How CVSS works: characterizing and scoring vulnerabilities
The Common Vulnerability Scoring System (CVSS) provides software developers, testers, and security and IT professionals with a standardized process for...
Data of 9 million customers of the Russian courier service CDEK leaked
Data belonging to nine million customers of the CDEC Express transportation service was put up for sale on the Web...
Security Flaws Impacting Oracle’s iPlanet Web Server Discovered By Researchers
Cyber Security Experts discover two security defects affecting Oracle's iPlanet Web Server that could cause sensitive data exposure and limited...
IoT (Internet of Things) : taking the world by storm
IoT or Internet of things refers to billions of devices and machines in the world connected to the internet, sharing...
Saycheese – Grab Target’S Webcam Shots By Link
Take webcam shots from target just sending a malicious link.How it works?The tool generates a malicious HTTPS page using Serveo...
Kaiten – A Undetectable Payload Generation
A Undetectable Payload Generation. This tool is for educational purpose only, usage of Kaiten for attacking targets without prior mutual...
How to Simplify InsightConnect Workflows Using Join Step
I think we can all agree that when you are building workflows and setting up automation for your environment with...
RevenueWire to pay $6.7 million to settle FTC charges
What can you do as a scammer when no legitimate payment provider wants to process your payments anymore? Or, what...
The sites of the online action in honor of the victory in the Great Patriotic War were attacked by hackers
Sites where the online campaign Immortal regiment was broadcast, as well as the hotline’s telephone number, were subjected to repeated...
Users May Risk Losing their Passwords on Dark Web For Sale
In April, Zoom became one of the many victims of the companies that lost their user data to the hackers....
Russia recognized as the leader in posting fraudulent resources on the Web
According to the results of last year, Russia seized the first place from the United States in terms ofthe placement...
Kali Linux 2020.2 Release – Penetration Testing and Ethical Hacking Linux Distribution
We are incredibly excited to announce the second release of 2020, Kali Linux 2020.1.2A quick overview of what’s new since...
Clipboardme – Grab And Inject Clipboard Content By Link
Grab/Inject Clipboard ContentBrowsers are implementing a new JavaScript API for asynchronous clipboard access to integrate copy and paste into web...
Threadtear – Multifunctional Java Deobfuscation Tool Suite
Threadtear is a multifunctional deobfuscation tool for java. Suitable for easier code analysis without worrying too much about obfuscation. Even...
Patch Tuesday – May 2020
Microsoft's fifth Patch Tuesday of the year brings us fixes for 111 different security issues, just a touch under what...
Three Switching Costs to Consider When Evaluating a New Vulnerability Management Solution
Ah, vulnerability management. There are some great solutions out there—as well as some not-so-great solutions. If you’re using the latter,...
How a Security Anomaly was Accidentally Found in an EAL6+ JavaCard
Context Quarkslab is one of the 10 ITSEF (Information Technology Security Evaluation Facility, CESTI in French) licensed by the ANSSI's...
Lock and Code S1Ep6: Recognizing facial recognition’s flaws with Chris Boyd
This week on Lock and Code, we discuss the top security headlines generated right here on Labs and around the...
Researchers Monitor Rise Of An Infostealer Dubbed As ‘Poulight’ That Most Likely Has A Russian Origin
In times where info-stealer is progressively becoming one of the most common threats, the Infostealer market has thus risen as...
‘ShinyHunters’, a Hacker Group Selling Databases of 10 Organization on the Dark Web for $18,000
A group of hackers has put the user databases of 10 companies for sale on the dark web, a part...
Maze Ransomware and its Various Campaigns Continue to Threaten the Cyber World
Ever since this year began, the Maze ransomware has been hitting headlines. Recently researchers discovered more samples of Maze in...
Wifipumpkin3 – Powerful Framework For Rogue Access Point Attack
wifipumpkin3 is powerful framework for rogue access point attack, written in Python, that allow and offer to security researchers, red...
Catchyou – FUD Win32 Msfvenom Payload Generator
Fully Undetectable Win32 MSFVenom Payload Generator (meterpreter/shell reverse tcp)Author: github.com/thelinuxchoice/catchyouTwitter: twitter.com/linux_choicePlease, don't upload to VirusTotal! Use https://antiscan.meFeatures:Fully Undetectable Win32 MSFVenom...
Preparing for the Cybersecurity Maturity Model Certification (CMMC), Part 2: The Larger Picture
Welcome back! In Part 1 of the CMMC series, we introduced the Cybersecurity Maturity Model Certification (CMMC) and the concept...
