Analysis of the SunnyDay ransomware
The analysis of a recent sample SunnyDay ransomware revealed some similarities with other ransomware, such as Ever101, Medusa Locker, Curator,...
hacking
vAPI – Vulnerable Adversely Programmed Interface Which Is Self-Hostable API That Mimics OWASP API Top 10 Scenarios Through Exercises
vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios in the means...
US gov agencies e private firms warn nation-state actors are targeting ICS & SCADA devices
The US government agencies warned of threat actors that are targeting ICS and SCADA systems from various vendors. The Department...
CISA adds Windows CLFS Driver Privilege Escalation flaw to its Known Exploited Vulnerabilities Catalog
The U.S. CISA added the CVE-2022-24521 Microsoft Windows CLFS Driver Privilege Escalation Vulnerability to its Known Exploited Vulnerabilities Catalog. The U.S. Cybersecurity...
365Inspect – A PowerShell Script That Automates The Security Assessment Of Microsoft Office 365 Environments
Further the state of O365 security by authoring a PowerShell script that automates the security assessment of Microsoft Office 365...
Critical VMware Workspace ONE Access CVE-2022-22954 flaw actively exploited
Threat actors are actively exploiting a critical vulnerability in VMware Workspace ONE Access and Identity Manager recently patched by the...
Microsoft has taken legal and technical action to dismantle the Zloader botnet
Microsoft’s Digital Crimes Unit (DCU) announced to have shut down dozens C2 servers used by the infamous ZLoader botnet. Microsoft dismantled...
Presshell – Quick And Dirty WordPress Command Execution Shell
presshell Quick & dirty Wordpress Command Execution Shell. Execute shell commands on your wordpress server. Uploaded shell will probably be...
CVE-2021-31805 RCE bug in Apache Struts was finally patched
Apache addressed a critical flaw in Apache Struts RCE that was linked to a previous issue that was not properly...
China-linked Hafnium APT leverages Tarrask malware to gain persistence
China-linked Hafnium APT group started using a new piece of new malware to gain persistence on compromised Windows systems. The...
JekyllBot:5 flaws allow hacking TUG autonomous mobile robots in hospitals
Researchers discovered five vulnerabilities that can be exploited to remotely hack hospital Aethon’s TUG autonomous mobile robots. Researchers at healthcare...
Melody – A Transparent Internet Sensor Built For Threat Intelligence
Melody Monitor the Internet's background noiseMelody is a transparent internet sensor built for Quickstart Quickstart details. TL;DR Release Get the...
EU officials were targeted with Israeli surveillance software
According to a report published by Reuters, an Israeli surveillance software was used to spy on senior officials in the...
Microsoft Partch Tuesday for April 2022 fixed 10 critical vulnerabilities
Microsoft Partch Tuesday security updates for April 2022 fixed 128 vulnerabilities, including an actively exploited zero-day reported by NSA. Microsoft...
Maat – Open-source Symbolic Execution Framework
Maat is an open-source Dynamic Symbolic Execution and Binary Analysis framework. It provides various functionalities such as symbolic execution, taint...
Operation TOURNIQUET: Authorities shut down dark web marketplace RaidForums
The dark web marketplace RaidForums has been shut down and its infrastructure seized as a result of Operation TOURNIQUET. The...
Russia-linked Sandworm APT targets energy facilities in Ukraine with wipers
Russia-linked Sandworm APT group targeted energy facilities in Ukraine with INDUSTROYER2 and CADDYWIPER wipers. Russia-linked Sandworm threat actors targeted energy...
NimPackt-v1 – Nim-based Assembly Packer And Shellcode Loader For Opsec And Profit
By Cas van Cooten ( Usage usage: NimPackt.py -e EXECUTIONMODE -i INPUTFILE required arguments: -e EXECUTIONMODE, --executionmode EXECUTIONMODE Execution mode...
NGINX project maintainers fix flaws in LDAP Reference Implementation
The maintainers of the NGINX web server project addressed a zero-day vulnerability in the Lightweight Directory Access Protocol (LDAP) Reference...
CISA adds WatchGuard flaw to its Known Exploited Vulnerabilities Catalog
The U.S. CISA added the CVE-2022-23176 flaw in WatchGuard Firebox and XTM appliances to its Known Exploited Vulnerabilities Catalog. The U.S....
Anonymous hacked Russia’s Ministry of Culture and leaked 446 GB
The Anonymous collective has hacked Russia’s Ministry of Culture and leaked 446 GB of data through the DDoSecrets platform. Data...
EvilSelenium – A Tool That Weaponizes Selenium To Attack Chromium Based Browsers
EvilSelenium is a new project that weaponizes Support Follow me on twitter @mrd0x BTC Wallet: 38ApE9ciNHiXzEaQExLXdwM6TrEpz2wCUi (for coffee obviously) Download...
FFDroider, a new information-stealing malware disguised as Telegram app
Cybersecurity researchers spotted a new Windows information-stealing malware, named FFDroider, designed to steal credentials and cookies. Cybersecurity researchers from Zscaler...
SuperCare Health discloses a data breach that Impacted +300K people
SuperCare Health, a leading respiratory care provider in the Western U.S, disclosed a data breach that impacted more than 300,000...
