Securing the MSP: best practices for vetting cybersecurity vendors
Ironically, to keep costs low for their enterprise and mid-market clients, managed service providers (MSPs) are some of the most...
The FBI arrested a Russian associated with Deer.io
The Federal Bureau of Investigation arrested a Russian citizen who allegedly supported the sale of hacked accounts and personal data...
Microsoft shuts down World’s Largest Botnet Army
According to Microsoft, the company was part of a team that took down the global network of zombie bots. Necurs...
A Module-Based Malware Spread by Word Document
As a module-based malware, Trickbot a malware family previously captured by FortiGuard Labs and afterward analyzed in 2016. It can...
Google Stops Displaying Security Warnings in Microsoft Edge, No Longer Recommends Switching to Chrome
Google has stopped advising Microsoft Edge users to switch to Chrome for a more secure experience as the browser extensions...
RedRabbit – Red Team PowerShell Script
RedRabbit is a PowerShell script aimed at helping pentesters conduct ethical hacking #RedTeam To Run: You can either run locally...
Sifter – A OSINT, Recon And Vulnerability Scanner
Sifter is a osint, recon & vulnerability scanner. It combines a plethara of tools within different module sets in order...
Why Our Future in InfoSec Depends on Automation
In a survey conducted by the Ponemon Institute and Domain Tools, 51% of respondents said they believe that automation will...
Operation Overtrap Targets Japanese Online Banking Users Via Bottle Exploit Kit and Brand-New Cinobi Banking Trojan
By Jaromir Horejsi and Joseph C. Chen (Threat Researchers) We recently discovered a new campaign that we dubbed “Operation Overtrap”...
March Patch Tuesday: LNK, Microsoft Word Vulnerabilities Get Fixes
Following the unexpectedly long list of fixes included in last month’s Patch Tuesday, March brings an even longer one, albeit...
Years-long malware operation hides njRAT in cracked hacking tools
Malicious actors have been secretly embedding the njRAT remote access trojan in free hacking tools as well as cracks of those...
Rocket Loader skimmer impersonates CloudFlare library in clever scheme
Update: The digital certificate issued for httpsps has been revoked by GlobalSign. Fraudsters are known for using social engineering tricks...
Check Point: coronavirus has become a tool for hacker attacks on users and businesses
According to Check Point Threat Intelligence, more than 4,000 coronavirus-related domains have been registered worldwide since January 2020. 3% of...
Cisco Vulnerable Again; May Lead To Arbitrary Code Execution!
Earlier this year Cisco was in the headlines for the Zero-day vulnerabilities that were discovered in several of its devices...
The United States accused the manager of Group-IB of cybercrime
According to an indictment in a court database, US authorities accuse Nikita Kislitsin, manager of a Russian cybersecurity company Group-IB,...
Durham City, North Carolina Hit by Ransomware Attack
On Friday, The City of Durham, North Carolina suffered a cyberattack wherein Ryuk Ransomware crippled the city's IT systems and...
FuzzBench – Fuzzer Benchmarking As A Service
FuzzBench is a free service that evaluates fuzzers on a wide variety of real-world benchmarks, at Google scale. The goal...
SSRF Sheriff – A Simple SSRF-testing Sheriff Written In Go
This is an SSRF testing sheriff written in Go. It was originally created for the Uber H1-4420 2019 London Live...
Patch Tuesday – March 2020
Let's start off talking about CVE-2020-0688 from last month -- the Microsoft Exchange Validation Key RCE vulnerability. At the time...
Talking the Origins of THOTCON with Founder Nick Percoco
In a recent episode of Rapid7’s podcast, Security Nation, we talked with Nick Percoco, the creator of Chicago-based security conference...
Busting Ghostcat: An Analysis of the Apache Tomcat Vulnerability (CVE-2020-1938 and CNVD-2020-10487)
by: Magno Logan (Information Security Specialist) Discussions surrounding the Ghostcat vulnerability (CVE-2020-1938 and CNVD-2020-10487) found in Apache Tomcat puts it...
Durham, N.C. bull rushed by ransomware; recovery underway
The city of Durham, North Carolina and the government of Durham County have experienced disruptions since a ransomware attack last...
Don’t get fooled again: Fake coronavirus emails impersonate the WHO to deliver FormBook trojan
Fears over the novel coronavirus have triggered mass quarantines, Purell and Clorox shortages and financial market turmoil. As global concerns...
A week in security (March 2 – 8)
Last week on Malwarebytes Labs, we fired up part 1 of our series on child identity theft, asked how well...
