Spotify, PayPal, GitHub, and other major websites down due to Fastly CDN outage
A large number of popular websites including Reddit, Spotify, PayPal, GitHub, gov.uk, CNN, and the BBC are currently facing problems...
hacking
Trojan Shield, the biggest ever police operation against encrypted communications
Trojan Shield operation: The FBI and Australian Federal Police ran an encrypted chat platform that was used by crime gangs...
US authorities recovered most of the ransom paid by Colonial Pipeline
US officials announced to have recovered most of the $4.3 million ransom that Colonial Pipeline paid to the DarkSide ransomware...
RockYou2021: largest password compilation of all time leaked online with 8.4 billion entries
RockYou2021, the largest password compilation of all time has been leaked on a popular hacker forum, it contains 8.4 billion...
Siloscape, first known malware that drops a backdoor into Kubernetes clusters
Siloscape is a new strain of malware that targets Windows Server containers to execute code on the underlying node and...
Totp-Ssh-Fluxer – Take Security By Obscurity To The Next Level (This Is A Bad Idea, Don’T Really Use This Please)
Some people change their SSH port on their servers so that it is slightly harder to find for bots or...
RedWarden – Flexible CobaltStrike Malleable Redirector
RedWarden - Flexible CobaltStrike Malleable Redirector(previously known as proxy2's malleable_redirector plugin) Let's raise the bar in C2 redirectors IR resiliency,...
Russia behind a massive spear-phishing campaign that hit Ukraine
Ukraine warned of a “massive” spear-phishing campaign carried out by Russia-linked threat actors against its government and private businesses. Three...
Experts found an RCE vulnerability in QNAP Q’center
Researchers at cybersecurity firm Shielder discovered a remote code execution on QNAP Q’center through a manipulated QPKG installation package. Researchers...
Russian cybercrime forums launch contests for cryptocurrency hacks
Cybercriminals in Russian underground forums have been invited to take part in competitions for hacking cryptocurrency and NFT. Several Russian...
Krane – Kubernetes RBAC Static Analysis And Visualisation Tool
Krane is a simple Kubernetes RBAC static analysis tool. It identifies potential security risks in K8s RBAC design and makes...
Typodetect – Detect The Active Mutations Of Domains
This tool gives blue teams, SOC's, researchers and companies the ability to detect the active mutations of their domains, thus...
Chinese SharpPanda APT developed a new backdoor in the last 3 years
Check Point Research (CPR) said that the Chinese APT group SharpPanda spent three years developing a new backdoor to spy...
Security Affairs newsletter Round 317
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
REvil Ransomware spokesman releases an interview on recent attacks
The REvil ransomware operators said in an interview on the “Russian OSINT” Telegram channel that they accidentally targeted United States-based...
US arrested Latvian woman who developed part of Trickbot malware
The US Department of Justice (DOJ) announced the arrest of a Latvian woman for her alleged role in the development...
Shepard – In Progress Persistent Download/Upload/Execution Tool Using Windows BITS
This is an IN PROGRESS persistance tool using Windows Background Intelligent Transfer Service (BITS). Functionality: File Download, File Exfiltration, File...
BlackCocaine Ransomware, a new malware in the threat landscape
Cyble researchers investigated a recent attack on an India-based IT firm that was hit by the BlackCocaine Ransomware gang. Recently Cyber researchers for Cyble...
DoJ: Investigations into ransomware attacks must have similar priority as terrorism
The U.S. Department of Justice was to assign investigation on ransomware attacks the same priority as terrorism in the wake...
US CISA published a guide to better use the MITRE ATT&CK framework
The U.S. CISA announced the availability of a new guide for cyber threat intelligence experts on the use of the...
Hackers scan for VMware vCenter servers vulnerable to CVE-2021-21985 RCE
Hackers are actively scanning the Internet for VMware vCenter servers vulnerable against a critical RCE flaw recently fixed by VMware....
Necro Python bot now enhanced with new VMWare, server exploits
Operators behind the Necro Python botnet have added new features to their bot, including VMWare and server exploits. Experts from...
Metarget – Framework Providing Automatic Constructions Of Vulnerable Infrastructures
1 IntroductionMetarget = meta- + target, a framework providing automatic constructions of vulnerable infrastructures, used to deploy simple or complicated...
Penglab – Abuse Of Google Colab For Cracking Hashes
Abuse of Google Colab for fun and profit. What is it ?Penglab is a ready-to-install setup on Google Colab for...
