Python Package Index Repository Detected With Multiple Malicious Packages
In the PyPI repository for Python projects that transformed workstations developers into crypto mining machines, many malicious packaging were captured...
OSINT
Maryland Officials Found 508,000 “Potentially Fraudulent” Unemployment Claims
Over the last six weeks, more than half a million "potentially fraudulent" jobless claims have been made in Maryland, according...
How to confuse antimalware neural networks. Adversarial attacks and protection
Introduction Nowadays, cybersecurity companies implement a variety of methods to discover new, previously unknown malware files. Machine learning (ML) is...
DarkLoadLibrary – LoadLibrary For Offensive Operations
LoadLibrary for offensive operations. How does is work?https://www.mdsec.co.uk/2021/06/bypassing-image-load-kernel-callbacks/UsageDARKMODULE DarkModule = DarkLoadLibrary( LOAD_LOCAL_FILE, // control flags L"TestDLL.dll", // local dll path,...
CamOver – A Camera Exploitation Tool That Allows To Disclosure Network Camera Admin Password
CamOver is a camera exploitation tool that allows to disclosure network camera admin password. FeaturesExploits vulnerabilities in most popular camera...
VMware fixes privilege escalation issue in VMware Tools for Windows
VMware patched a high-severity vulnerability in VMware Tools for Windows that attackers could exploit to execute arbitrary code with elevated...
Clop ransomware is back into action after the recent police operation
A week after the law enforcement operation that targeted the Clop ransomware operators, the gang is back into action. A...
Palo Alto Networks fixes critical flaw (CVE-2021-3044) in Cortex XSOAR
Palo Alto Networks addresses a critical improper authorization vulnerability (CVE-2021-3044) affecting its Cortex XSOAR security orchestration solution, automation and response...
SonicWall finally fixed a flaw resulting from a partially patched 2020 zero-day
A critical vulnerability, tracked as CVE-2021-20019, in SonicWall VPN appliances was only partially patched last year and could allow a remote...
MITRE adds D3FEND defensive cybersecurity techniques to ATT&CK Framework
D3FEND is a new project promoted by MITRE Corporation to add defensive cybersecurity techniques to the ATT&CK Framework. D3FEND is...
Wormable bash DarkRadiation Ransomware targets Linux distros and docker containers
DarkRadiation is a new strain of ransomware implemented in Bash that targets Linux and Docker cloud containers and leverages Telegram...
City of Liège hit by ransomware, Ryuk suspected
Liège, the third largest city in Belgium, and a major educational hub, has been hit by a ransomware attack, disrupting...
Hotel staff bust Hermes SMS scammer with suspiciously large number of cables
If you’re in the UK, you’ve likely received a fake delivery SMS at this point. The original big driver for...
50% of Misconfigured Containers Hit by Botnets in an Hour
Aqua Security announced on Monday that information gathered from container honeypots over a six-month period indicated that 50% of misconfigured...
Security Experts listed who responsible for leaking your data to scammers
"There are three most common types of data leakage," said Vseslav Solenik, Director of the R-Vision Center of Expertise.Personal data...
Attackers Denied of Full Control Over ‘Wire’ Users’ Accounts
The developers of the Wire secure messaging app have patched the software against two critical security flaws, one of which...
Security Bug Detected in Google’s Android App
A vulnerability had existed in Google's eponymous Android app with over five billion downloads to date that might have enabled...
NATO’s Cloud Platform Hacked
The SOA & IdM platform is utilized by NATO and is classified as secret. It was used to conduct various...
Behind the scenes with the head of Kaspersky’s GReAT
Costin Raiu has been with Kaspersky since 2000, initially as the Chief Security Expert overseeing research efforts in the EEMEA...
HashCheck – Tool To Assist In The Search For Leaked Passwords
This project aims to assist in the search for leaked passwords while maintaining a high level of privacy using the...
Swift-Attack – Unit Tests For Blue Teams To Aid With Building Detections For Some Common macOS Post Exploitation Methods
Unit tests for blue teams to aid with building detections for some common macOS post exploitation methods. I have included...
DirtyMoe botnet infected 100,000+ Windows systems in H1 2021
DirtyMoe is a Windows botnet that is rapidly growing, it passed from 10,000 infected systems in 2020 to more than...
Tor Browser 10.0.18 fixes a bug that allows to track users by fingerprinting installed apps
The Tor Project released Tor Browser 10.0.18 that addresses a flaw that allows sites to track users by fingerprinting the...
DroidMorph tool generates Android Malware Clones that
Boffins developed a tool dubbed DroidMorph that provides morphing of Android applications (APKs) and allows to create Android apps (malware/benign)...
