Cerbrutus – Network Brute Force Tool, Written In Python
Modular brute force tool written in Python, for very fast password spraying SSH, and FTP and in the near future...
OSINT
Ruse – Mobile Camera-Based Application That Attempts To Alter Photos To Preserve Their Utility To Humans While Making Them Unusable For Facial Recognition Systems
Mobile camera-based application that attempts to alter photos to preserve their utility to humans while making them unusable for facial...
Android Banking Trojan Vultur uses screen recording for credentials stealing
Experts spotted a new strain of Android banking Trojan dubbed Vultur that uses screen recording and keylogging for the capturing...
CVE-2021-3490 – Pwning Linux kernel eBPF on Ubuntu machines
Researcher published an exploit code for a high-severity privilege escalation flaw (CVE-2021-3490) in Linux kernel eBPF on Ubuntu machines. The...
LemonDuck no longer settles for breadcrumbs
LemonDuck has evolved from a Monero cryptominer into LemonCat, a Trojan that specializes in backdoor installation, credential and data theft,...
Spear-phishing now targets employees outside the finance and executive teams, report says
Social engineering attacks have been a longstanding concern for both individuals and organizations alike. The trend, as we know it,...
Severe Shopify Flaw Exposed GitHub Access Token And Source Code Repositories
Computer science student Augusto Zanellato has earned a $50,000 payday following the discovery of a publicly available GitHub Personal Access...
XAMPP Hosts are Employed to Distribute Agent Tesla
RiskIQ's research team has evaluated the familiar fingerprints campaign in dangerous infrastructure from famous malware families. Their examination of Agent...
Malicious Linux Shell Scripts Used to Evade Defenses
Attackers' evasive methods stretch back to the times when base64 and other popular encoding schemes were utilized. New Linux shell script...
UBEL is the Android Malware Successor to Oscorp
As part of a fresh campaign that began in May 2021, an Android malware that was discovered misusing accessibility features...
LightMe – HTTP Server Serving Obfuscated Powershell Scripts/Payloads
LightMe is a Simple HTTP Server serving Powershell Scripts/Payloads after Obfuscate them and run obfuscation as a service in backgroud...
Rtl_433 – Program To Decode Radio Transmissions From Devices On The ISM Bands (And Other Frequencies)
rtl_433 (despite the name) is a generic data receiver, mainly for the 433.92 MHz, 868 MHz (SRD), 315 MHz, 345...
Estonia ‘s police arrested a Tallin resident who stole 286K ID scans from a government DB
Estonia ‘s police arrested a man from Tallinn that is suspected to be the hacker who stole 286K ID scans...
Meteor was the wiper used against Iran’s national railway system
The recent attack against Iran’s national railway system was caused by a wiper malware dubbed Meteor and not by a ransomware as initially thought....
BlackMatter and Haron, two new ransomware gangs in the threat landscape
The cyber threat landscape change continuously, recently two new ransomware-as-service (RaaS) operations named BlackMatter and Haron made the headlines. Recently,...
Microsoft provides more mitigation instructions for the PetitPotam attack
In a revision of KnowledgeBase article KB5005413, Microsoft has provided more elaborate mitigation instructions for the PetitPotam attacks that were...
Crimea “manifesto” deploys VBA Rat using double attack vectors
This blog post was authored by Hossein Jazi. On July 21, 2021, we identified a suspicious document named “Манифест.docx” (“Manifest.docx”)...
The Russian Federation submitted to the United Nations the world’s first draft convention against cybercrime
The Prosecutor General's Office of the Russian Federation reported that Russia has submitted to the UN the world's first draft...
BlackMatter & Haron Targeting Firms with Revenue of $100 Million and More
Cybersecurity researchers from South Korean security firm S2W Labs have unearthed two new ransomware groups. A sample of the first...
Raven Hengelsport Data Breach Exposes 18GB of Customer Data
The cybersecurity researchers from Safety Detectives uncovered an insecure Microsoft Azure Blob storage server linked to the Raven Hengelsport retail...
Data of 100 Million JustDial Customers Left Unsecured for Over a Year
The Personally Identifiable Information (PII) of approximately 100 million users of local business listing site JustDial was at stake after...
Bugs in the Zimbra Server Could Lead to Unrestricted Email Access
Multiple security flaws have been uncovered in the Zimbra email collaboration software, which could be abused to compromise email accounts...
APT trends report Q2 2021
For more than four years, the Global Research and Analysis Team (GReAT) at Kaspersky has been publishing quarterly summaries of...
Sniffle – A Sniffer For Bluetooth 5 And 4.X LE
Sniffle is a sniffer for Bluetooth 5 and 4.x (LE) using TI CC1352/CC26x2 hardware. Sniffle has a number of useful...
