OrBit, a new sophisticated Linux malware still undetected
Cybersecurity researchers warn of new malware, tracked as OrBit, which is a fully undetected Linux threat. Cybersecurity researchers at Intezer...
hacking
OpenSSL version 3.0.5 fixes a flaw that could potentially lead to RCE
The development team behind the OpenSSL project fixed a high-severity bug in the library that could potentially lead to remote code execution....
Marriott International suffered a new data breach, attackers stole 20GB of data
Hotel chain Marriott International suffered a new data breach, a threat actor has stolen 20GB from the company. Hotel chain...
CrackQL – GraphQL Password Brute-Force And Fuzzing Utility
CrackQL is a GraphQL password brute-force and fuzzing utility. CrackQL is a versatile GraphQL penetration testing tool that exploits poor...
Cyberattacks against law enforcement are on the rise
Experts observed an increase in malicious activity targeting law enforcement agencies at the beginning of Q2 2022. Resecurity, a Los...
Less popular, but very effective, Red-Teaming Tool BRc4 used in attacks in the wild
Threat actors are abusing legitimate adversary simulation software BRc4 in their campaigns to evade detection. Researchers from Palo Alto Networks...
New Hive ransomware variant is written in Rust and use improved encryption method
Hive ransomware operators have improved their file-encrypting module by migrating to Rust language and adopting a more sophisticated encryption method....
Malicious NPM packages used to grab data from apps, websites
Researchers from ReversingLabs discovered tens of malicious NPM packages stealing data from apps and web forms. Researchers from ReversingLabs discovered...
Iranian Fars News Agency claims cyberattack on a company involved in the construction of Tel Aviv metro
Iran’s Fars News Agency reported that a massive cyberattack hit operating systems and servers of the Tel Aviv Metro. Iran’s...
Cyber Police of Ukraine arrested 9 men behind phishing attacks on Ukrainians attempting to capitalize on the ongoing conflict
The Cyber Police of Ukraine arrested nine members of a cybercriminal gang that has stolen 100 million hryvnias via phishing...
Cspparse – A Tool To Evaluate Content Security Policies
cspparse is a tool to evaluate Content Security Policies. It uses Google's API to retrieve the CSP Headers and returns...
Threat actors compromised British Army ’s Twitter, YouTube accounts to promote crypto scams
Threat actors compromised the Twitter and YouTube accounts of the British Army to promote online crypto scams. The Twitter and...
AstraLocker ransomware operators shut down their operations
AstraLocker ransomware operators told BleepingComputer they’re shutting down their operations and are releasing decryptors. AstraLocker ransomware operators told BleepingComputer they’re...
Google fixes the fourth Chrome zero-day in 2022
Google addressed a high-severity zero-day Chrome vulnerability actively exploited in the wild, it is the fourth zero-day patched in 2022....
Data of a billion Chinese residents available for sale on the dark web
Threat actors claim to have breached a database belonging to Shanghai police and stole the data of a billion Chinese...
Popular Django web framework affected by a SQL Injection flaw. Upgrade it now!
The development team behind the Django Project has addressed a high-severity SQL Injection flaw in its framework. Django is a...
Unfaithful HackerOne employee steals bug reports to claim additional bounties
Bug bounty platform HackerOne disclosed that a former employee improperly accessed security reports submitted to claim additional bounties The vulnerability...
Threat Report Portugal: Q2 2022
The Threat Report Portugal: Q2 2022 compiles data collected on the malicious campaigns that occurred from March to June, Q2,...
CISA orders federal agencies to patch CVE-2022-26925 by July 22
US Critical Infrastructure Security Agency (CISA) adds CVE-2022-26925 Windows LSA flaw to its Known Exploited Vulnerabilities Catalog. In May the...
Tens of Jenkins plugins are affected by zero-day vulnerabilities
Jenkins security team disclosed tens of flaws affecting 29 plugins for the Jenkins automation server, most of them are yet...
Microsoft: Raspberry Robin worm already infected hundreds of networks
Microsoft announced that the Windows worm Raspberry Robin has already infected the networks of hundreds of organizations. Raspberry Robin is...
Security Affairs newsletter Round 372 by Pierluigi Paganini
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs for...
Half of actively exploited zero-day issues in H1 2022 are variants of previous flaws
Google Project Zero states that in H1 2022 at least half of zero-day issues exploited in attacks were related to...
Aiodnsbrute – DNS Asynchronous Brute Force Utility
A Python 3.5+ tool that uses asyncio to brute force domain names asynchronously. Speed It's fast. Benchmarks on small VPS...
