12,000+ Jenkins servers can be used to launch DDoS attacks
According to Radware researchers, a vulnerability (CVE-2020-2100) in 12,000+ Jenkins servers can be exploited to launch and amplify DDoS attacks...
Hashcracker – Python Hash Cracker
Supported hashing algorithms: SHA512, SHA256, SHA384, SHA1, MD5 Features: auto detection of hashing algorithm based on length (not recommended), bruteforce,...
KawaiiDeauther – Jam All Wifi Clients/Routers
Kawaii Deauther is a pentest toolkit whose goal is to perform jam on WiFi clients/routers and spam many fake AP...
How to Handle Misconfigurations in the Cloud
This blog post is part three of our four-part series on security in the cloud. In part one, we discussed...
February Patch Tuesday: Fixes for Critical LNK, RDP, Trident Vulnerabilities
The first Patch Tuesday of 2020 in January brought an unusually long list of patches, but February brings an even...
Phishing emails lure victims with news of coronavirus’ impact on shipping
Looking to capitalize on the current coronavirus scare, malware distributors have launched a new phishing campaign that targets global companies...
Deputy of the State Duma of the Russian Federation: it is necessary at the legislative level to protect the data of Russians on Facebook
Andrey Alshevskikh, the State Duma Deputy, said that the threat to the personal data of Russian users of the social...
Glitch in Tax Service Exposed 1.2 Million Danes’ CPR Numbers
A bug in the TastSelv Borger tax service which falls under the management of the US company DXC Technology has...
Scammers Target Coindesk ;Impersonating Reporters and Editors in the Last Months
Scammers have a new target and this time its CoinDesk as they try to impersonate CoinDesk reporters and editors in...
Cisco’s Routers. Switches and IP Equipment Suffer Zero-Day Attacks! Major Vulnerabilities Discovered!
The extremely well-known Cisco’s products, including IP Phones, Routers, cameras, and switches, were determined to have several severe “zero-day” vulnerabilities...
Agente – Distributed Simple And Robust Release Management And Monitoring System
Distributed simple and robust release management and monitoring system.**This project on going work.Road mapCore systemFirst worker agentManagement dashboardJenkins vs CI...
XSS-Freak – An XSS Scanner Fully Written In Python3 From Scratch
XSS-Freak is an XSS scanner fully written in python3 from scratch. It is one of its kind since it crawls...
Patch Tuesday – February 2020
A relatively modest 99-vulnerability February Patch Tuesday has arrived with a fix for the Internet Explorer 0-day CVE-2020-0674 (originally ADV200001)...
Intro to the SOC Visibility Triad
Data aggregated from these three core security realms can give the SOC an overall view of the most critical activity...
Malwarebytes Labs releases 2020 State of Malware Report
Malwarebytes Labs today released the results of our annual study on the state of malware—the 2020 State of Malware Report—and...
Battling online coronavirus scams with facts
Panic and confusion about the recent coronavirus outbreak spurred threat actors to launch several malware campaigns across the world, relying...
A week in security (February 3 – 9)
Last week on Malwarebytes Labs, we looked at Washington state’s latest efforts in providing better data privacy rights for their...
Computers can be hacked through a “smart” light bulb
Smart light bulbs can not only make the lighting in an apartment and house more convenient and cheaper but also...
CEO of a detective agency and speaker on cyber attacks: users should understand that Facebook is leaking their data
Numerous Facebook leaks in 2013 and 2016 put users in a position where they are not responsible for their security....
KBOT: sometimes they come back
Although by force of habit many still refer to any malware as a virus, this once extremely common class of...
IPv6Tools – A Robust Modular Framework That Enables The Ability To Visually Audit An IPv6 Enabled Network
The IPv6Tools framework is a robust set of modules and plugins that allow a user to audit an IPv6 enabled...
Pytm – A Pythonic Framework For Threat Modeling
Define your system in Python using the elements and properties described in the pytm framework. Based on your definition, pytm...
Outlaw Updates Kit to Kill Older Miner Versions, Targets More Systems
By Jindrich Karasek (Threat Researcher) As we’ve observed with cybercriminal groups that aim to maximize profits for every campaign, silence...
Data from more than half a million clients of Russian microfinance organizations has been put up for sale
The base of more than 1.2 million MFIs clients, which is in the top 10 on the market, is up...
