TikTok pays $92 million to end data theft lawsuit
TikTok, the now widely popular social media platform that allows users to create, share, and discover, short video clips has
Read more
threatintel
Unprotected Private Key Allows Remote Hacking of PLCs
Industrial associations have been cautioned for this present week that a critical authentication bypass vulnerability can permit hackers to
Read more
AIVD says they face cyber attacks from Russia and China every day
According to the head of the country’s General Intelligence and Security Service, these hackers break into the computers of companies
Read more
Google Reveals Details of a Recently Patched Windows Flaw
Google Project Zero team disclosed the details of a recently fixed Windows flaw, tracked as CVE-2021-24093, that can be
Read more
15,000 Clients Data Leaked Accidently by a Turkish Firm
Accidentally, a law firm has disclosed client data of 15,000 incidents in which individuals have been killed and wounded
Read more
Turkey Dog Activity Continues to use COVID Lures
A year into the pandemic, Turkey Dog-related activity is ongoing with campaigns that keep on utilizing the “free internet”
Read more
The state of stalkerware in 2020
The state of stalkerware in 2020 (PDF) Main findings Kaspersky’s data shows that the scale of the stalkerware issue has
Read more
CornerShot – Amplify Network Visibility From Multiple POV Of Other Hosts
In warfare, CornerShot is a weapon that allows a soldier to look past a corner (and possibly take a shot),
Read more
OpenWifiPass – An Open Source Implementation Of Apple’s Wi-Fi Password Sharing Protocol In Python
An open source implementation of the grantor role in Apple’s Wi-Fi Password Sharing protocol. Disclaimer OpenWifiPass is experimental software and
Read more
Data Breach: Turkish legal advising company exposed over 15,000 clients
Data Breach: WizCase team uncovered a massive data leak containing private information about Turkish Citizens through a misconfigured Amazon S3 bucket.
Read more
Hackers are selling access to Biochemical systems at Oxford University Lab
Hackers have broken into the biochemical systems of an Oxford University lab where researchers are working on the study of
Read more
Dutch Research Council (NWO) confirms DoppelPaymer ransomware attack
Dutch Research Council (NWO) confirmed that the recent cyberattack that forced it to take its servers offline was caused by
Read more
China-linked TA413 group target Tibetan organizations
The Chinese hacking group, tracked as TA413, used a malicious Firefox add-on in a cyberespionage campaign aimed at Tibetans. China-linked
Read more
Cisco fixes three critical bugs in ACI Multi-Site Orchestrator, Application Services Engine, and NX-OS
Cisco addressed over a dozen vulnerabilities in its products, including three critical bugs in ACI Multi-Site Orchestrator, Application Services Engine,
Read more
North Korea-linked Lazarus APT targets defense industry with ThreatNeedle backdoor
North Korea-linked Lazarus APT group has targeted the defense industry with the custom-backdoor dubbed ThreatNeedle since 2020. North Korea-linked Lazarus
Read more
Scammers, profiteers, and shady sites? It must be tax season
US tax season is upon us, a time of the year when a special kind of vermin comes crawling out
Read more
The head of Microsoft announced evidence of the involvement of Russian intelligence in the cyber attack
Approximately 100 US companies and nine government agencies were affected by the hack using Orion software of SolarWinds, which is
Read more
Private Information of 50,000 French Healthcare Workers Stolen
French authorities unearthed a glut of stolen credentials on the dark web, apparently belonging to the healthcare workers. The
Read more
Total Cookie Protection Launched in The New Upgrade of Firefox
Mozilla’s latest Firefox 86 has been rolled -out for desktop, Mac, Windows, and Linux platforms. The browser upgrade brings
Read more
Lazarus targets defense industry with ThreatNeedle
Lazarus targets defense industry with ThreatNeedle (PDF) We named Lazarus the most active group of 2020. We’ve observed numerous activities
Read more
ScareCrow – Payload Creation Framework Designed Around EDR Bypass
If you want to learn more about the techniques utlized in this framework please take a look at Part 1
Read more
APT-Hunter – Threat Hunting Tool For Windows Event Logs Which Made By Purple Team Mindset To Provide Detect APT Movements Hidden In The Sea Of Windows Event Logs To Decrease The Time To Uncover Suspicious Activity
APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements
Read more
Kali Linux 2021.1 – Penetration Testing and Ethical Hacking Linux Distribution
Time for another Kali Linux release! – Kali Linux 2021.1. This release has various impressive updates. The summary of the changelog
Read more
Building a Holistic VRM Strategy That Includes the Web Application Layer
Building security into your overall vulnerability risk management (VRM) strategy is a must-do in the age of the all-important web
Read more