LockBit Ransomware operators hit Swiss helicopter maker Kopter
LockBit ransomware operators have compromised the systems at the helicopter maker Kopter and published them on their darkweb leak site....
hacking
Hijackthis – A Free Utility That Finds Malware, Adware And Other Security Threats
HiJackThis Fork is a free utility for Microsoft Windows that scans your computer for settings changed by adware, spyware, malware...
Karkinos – Penetration Testing And Hacking CTF’s Swiss Army Knife With: Reverse Shell Handling – Encoding/Decoding – Encryption/Decryption – Cracking Hashes / Hashing
Karkinos is a light-weight 'Swiss Army Knife' for penetration testing and/or hacking CTF's. Currently, Karkinos offers the following: Encoding/Decoding characters...
Drug dealers are selling Pfizer COVID vaccines on the darkweb
While the United Kingdom announced the distribution of the COVID-19 vaccine to the population drug dealers is selling ‘Pfizer COVID...
Security Affairs newsletter Round 292
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
COVID-19 themed attacks October 1 – December 5, 2020
This post includes the details of the COVID-19 themed attacks launched from October 1 to December 5, 2020. Threat actors...
Police arrest two people over stealing sensitive data from defense giant
Italian police arrested two people that have stolen 10 GB of confidental and alleged secret data from the defense company...
COVID-19 – Johnson & Johnson saw a 30% uptick in cyber-attacks
Healthcare organizations like Johnson & Johnson are observing a surge of cyber attacks carried by state-sponsored hackers during COVID-19 pandemic....
Human resource consulting giant Randstad hit by Egregor ransomware
Multinational human resource consulting firm Randstad NV announced that they were a victim of the Egregor ransomware. Egregor ransomware operators have...
ADSearch – A Tool To Help Query AD Via The LDAP Protocol
A tool written for cobalt-strike's execute-assembly command that allows for more efficent querying of AD. Key FeaturesList all Domain Admins...
Obfuscator – The Program Is Designed To Obfuscate The Shellcode
The program is designed to obfuscate the shellcode. Currently the tool supports 2 encryption. 1) XOR2) AES The tool accepts...
Cyber mercenaries group DeathStalker uses a new backdoor
The group of cyber mercenaries tracked as DeathStalker has been using a new PowerShell backdoor in recent attacks. The cyber...
Iranian hackers access unsecured HMI at Israeli Water Facility
A group of Iranian hackers gained access to a un unprotected ICS at an Israeli Water Facility and posted a...
Recently disclosed CVE-2020-4006 VMware zero-day was reported by NSA
VMware addressed CVE-2020-4006 zero-day flaw in VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector. VMware has finally...
Pytmipe – Python Library And Client For Token Manipulations And Impersonations For Privilege Escalation On Windows
PYTMIPE (PYthon library for Token Manipulation and Impersonation for Privilege Escalation) is a Python 3 library for manipulating Windows tokens...
Enum4Linux-Ng – A Next Generation Version Of Enum4Linux (A Windows/Samba Enumeration Tool) With Additional Features Like JSON/YAML Export
enum4linux-ng.py is a rewrite of Mark Lowe's (former Portcullis Labs now Cisco CX Security Labs) enum4linux.pl, a tool for enumerating...
Islamic imprisoned hacker Ardit Ferizi ordered to be deported
The Islamic hacker Ardit Ferizi, who is serving 20 years for giving his support to Islamic State group has been granted compassionate...
Hundreds of millions of Android users exposed to hack due to CVE-2020-8913
Hundreds of millions of Android users are potentially exposed to the risk of hack due to the use of Android...
Egregor ransomware attack paralyzed for 3 days payment systems at Metro Vancouver’s transportation agency TransLink
The Egregor ransomware operators hit Metro Vancouver’s transportation agency TransLink disrupting services and payment systems. Egregor ransomware operators made the...
Hackers hide software skimmer in social media sharing icons
Security researchers have uncovered a new technique to inject a software skimmer onto checkout pages, the malware hides in social...
Hackers are targeting COVID-19 vaccine cold chain
IBM X-Force experts warned of threat actors actively targeting organizations associated with the COVID-19 vaccine cold chain. Researchers from IBM...
Aclpwn.Py – Active Directory ACL Exploitation With BloodHound
Aclpwn.py is a tool that interacts with BloodHound to identify and exploit ACL based privilege escalation paths. It takes a...
JSFScan.sh – Automation For Javascript Recon In Bug Bounty
Blog can be found at https://medium.com/@patelkathan22/beginners-guide-on-how-you-can-use-javascript-in-bugbounty-492f6eb1f9ea?sk=21500dc4288281c7e6ed2315943269e7 Script made for all your javascript recon automation in bugbounty. Just pass subdomain list...
TrickBoot feature allows TrickBot bot to run UEFI attacks
TrickBot, one of the most active botnets, in the world, gets a new improvement by adding a UEFI/BIOS Bootkit Feature....
