity Measures, says US Cyberspace Report
According to the US Cyberspace Solarium Commission report that came in March this year, there is an immediate requirement of...
Impost3r – A Linux Password Thief
Impost3r is a tool that aim to steal many kinds of linux passwords(including ssh,su,sudo) written by C.Attackers can use Impost3r...
Tangalanga – The Zoom Conference Scanner Hacking Tool
Zoom Conference scanner.This scanner will check for a random meeting id and return information if available.UsageThis are all the possible...
Maturing Your Security Posture: Around-the-Clock Threat Detection With Managed Detection & Response (MDR) Services
Recently, we (virtually!) sat down with Jeremiah Dewey, Rapid7’s VP of Managed Services, to chat about how managed detection response...
