Crackonosh Malware Exploits Windows Safe Mode to Mine Cryptocurrency Secretly
Researchers have uncovered a variant of cryptocurrency-mining malware that exploits Windows Safe Mode during attacks. Researchers at Avast have termed the...
Mythic – A Collaborative, Multi-Platform, Red Teaming Framework
A cross-platform, post-exploit, red teaming framework built with python3, docker, docker-compose, and a web browser UI. It's designed to provide...
HoneyCreds – Network Credential Injection To Detect Responder And Other Network Poisoners
HoneyCreds network credential injection to detect responder and other network poisoners. RequirementsRequires Python 3.6+ (tested on Python 3.9)smbprotocolcffisplunk-sdk Installationgit clone https://github.com/Ben0xA/HoneyCreds.gitcd...
Crackonosh Monero miner made $2M after infecting 222,000 Win systems
Researchers have discovered a strain of cryptocurrency-mining malware, tracked as Crackonosh, that abuses Windows Safe mode to avoid detection. Researchers from Avast...
Security Affairs newsletter Round 320
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
Hackers target Cisco ASA devices after a PoC exploit code was published online
Experts warn of attacks against Cisco ASA devices after researchers have published a PoC exploit code on Twitter for a...
Mercedes-Benz data breach impacted roughly 1000 individuals
Mercedes-Benz USA disclosed a data breach that impacted 1.6 million customers, exposed data includes financial data and social security numbers...
CVE-2021-28041
Summary: ssh-agent in OpenSSH before 8.5 has a double free that may be relevant in a few less-common scenarios, such...
CVE-2021-28041
Summary: ssh-agent in OpenSSH before 8.5 has a double free that may be relevant in a few less-common scenarios, such...
CVE-2021-34551
Summary: PHPMailer before 6.5.0 on Windows allows remote code execution if lang_path is untrusted data and has a UNC pathname....
CVE-2021-3603
Summary: PHPMailer 6.4.1 and earlier contain a vulnerability that can result in untrusted code being called (if such code is...
CVE-2021-22543
Summary: An issue was discovered in Linux: KVM through Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks...
CVE-2020-11976
Summary: By crafting a special URL it is possible to make Wicket deliver unprocessed HTML templates. This would allow an...
Attackers Pummelled the Gaming Industry During the Pandemic
According to Akamai, a content delivery network (CDN), the gaming business has seen more cyberattacks than any other industry during...
VMware Patches Authentication Bypass in Carbon Black App Control
VMware, the California-based cloud computing and virtualization technology firm has patched an authentication bypass vulnerability in its Carbon Black App...
A New GoLang Trojan ChaChi Used in Attacks Against US Schools
A new Trojan written in the Go programming language has shifted its focus from government agencies to schools in the...
Mercedes-Benz USA: Nearly 1,000 Customers’ Data Accessible Online
Mercedes-Benz USA stated on Thursday 24th of June, that sensitive information was made inadvisably accessible on a cloud storage network...
SharpHook – Tool Tath Uses Various API Hooks In Order To Give Us The Desired Credentials
SharpHook is inspired by the SharpRDPThief project, It uses various API hooks in order to give us the desired credentials....
CamRaptor – Tool That Exploits Several Vulnerabilities In Popular DVR Cameras To Obtain Network Camera Credentials
CamRaptor is a tool that exploits several vulnerabilities in popular DVR cameras to obtain network camera credentials. FeaturesExploits vulnerabilities in...
Microsoft: Russia-linked SolarWinds hackers breached three new entities
Microsoft discovered that Russia-linked SolarWinds hackers, tracked as Nobelium, have breached the network of three new organizations. Microsoft revealed on...
New ransomware group Hive leaks Altus group sample files
On June 14th, Altus Group, a commercial real estate software solutions firm, disclosed a security breach, now Hive ransomware gang...
Epsilon Red – our research reveals more than 3.5 thousand servers are still vulnerable
CyberNews researchers analyzed the recently discovered Epsilon Red operations and found that more than 3.5K servers are still vulnerable Several...
Marketo Marketplace – Cybercriminals are targeting major law firms
Cybercriminals published for sale in Dark Web 58GB of data stolen from Hollingsworth LLP. One of the emerging underground marketplaces...
Hackers exploit 3-years old flaw to wipe Western Digital devices
Threat actors are wiping many Western Digital (WD) My Book Live and My Book Live Duo NAS devices likely exploiting...
