Rapid7 Recognized as a Strong Performer Among Security Analytics Providers by Leading Industry Report
At Rapid7, we recognize that security professionals are facing a more challenging landscape than ever before. The mission of InsightIDR—our...
hacking
Baltimore County Schools close after a ransomware attack
Baltimore County Schools were hit by a ransomware attack that forced them to close leaving more than 100,000 students out....
Vietnam-linked Bismuth APT leverages coin miners to stay under the radar
Microsoft warns of Vietnam-linked Bismuth group that is deploying cryptocurrency miner while continues its cyberespionage campaigns Researchers from Microsoft reported...
UK gov bans new Huawei equipment installs after Sept 2021
The British government will ban the installation of new Huawei equipment in the 5G networks of Wireless carriers after September...
Talos reported WebKit flaws in WebKit that allow Remote Code Execution
Talos experts found flaws in the WebKit browser engine that can be also exploited for remote code execution via specially...
Exclusive: Experts from TIM’s Red Team Research (RTR) found 6 zero-days
TIM’s Red Team Research led by Massimiliano Brolli discovered 6 new zero-day vulnerabilities in Schneider Electric StruxureWare. Today, TIM’s Red...
Exploring malware to bypass DNA screening and lead to ‘biohacking’ attacks
Boffins from the Ben-Gurion University of the Negev described a new cyberattack on DNA scientists that could open to biological...
Return of the CLI
The new Empire CLI is out and includes some big changes to the user experience. We rebuilt the CLI to...
GG-AESY – Hide Cool Stuff In Images
Blogpost: https://redteamer.tips/introducing-gg-aesy-a-stegocryptor/ WARNING: you might need to restore NuGet packages and restart visual studio before compiling. If anyone knows how...
Fortiscan – A High Performance FortiGate SSL-VPN Vulnerability Scanning And Exploitation Tool
(CVE-2018-13379) Exploitation Tool, You can use this tool to check the vulnerability in your FortiGate SSL-VPN. https://www.fortinet.com/blog/business-and-technology/fortios-ssl-vulnerability Usage v 0.6...
NICER Protocol Deep Dive: Internet Exposure of Redis
Welcome to the NICER Protocol Deep Dive blog series! When we started researching what all was out on the internet...
University of Vermont Medical Center has yet to fully recover from October cyber attack
The University of Vermont Medical Center has yet to fully recover from a cyber attack that crippled systems at the Burlington hospital....
Delaware County, Pennsylvania, opted to pay 500K ransom to DoppelPaymer gang
Delaware County, Pennsylvania opted to pay a $500,000 ransom after it was the victim of a DoppelPaymer ransomware attack last...
Crooks stole 800,000€ from ATMs in Italy with Black Box attack
A cyber criminal organization has stolen money from at least 35 Italian ATMs with a black box attack technique. A...
A critical flaw in industrial automation systems opens to remote hack
Experts found a critical flaw in Real-Time Automation’s (RTA) 499ES EtherNet/IP stack that could allow hacking industrial control systems. Tracked...
Security Affairs newsletter Round 291
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
Sopra Steria estimates financial Impact of ransomware attack could reach €50 Million
IT services provider Sopra Steria estimates that a recent ransomware attack will have a financial impact ranging between €40M and €50M. At...
Admin-Scanner – This Tool Is Design To Find Admin Panel Of Any Website By Using Custom Wordlist Or Default Wordlist Easily
Website Admin Panel FinderHow To Install (Linux/pc)sudo apt install python3 sudo apt install python3-pip sudo apt install git git clone...
Talon – A Password Guessing Tool That Targets The Kerberos And LDAP Services Within The Windows Active Directory Environment
Talon is a tool designed to perform automated password guessing attacks while remaining undetected. Talon can enumerate a list of...
Webscan – Browser-based Network Scanner And local-IP Detection
webscan is a browser-based network IP scanner and local IP detector. It detects IPs bound to the user/victim by listening...
Tracee – Container And System Event Tracing Using eBPF
Tracee is a lightweight and easy to use container and system tracing tool. It allows you to observe system calls...
DNSx – A Fast And Multi-Purpose DNS Toolkit Allow To Run Multiple DNS Queries Of Your Choice With A List Of User-Supplied Resolvers
dnsx is a fast and multi-purpose DNS toolkit allow to run multiple probers using retryabledns library, that allows you to...
Damn-Vulnerable-Bank – Vulnerable Banking Application For Android
Damn Vulnerable Bank Android Application aims to provide an interface for everyone to get a detailed understanding with internals and...
N1QLMap – The Tool Exfiltrates Data From Couchbase Database By Exploiting N1QL Injection Vulnerabilities
N1QLMap is an N1QL exploitation tool. Currently works with Couchbase database. The tool supports data extraction and performing SSRF attacks...
