Connecting the Bots – Hancitor fuels Cuba Ransomware Operations
The Cuba Ransomware gang has partnered with the crooks behind the Hancitor malware in attacks aimed at corporate networks. The Hancitor downloader...
Security
Possible attacks on the TCP/IP protocol stack and countermeasures
Let’s look at what types of threats each layer of the TCP/IP protocol stack may be susceptible to. The task...
Windows Moriya rootkit used in highly targeted attacks
Experts spotted a new malware, dubbed Moriya rootkit, that targets Windows systems as part of cyberespionage campaign dubbed TunnelSnake. An...
Facebook bans Signal ads that reveal the depth of what it knows about you
Most of our readers are well aware of the fact that the big tech corporations, especially those that run social...
BazarBackdoor Campaigns in Attempts to Avoid Detection
In two recent projects, threat actors using BazarBackdoor used an unusual combination of lures, tactics, and networks to target corporate...
Twilio Impacted By The Recent Codecov Supply-Chain Attack
Cloud Communications Company ‘Twilio’ has posted a blog on Tuesday and unfolded that its small number of users' emails have...
More Than 200 Belgian Organizations Knocked Offline in a Massive DDoS Attack
Belgium's national public sector network Belnet suffered a massive DDoS (distributed denial of service) attack on Tuesday that paralyzed internet...
Positive Technologies reported on the impact of U.S. sanctions on its IPO plans
Positive Technologies head Yury Maksimov positively assessed the impact of sanctions against the company on its plans to go public....
Northeastern University Team Finds New Ways to Detect Bugs in its Research
A research team at Northeastern University finds vulnerabilities and code defects. It does it by detecting when a programmer uses...
Operation TunnelSnake
Windows rootkits, especially those operating in kernel space, are pieces of malware infamous for their near absolute power in the...
Judge-Jury-and-Executable – A File System Forensics Analysis Scanner And Threat Hunting Tool
Features:Scan a mounted filesystem for threats right away Or gather a system baseline before an incident, for extra threat hunting...
Priv2Admin – Exploitation Paths Allowing You To (Mis)Use The Windows Privileges To Elevate Your Rights Within The OS
The idea is to "translate" Windows OS privileges to a path leading to: administrator, integrity and/or confidentiality threat, availability threat,...
Chinese PLA Unit 61419 suspected to have purchased AVs for cyber-espionage
Chinese military unit PLA Unit 61419 is suspected to be involved in cyber-espionage campaigns against multiple antivirus companies. Researchers from...
A taste of the latest release of QakBot
A taste of the latest release of QakBot – one of the most popular and mediatic trojan bankers active since...
Cisco fixes critical flaws in SD-WAN vManage and HyperFlex HX software
Cisco fixed critical flaws in SD-WAN vManage and HyperFlex HX software that could allow creating admin accounts, and executing commands...
180+ OAuth 2.0 cloud malware apps detected
Proofpoint offices in Toronto, Canada. (Raysonho @ Open Grid Scheduler / Scalable Grid Engine, CC0, via Wikimedia Commons)Researchers issued a...
Unidentified Cyberattackers Has Put Alaska Court System Offline
A recent cyberattack has forced The Alaska Court System (ACS) to temporarily discontinue its online services to the public including...
Threat Actors’ Dwell Time Reduced to 24 Days, FireEye Reports
FireEye, the intelligence-led security company, published the FireEye Mandiant M-Trends 2021 report. The FireEye-owned forensic specialist’s M-Trends 2021 report was...
The Russian Ministry of Internal Affairs began to identify serial cybercrimes with a special program
The press service of the Russian Ministry of Internal Affairs reported that employees of the department have been using a...
Scripps Health: The Non-Profit Healthcare Giant Hit by Cyberattack
According to many press reports and the San Diego Union-Tribune, the San Diego-based Scripps Health still tries to assemble certain...
N3TW0RM Ransomware: Emerges in Wave of Cyberattacks in Israel
In a surge of cyberattacks that began last week, a new ransomware group known as 'N3TW0RM' is targeting Israeli companies. N3TW0RM,...
KubeArmor – Container-aware Runtime Security Enforcement System
Introduction to KubeArmorKubeArmor is a container-aware runtime security enforcement system that restricts the behavior (such as process execution, file access,...
Botkube – An App That Helps You Monitor Your Kubernetes Cluster, Debug Critical Deployments And Gives Recommendations For Standard Practices
For complete documentation visit www.botkube.io BotKube integration with Slack, Mattermost or Microsoft Teams helps you monitor your Kubernetes cluster, debug...
UNC2529, a new sophisticated cybercrime gang that targets U.S. orgs with 3 malware
A new cybercrime gang, tracked as UNC2529, has targeted many organizations in the US and other countries using new sophisticated...
