IBM’s X-Force says who needs malware, PowerShell FTW!
If anyone reading this works in InfoSec, as I do then you will know that a company's internal network, once compromised, is now more likely to be ransacked by automated…
Hackers abuse LinkedIn DMs to plant malware
Hackers are impersonating recruitment agencies on LinkedIn in a bid to target companies with backdoor malware. Researchers at Proofpoint found that the malware campaigns primarily targeted US companies in various…
Multiple ArtraDownloader Variants Used by BITTER to Target Pakistan
Executive Summary Since at least 2015, a suspected South Asian threat grouping known as BITTER has been targeting Pakistan and Chinese organizations using variants of a previously unreported downloader. We have named…
Russian hacker accused of bank cyber-attacks pleads guilty in US court
Russian programmer Stanislav Lisov, extradited to the United States from Spain in 2018, pleaded guilty to conspiring to commit a hacker attack, reported TASS with a reference to Russian lawyer…
Marriott Reveals They Had My Un-encrypted Passport and Credit Card Information, and Now Hackers Have It
Marriott let me know that the hack of their systems released my unencrypted passport number and unencrypted credit card number. Even this information isn’t helpful because they don’t let me…
North Korean hackers could start stealing business secrets
As North Korea tries to rev up its economy, it may shift its hacking efforts from financial thievery to stealing intellectual property, China-style. That's according to a contested new theory…
You have around 20 minutes to contain a Russian APT attack
Governments and private organisations have around 20 minutes to detect and contain a hack from Russian nation-state actors. New statistics published today by US cyber-security firm Crowdstrike ranked threat groups…
Hackers Mock Cybersecurity Firm FireEye with Second Data Dump
The dump is relatively small, containing around 3MB of files. https://pastebin.com/L48e49AK At the end of July, anonymous hackers published documents stolen from an employee of cybersecurity firm FireEye, and claimed that more…
Spaghetti – Web Application Security Scanner
Description Spaghetti is a web application security scanner tool. It is designed to find various default and insecure files, configurations and misconfigurations. Spaghetti is built on python2.7 and can run…
Well thanks anna-senpai for the Mirai source code release
Yeah, thanks a lot.... in-case you can't tell its my sarcasm kicking in. After doing heavy damage to KrebsOnSecurity and other web servers the creator of the Mirai DDoS botnet,…
Stuxnet : Operation Olympic Games NSA Codename
Everyone knows about the joint USA and Israeli malware called Stuxnet that was designed to put a halt to the Iranian nuclear program. According to the new Documentary film Zero…
HP has outlined four exploits plaguing the mobile version of Internet Explorer
Internet Explorer is still one of the most used browsers in the world. The fact that it comes pre-installed on both the desktop version of Windows and Windows Phone means…
Feds still use DOS and Windows 97!!
1/2 TRILLION spent on IT upgrades, but IRS, Feds still use DOS, Windows 97 President Obama's team has spent more than a half trillion dollars on information technology but some…
Hackers threaten to leak sexual fantasies of cheaters
Toronto hackers threatened to leak details including the credit card information, nude photos and sexual fantasies of as many as 37 million customers of a dating website that caters to…
Selling Stolen Accounts for Bitcoin
Hackers appear to have stolen the entire user database of cloud-based Bitcoin mining outfit Cloudminr.io and are offering to sell 79,267 accounts including passwords for a single Bitcoin. The Norwegian…