UK’s NHS Digital warns of an RCE in Okta Advanced Server Access client
The UK’s NHS Digital agency warns of an RCE in the Windows client for the Okta Advanced Server Access authentication...
hacking
Ukraine calls on independent hackers to defend against Russia, Russian underground responds
While Ukraine calls for hacker underground to defend against Russia, ransomware gangs make their moves. Ukraine’s government is asking for...
openSquat – Detection Of Phishing Domains And Domain Squatting. Supports Permutations Such As Homograph Attack, Typosquatting And Bitsquatting
What is openSquat openSquat is an opensource Intelligence (OSINT) security tool to identify cyber squatting threats to specific companies or...
Ukraine: Belarusian APT group UNC1151 targets military personnel with spear phishing
The CERT of Ukraine (CERT-UA) warned of a spear-phishing campaign targeting Ukrainian armed forces personnel. The Computer Emergency Response Team...
Anonymous launched its offensive on Russia in response to the invasion of Ukraine
The popular collective Anonymous declared war on Russia for the illegitimate invasion of Ukraine and announced a series of cyber...
JNDI-Injection-Exploit – A Tool Which Generates JNDI Links Can Start Several Servers To Exploit JNDI Injection Vulnerability
JNDI-Injection-Exploit is a tool for generating workable JNDI links and provide background services by starting RMI server,LDAP server and HTTP...
US and UK details a new Python backdoor used by MuddyWater APT group
US and UK cybersecurity agencies provided details of a new malware used by Iran-linked MuddyWater APT. CISA, the FBI, the...
CISA adds two Zabbix flaws to its Known Exploited Vulnerabilities Catalog
US CISA added two flaws impacting Zabbix infrastructure monitoring tool to its Known Exploited Vulnerabilities Catalog. US Cybersecurity and Infrastructure Security...
Data wiper attacks on Ukraine were planned at least in November and used ransomware as decoy
Experts reported that the wiper attacks that yesterday hit hundreds of systems in Ukraine used a GoLang-based ransomware decoy. Yesterday,...
Deadbolt Ransomware targets Asustor and QNap NAS Devices
Deadbolt ransomware operators are targeting Asustor NAS (network-attached storage) appliances. Storage solutions provider Asustor is warning its customers of a...
New Wiper Malware HermeticWiper targets Ukrainian systems
Cybersecurity experts discovered a new data wiper malware that was used in attacks against hundreds of machines in Ukraine. The threat...
Win-Brute-Logon – Crack Any Microsoft Windows Users Password Without Any Privilege (Guest Account Included)
This PoC was ported in pure PowerShell: https://github.com/DarkCoderSc/power-brute-logonWin Brute Logon (Proof Of Concept) Release date: 2020-05-14 Target: Windows XP to...
US and UK link new Cyclops Blink malware to Russian state hackers
UK and US cybersecurity agencies linked Cyclops Blink malware to Russia’s Sandworm APT US and UK cybersecurity and law enforcement...
Researchers shared technical details of NSA Equation Group’s Bvp47 backdoor
Pangu Lab researchers disclosed details of the Bvp47 backdoor that was used by the US NSA Equation Group. Researchers from...
Sophos linked Entropy ransomware to Dridex malware. Are both linked to Evil Corp?
The code of the recently-emerged Entropy ransomware has similarities with the one of the infamous Dridex malware. The recently-emerged Entropy...
Horde Webmail Software is affected by a dangerous bug since 2012
Experts found a nine-year-old unpatched flaw in the Horde Webmail software that could allow access to email accounts. A feature...
Jatayu – Stealthy Stand Alone PHP Web Shell
JATAYU Stealthy Stand Alone PHP Web Shell FEATURES Http Header Based Authentication. 100% Undetectable. Exec Function Changer. Nothing Fancy USAGE...
Iranian Broadcaster IRIB hit by wiper malware
Iranian national media corporation, Islamic Republic of Iran Broadcasting (IRIB), was hit by a wiper malware in late January 2022....
Threat actors target poorly protected Microsoft SQL Server installs
Threat actors install Cobalt Strike beacons on vulnerable Microsoft SQL Servers to achieve a foothold in the target network. Researchers...
Cookware giant Meyer Corporation discloses cyberattack
US cookware distributor giant Meyer Corporation discloses a data breach that affected thousands of its employees. Meyer Corporation, the second-largest...
Police dismantled a gang that used phishing sites to steal credit cards
The Ukrainian police arrested a gang specialized in the sale of stolen payment card data through phishing attacks. The cybercrime...
China-linked APT10 Target Taiwan’s financial trading industry
China-linked APT group APT10 (aka Stone Panda, Bronze Riverside) targets Taiwan’s financial trading sector with a supply chain attack. The...
Chain-Reactor – An Open Source Framework For Composing Executables That Simulate Adversary Behaviors And Techniques On Linux Endpoints
Chain Reactor is an open-source tool for testing detection and response coverage on Linux machines. The tool generates executables that...
A cyber attack heavily impacted operations of Expeditors International
American worldwide logistics and freight forwarding company Expeditors International shuts down global operations after cyber attack American logistics and freight forwarding company Expeditors International...
