Solr-GRAB – Steal Apache Solr Instance Queries With Or Without A Username And Password
Steal Apache Solr instance Queries with or without a username and password. DISCLAIMER: This project should be used for authorized...
OSINT
Trend Micro fixes 3 flaws in Home Network Security Devices
Trend Micro fixed some flaws in Trend Micro Home Network Security devices that could be exploited to elevate privileges or...
Apple addresses three zero-day flaws actively exploited in the wild
Apple has addressed three zero-day vulnerabilities in macOS and tvOS actively exploited in the wild by threat actors. Apple has...
Audio equipment maker Bose Corporation discloses a ransomware attack
The audio equipment manufacturer Bose Corporation said it was the victim of a ransomware attack that took place earlier this...
US banks are giving facial recognition a go; EU tightens regulations, FTC updates AI guidelines
US banks are giving the green light to the adoption of facial recognition technology, while authorities provide regulations and updates...
French intel found flaws in Bluetooth Core and Mesh specs
Attackers could exploit a set of Bluetooth vulnerabilities, affecting the Core and Mesh Profile specifications, to conduct man-in-the-middle (MitM) attacks. Researchers at...
Zeppelin ransomware gang is back after a temporary pause
Operators behind the Zeppelin ransomware-as-a-service (RaaS) have resumed their operations after a temporary interruption. Researchers from BleepingComputer reported that operators...
VPN Android apps: What you should know
Months ago, we told readers about the importance of using a VPN on their iPhones, and while those lessons do...
Zeppelin Ransomware have Resumed their Operations After a Temporary Pause
According to BleepingComputer, the operators behind the Zeppelin ransomware-as-a-service (RaaS), aka Buran, have resumed operations following a brief outage. Zeppelin's...
Darkside Ransomware Gang Received Nearly $5 Million as the Extortion Amount from the Victims of Colonial Pipeline Attack
Security experts at London-based blockchain analytics firm Elliptic discovered the bitcoin wallet used by the ransomware group responsible for the...
Pipeline Shutdown Shows Need for Tougher Cybersecurity Laws
The six-day shutdown of a key 5,550-mile fuel pipeline earlier this month as a result of a malware attack proved...
Smart Plugs Used by Cyber Criminals to Break into Victims Property
Inexpensive intelligent connectors are a big threat to cybersecurity and can effectively be used by cybercriminals to hack anyone’s device...
DeFi100, a Crypto Project, Allegedly Scammed Investors of $32 Million
According to reports and tweets, DeFi100, a cryptocurrency project, allegedly defrauded investors out of $32 million (roughly Rs. 233 crores)....
Evolution of JSWorm ransomware
Introduction Over the past few years, the ransomware threat landscape has been gradually changing. We have been witness to a...
CiLocks – Android LockScreen Bypass
CiLocks - Android LockScreen BypassFeaturesBrute Pin 4 Digit Brute Pin 6 Digit Brute LockScreen Using Wordlist Bypass LockScreen {Antiguard} Not...
MurMurHash – Tool To Calculate A MurmurHash Value Of A Favicon To Hunt Phishing Websites On The Shodan Platform
This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.What...
13 flaws in Nagios IT Monitoring Software pose serious risk to orgs
Researchers disclosed details about 13 vulnerabilities in the Nagios network monitoring application that could be exploited for malicious purposes. Cybersecurity...
Anker fixed an issue that caused access to Eufy video camera feeds to random users
A misconfiguration issue in the software used by the Eufy video camera exposed private information and video streams of customers....
A week in security (May 17 – May 23)
Last week on Malwarebytes Labs, we looked at a banking trojan full of nasty tricks, explained some tips and pointers...
Shining a light on dark patterns with Carey Parker: Lock and Code S02E09
This week on Lock and Code, we speak to cybersecurity advocate and author Carey Parker about “dark patterns,” which are...
Ireland suspected Russian hackers of attacking the health service
The National Cyber Security Centre of Ireland (NCSC) believes that the attack on the country's Health Service Executive (HSE) was...
FBI Analyst Charged for Stealing National Security Documents
An FBI employee with a top-secret security clearance has been indicted on charges that she illegally stored several national security...
Domino’s Data Leak Exposed Data of 18 Crore Orders
The famous Pizza company Dominos suffered a data leak again this year wherein the details of 18 crore orders are...
A Chinese Hacking Competition May Have Given Beijing New Ways to Spy on the Uyghurs
In 2019, Apple aimed to reassure its customers when it revealed in a blog post that it had fixed a...
