Experts found three new 15-year-old bugs in a Linux kernel module
Three 15-year-old flaws in Linux kernel could be exploited by local attackers with basic user privileges to gain root privileges on...
hacking
HTTP Bridge – Send TCP Stream Packets Over Simple HTTP Request
I've wrote this program as a proof of concept to test the idea of be able to send tcp stream...
Gitls – Enumerate Git Repository URL From List Of URL / User / Org
Enumerate git repository URL from list of URL / User / Org. Friendly to pipeline This tool is available when...
The fire in the OVH datacenter also impacted APTs and cybercrime groups
The fire at the OVH datacenter in Strasbourg also impacted the command and control infrastructure used by several nation-state APT...
New variant for Mac Malware XCSSET compiled for M1 Chips
Kaspersky researchers spotted a new variant of the XCSSET Mac malware that compiled for devices running on Apple M1 chips....
10,000+ WeLeakInfo customer records leaked
An actor claimed to have registered one of the domains of WeLeakInfo, accessed details of 10000+ WeLeakInfo’ s customers, and...
Go-RouterSocks – Router Sock. One Port Socks For All The Others.
The next step after compromising a machine is to enumerate the network behind. Many tools exist to expose a socks...
Internet disruption in Russia coincided with the introduction of restrictions
Experts at the NetBlocks Internet Observatory observed this week a temporary disruption of internet service in Russia due to new...
Researchers warn of a surge in cyber attacks against Microsoft Exchange
Researchers warn of a surge in cyber attacks against Microsoft Exchange servers exploiting the recently disclosed ProxyLogon vulnerabilities. Researchers at...
Malspam campaign uses icon files to delivers NanoCore RAT
Researchers at Trustwave spotted a new malspam campaign that is abusing icon files to trick victims into installing the NanoCore...
Expert publishes PoC exploit code for Microsoft Exchange flaws
This week a security researcher published on GitHub a proof-of-concept tool to hack Microsoft Exchange servers chaining two of ProxyLogon...
Introducing the 2020 Vulnerability Intelligence Report: 50 CVEs that Made Headlines in 2020
2020 was a tumultuous year for vulnerability risk management. Defenders had to contend with a growing volume of high-priority security...
Hackers stole data from Norway parliament exploiting Microsoft Exchange flaws
Norway parliament, the Storting, has suffered a new cyberattack, hackers stole data by exploiting recently disclosed Microsoft Exchange vulnerabilities. Norway...
RedXOR, a new powerful Linux backdoor in Winnti APT arsenal
Intezer experts have spotted a new strain of Linux backdoor dubbed RedXOR that is believed to be part of the...
F5 addresses critical vulnerabilities in BIG-IP and BIG-IQ
Security firm F5 announced the availability of patches for seven vulnerabilities in BIG-IP, four of which have been rated as...
White hat hackers gained access more than 150,000 surveillance cameras
A group of hackers claimed to have compromised more than 150,000 surveillance cameras at banks, jails, schools, and prominent companies...
InsightIDR’s NTA Capabilities Expanded to AWS
We’re excited to announce we have expanded the Network Traffic Analysis (NTA) capabilities in InsightIDR to support Amazon Web Services...
OVH data centers suffered a fire, many popular sites are offline
OVH, the largest hosting provider in Europe, has suffered a terrible fire that destroyed the data centers located in Strasbourg. OVH,...
A flaw in The Plus Addons for Elementor WordPress plugin allows sites takeover
Researchers from the Wordfence team found a critical vulnerability in The Plus Addons for Elementor WordPress plugin that could be...
Microsoft’s March Patch Tuesday fixes 14 Critical flaws
Microsoft’s March Patch Tuesday security updates address 89 vulnerabilities in its products, 14 are listed as Critical and 75 are...
Another French hospital hit by a ransomware attack
A ransomware attack hit the Oloron-Sainte-Marie hospital in southwest France, it is the third such attack in the last month....
Microsoft releases ProxyLogon patches for unsupported Microsoft Exchange versions
Microsoft released ProxyLogon security updates for Microsoft Exchange servers running vulnerable unsupported Cumulative Update versions. On March 2nd, Microsoft has...
Writehat – A Pentest Reporting Tool Written In Python
WriteHat is a reporting tool which removes Microsoft Word (and many hours of suffering) from the reporting process. Markdown -->...
Patch Tuesday – March 2021
Another Patch Tuesday (2021-Mar) is upon us and with this month comes a whopping 122 CVEs. As usual Windows tops...
