Staying Healthy and Secure: How to Promote a Culture of Productivity While Keeping Your Security Posture Intact
In the second session of our Remote Work Readiness Series, Rapid7’s own security and business experts shared their advice for...
Rapid7’s Full Stack Vulnerability Risk Management Portfolio Recognized for Application Security Capabilities
Many businesses rely on web applications for their success. Because of this, web applications are also perfect targets for attackers....
PhantomLance campaign slipped trojanized apps into marketplaces for years
A long-running malware campaign whose activity dates back to 2016 has been using a sophisticated playbook of tricks to sneak...
VPNs are mainstream, which is good news
Virtual private networks (VPNs) have been growing in popularity for the last three years, a notable trend revealed in a...
Banking Sector suffered more Credential Stuffing than DDoS Attacks
According to F5's cybersecurity agency's report published recently, the financial sector has been a victim of severe credential stuffing attacks...
Lucy: A File Encryption Android Malware that for Ransomware Operations
A malware that attacks Android smartphones has increased its Maas (malware-as-a-service) operations with file encryption capabilities to carry out ransomware...
Remote spring: the rise of RDP bruteforce attacks
With the spread of COVID-19, organizations worldwide have introduced remote working, which is having a direct impact on cybersecurity and...
Elemental – An MITRE ATTACK Threat Library
Elemental is a centralized threat library of MITRE ATT&CK techniques, Atomic Red Team tests, and over 280 Sigma rules. It...
ROADtools – The Azure AD Exploration Framework
(Rogue Office 365 and Azure (active) Directory tools)ROADtools is a framework to interact with Azure AD. It currently consists of...
Threat actors release Troldesh decryption keys
A GitHub user claiming to represent the authors of the Troldesh Ransomware calling themselves the “Shade team” published this statement...
Switching from a “Just in Time” delivery system should include planning ahead
As it becomes clear that some things will never again be the same after the global coronavirus pandemic, it is...
Residents in China under Surveillance amid the Coronavirus Pandemic
According to recent reports, China is alleged for surveilling its residents' homes among the coronavirus epidemic. However, there is no...
Hiding in plain sight: PhantomLance walks into a market
In July 2019, Dr. Web reported about a backdoor trojan in Google Play, which appeared to be sophisticated and unlike...
Terrier – A Image And Container Analysis Tool To Identify And Verify The Presence Of Specific Files According To Their Hashes
Terrier is a Image and Container analysis tool that can be used to scan OCI images and Containers to identify...
wxHexEditor – Hex Editor / Disk Editor for Huge Files or Devices on Linux, Windows and MacOSX
wxHexEditor is another Free Hex Editor, build because there is no good hex editor for Linux system, specially for big...
Rapid7 Announces Intent to Acquire DivvyCloud
Over the past few years, we have continued to see our customers embrace the cloud. There are many driving factors...
Risks in Disposing of IoT Embedded Technology
For years now, we have been told that when disposing of desktops, laptops, servers, and printers, we need to watch...
Cloud data protection: how to secure what you store in the cloud
The cloud has become the standard for data storage. Just a few years ago, individuals and businesses pondered whether or...
Lock and Code S1Ep5: Mythbusting and understanding VPNs with JP Taggart
This week on Lock and Code, we discuss the top security headlines generated right here on Labs and around the...
SeaChange, Video Delivery Software Solutions Provider Hit By Sodinokibi Ransomware
SeaChange, a leading supplier of video delivery software solutions has been attacked by the authors of Sodinokibi ransomware. Reportedly, the...
With Now 400 Million Monthly Active Users Telegram Announces Video Calling Service
Messaging application Telegram announces the development of a group video calling service along with the news that it has now...
Hackers abuse Sophos Firewall Zero Day Vulnerability
Sophos, a UK cybersecurity company famous for its anti-virus products has released an emergency security update this Saturday to combat...
DeathRansom – A Ransomware Developed In Python, With Bypass Technics, For Educational Purposes
What is a ransomware?A ransomware is malware that encrypts all your files and shows a ransom request, which tells you...
Nuclei – Nuclei Is A Fast Tool For Configurable Targeted Scanning Based On Templates Offering Massive Extensibility And Ease Of Use
Nuclei is a fast tool for configurable targeted scanning based on templates offering massive extensibility and ease of use.Nuclei is...
