Hunting APTs with YARA
For the past few years, we have been spreading our knowledge and experience of using YARA, often called a pattern...
Chepy – A Python Lib/Cli Equivalent Of The Awesome CyberChef Tool.
Chepy is a python library with a handy cli that is aimed to mirror some of the capabilities of CyberChef....
Sshuttle – Transparent Proxy Server That Works As A Poor Man’S VPN. Forwards Over SSH
As far as I know, sshuttle is the only program that solves the following common case:Your client machine (or router)...
How to Maintain Your Cybersecurity Posture in Uncertain Times
Right now, we are all dealing with uncertain times, given the COVID-19 pandemic. The organizations we work for are depending...
COVID-19 decoy doc, Cloudflare service used to spread ‘BlackWater’ malware
Researchers have uncovered a new malware campaign that uses the COVID-19 pandemic as a lure, and also abuses platform-as-a-service web...
Child identity theft, part 2: How to reclaim your child’s identity
In a world where children as young as a single day old can fall prey to fraud, it is more...
ESET: hackers used the Adobe brand to attack government websites
IT specialists of the Slovak company ESET warn of a new series of attacks committed by the Turla cyber-spy group,...
The Worldwide Pandemic Prompts Technology Giant Samsung to Embrace Electronic Voting
There is no denying the fact that the rise of COVID-19 has taken the world by storm yet it’s very...
Beware of Stalkerware That Has Eyes On All of Your Social Media!
Dear social media mongers, amidst all the talk about the Coronavirus and keeping your body’s health in check, your digital...
Some useful Cybersecurity tips every Work-from-home Employee must know
Amid the Coronavirus (COVID-19) panic, numerous corporates and organizations have told their employees to work from home as a safety...
Stay Wary of Third-Party Apps: Malware App ‘CovidLock’ Locks User Out of their Phone
In an attempt to block misinformation from being spread by developers taking advantage of the COVID-19 charged environment, Google started...
Lazydocker – The Lazier Way To Manage Everything Docker
A simple terminal UI for both docker and docker-compose, written in Go with the gocui library.Minor rant incoming: Something's not...
Pypykatz – Mimikatz Implementation In Pure Python
Mimikatz implementation in pure Python. At least a part of it :)Runs on all OS's which support python>=3.6 WIKISince version...
Redefining How to Measure the Success of Your Vulnerability Management Program
Could your team be wasting its time reporting vulnerability metrics that don’t matter? Security teams often fall into the trap...
Foreign APT groups use coronavirus phishing lures to drop RAT malware
Each day, as the novel coronavirus multiplies and spreads, so do cyber scams capitalizing on users’ fears and thirst for...
Password found to rescue victims of malicious COVID-19 tracker app
Members of the IT and cybersecurity communities have successfully obtained a password key for victims of CovidLock Android ransomware, which...
Lock and Code S1Ep2: On the challenges of managed service providers
This week on Lock and Code, we discuss the top security headlines generated right here on Labs and around the...
APT36 jumps on the coronavirus bandwagon, delivers Crimson RAT
Since the coronavirus became a worldwide health issue, the desire for more information and guidance from government and health authorities...
Cybersecurity experts told how to protect yourself when working from home
After the World Health Organization (WHO) officially recognized the outbreak of COVID-2019 as a pandemic, many employers offered their employees...
Hackers take advantage of Coronavirus panic, launch Cyberattacks
The whole world is in high alert with coronavirus COVID-19, as being declared a pandemic and every government is making...
MonitorMinor: vicious stalkerware
The other day, our Android traps ensnared an interesting specimen of stalkerware — commercial software that is usually used to...
Token-Reverser – Word List Generator To Crack Security Tokens
Word list generator to crack security tokens.Example use case You are testing reset password function Reset password token was sent...
shuffleDNS – Wrapper Around Massdns Written In Go That Allows You To Enumerate Valid Subdomains
shuffleDNS is a wrapper around massdns written in go that allows you to enumerate valid subdomains using active bruteforce as...
How Rapid7 Customer Hilltop Holdings Integrates Security Tools for a Multi-Layered Approach
Recently, we interviewed Anthony Edwards, director of security operations for Hilltop Holdings, about how his financial holdings organization approaches multi-level...
