Dissecting Geost: Exposing the Anatomy of the Android Trojan Targeting Russian Banks
The Android banking trojan Geost was first revealed in a research by Sebastian García, Maria Jose Erquiaga and Anna Shirokova...
Are our police forces equipped to deal with modern cybercrimes?
“You should have asked for the presence of a digital detective,” Karen said when I told her what happened at...
UK-Based Network Rail Confirms Online Exposure of Wi-Fi User Data
The travel details and email addresses of around 10,000 commuters who used free wi-fi provided at UK railway stations were...
PrivescCheck – Privilege Escalation Enumeration Script For Windows
This script aims to enumerate common Windows security misconfigurations which can be leveraged for privilege escalation and gather various information...
TwitWork – Monitor Twitter Stream
Monitor twitter stream.TwitWork use the twitter stream which allows you to have a tweets in real-time.There is an input that...
Lessons Learned from an Unlikely Path to My OSCP Certification
About one year ago, my colleague Trevor O’Donnal wrote a blog post, “Why a 17-Year Veteran Pen Tester Took the...
Security Risks in Online Coding Platforms
By David Fiser (Senior Cyber Threat Researcher) Threat Modeling for Online Coding Platforms Before cloud integrated development environments (IDEs) became...
Child identity theft, part 1: On familiar fraud
In 2013, 30-year-old Axton Betz-Hamilton received an angry phone call from her father two weeks after her mother, Pam, died....
A vulnerability that Allows Hackers to Hijack Facebook Accounts
A cybersecurity expert recently found a vulnerability in FB's "login with the Facebook feature." According to the expert, the vulnerability...
Amazon Transcribe Can Automatically Shroud the User’s Personal Information from Call Transcripts?
Amazon Transcribe, the AWS-based 'speech-to-text service, recently came up with a significant new feature which, if executed effectively, can spontaneously...
Windows 10 Users Beware! TrickBots’ Prevalence And Conveyance Escalates in Devices
Reports mention that recently attackers were found exploiting the latest version of the “Remote Desktop ActiveX” which was developed for...
XCTR Hacking Tools – All in one tools for Information Gathering
All in one tools for Information Gathering.Instagram: Capture the RootScreenshotsRead MeInitially, you need to create a project where you will...
WiFi Passview v2.0 – An Open Source Batch Script Based WiFi Passview For Windows!
WiFi Passview is an open source batch script based program that can recover your WiFi Password easily in seconds. This...
Rapid7 2020 Threat Report: Exposing Common Attacker Trends
If you joined Rapid7 at RSAC 2020 just a few days ago, you probably caught wind of Rapid7’s end-of-year threat...
Data-stealing ransomware hits parts maker for Tesla, Boeing and Lockheed Martin
Visser Precision, a parts maker and manufacturing solutions provider for the aerospace, automotive, industrial and manufacturing industries, has reportedly suffered...
Lock and Code S1Ep1: On RSA, the human element, and the week in security
Last week, we told you we were launching a fortnightly podcast, called Lock and Code. This week, we made good...
The hacker explained why in Russia cards will become more often blocked
Hacker Alexander Warski told what to expect from Governing Bodies. According to him, bank cards will more often be blocked...
dnsFookup – DNS Rebinding Toolkit
DNS Rebinding freamwork containing:a dns server obviouslyweb api to create new subdomains and control the dns server, view logs, stuff...
BadBlood – Fills A Microsoft Active Directory Domain With A Structure And Thousands Of Objects
BadBlood by Secframe fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the...
How We Used Data Science Magic to Predict Key RSA 2020 Themes and Takeaways
This blog was co-authored by Mark Hamill and Bob Rudis.There’s nothing quite like attending the annual RSA security conference in...
New Lampion Trojan Found Attacking Portuguese Users
There's a new Trojan in town - "The Lampion Trojan", this malware as discovered by security researchers is distributed via...
Xencrypt – A PowerShell Script Anti-Virus Evasion Tool
Tired of wasting lots of time obfuscating PowerShell scripts like invoke-mimikatz only to have them get detected anyway? Wouldn't it...
Subfinder – A Subdomain Discovery Tool That Discovers Valid Subdomains For Websites
subfinder is a subdomain discovery tool that discovers valid subdomains for websites by using passive online sources. It has a...
Hackers Exploit Vulnerabilities in Pulse VPN and Android Devices to Launch Heavy Cyberattack
The vulnerability named CVE-2019-1150 has affected Pulse VPN's network and is regarded as highly 'severe.' Whereas vulnerability named CVE-2019-2215 targets...
