Millions of Chrome users quietly added to Google’s FLoC pilot
Last month, Google began a test pilot of its Federated Learning of Cohorts—or FLoC—program, which the company has advertised as
Read more
threatintel
Cryptomining containers caught coining cryptocurrency covertly
In traditional software development, programmers code an application in one computing environment before deploying it to a similar, but often
Read more
Maze/Egregor Ransomware Earned over $75 Million
Researchers at Analyst1 have noticed that the Maze/Egregor ransomware cartel has made at least $75 million in ransom payments
Read more
Man Sentenced To 12 Years For Attempting To Purchase Chemical Weapon On The Dark Web
A 46-year-old Missouri man has been sentenced to 12 years without parole in US federal prison today for trying
Read more
Visa: Hackers Use Web Shells to Compromise Servers and Steal Credit Card Details
Visa, a global payment processor has warned that hackers are on the rise in deploying web shells in infected servers
Read more
North Korean Lazarus Group Attacks South African Freight Via New Weapon
The North Korean-backed Lazarus hacking group employed a new backdoor in targeted attacks against a South African freight and
Read more
Credit Card Hacking Forum Compromised 300,000 User Accounts Due To A Data Breach
As per the information provided by the website ‘Have I Been Pwned’, Carding Mafia, a credit card stealing and
Read more
Malicious code in APKPure app
Recently, we’ve found malicious code in version 3.17.18 of the official client of the APKPure app store. The app is
Read more
PoisonApple – macOS Persistence Tool
Command-line tool to perform various persistence mechanism techniques on macOS. This tool was designed to be used by threat hunters
Read more
Redcloud – Automated Red Team Infrastructure Deployement Using Docker
Redcloud is a powerful and user-friendly toolbox for deploying a fully featured Red Team Infrastructure using Docker. Harness the cloud’s
Read more
Pwn2Own 2021: participants earned $1,2M of the $1.5M prize pool
The Pwn2Own 2021 hacking competition was concluded, participants earned more than $1.2 million, the greatest total payout ever. The Pwn2Own
Read more
CISA releases post-compromise tool Aviary to review Microsoft 365
CISA released a Splunk-based dashboard for post-compromise activity in Microsoft Azure Active Directory (AD), Office 365, and MS 365 environments. The Cybersecurity
Read more
330K stolen payment cards and 895K stolen gift cards sold on dark web
A threat actor has sold almost 900,000 gift cards and over 300,000 payment cards on a cybercrime forum on the
Read more
Moodle flaw exposed users to account takeover
Wizcase experts discovered a security flaw in the open-source learning platform Moodle that could allow accounts takeover. At the beginning
Read more
Zoom zero-day discovery makes calls safer, hackers $200,000 richer
Two Dutch white-hat security specialists entered the annual computer hacking contest Pwn2Own, managed to find a Remote Code Execution (RCE)
Read more
Cring Ransomware Attacks Exploited Fortinet Flaw
Ransomware operators shut down two production facilities having a place with a European manufacturer in the wake of conveying
Read more
Cyber Criminals began to use a new scheme to defraud Russians
The classic scheme to defraud Russian bank clients with the help of malicious emails is experiencing a second birth. Now
Read more
IT Services Remain Disrupted At Two Colleges Of Ireland After Ransomware Attacks
Two IT universities of Ireland the National College of Ireland (NCI) and the Technological University of Dublin have been
Read more
German Company Hit By Supply Chain Attack, Only Few Device Affected
Gigaset, a German device maker, was recently hit with a supply chain attack, the hackers breached a minimum of one
Read more
Threat Actors are Using Telegram & Google Forms to Obtain Stolen User Data
Security researchers have noted an increase in the misuse of legitimate services such as Google Forms and Telegram for
Read more
Max – Maximizing BloodHound
Maximizing BloodHound. Description New Release: dpat – The BloodHound Domain Password Audit Tool (DPAT) A simple suite of tools: get-info
Read more
NtHiM – Super Fast Sub-domain Takeover Detection
NtHiM – Super Fast Sub-domain Takeover Detection Installation Method 1: Using Pre-compiled Binaries The pre-compiled binaries for different systems are
Read more
Attackers Targeting Fortinet Devices and SAP Applications
The following blog was co-authored by Caitlin Condon and Bob Rudis, also known (in his own words) as “some caveman
Read more
Kubernetes Namespaces Are Not as Secure as You Think
In a previous article, we described how the usage of namespaces in Kubernetes significantly simplifies the management of a Kubernetes
Read more