Facebook Phishing Attack Chain Infrastructure Uncovered
Phishing campaigns are still the most effective way to hack a person, spread malware, infiltrate an organization or conduct any cybercriminal activities. Though several security…
Category: CyberSecurityNews
Patching On Time, Thwarts Cybercrime
“It takes 20 years to build a reputation and a few minutes of cyber-incident to ruin it,” says Stephane Nappo, Global Head of Information Security…
Trellix ESM Flaw Let Attackers Execute arbitrary commands
According to recent reports, there have been two serious vulnerabilities found in the Trellis SIEM. These vulnerabilities could potentially allow malicious actors to execute unauthorized…
White Snake Stealer Attacking Windows & Linux Systems
White snake stealer, an info stealer which has enhanced features now able to target both Windows and Linux platforms posing a significant threat to user…
Trellis ESM Flaw Let Attackers Execute arbitrary commands
Recent reports have identified two significant vulnerabilities in Trellis SIEM, which may enable unauthorized parties to execute commands in the Trellis ESM Flaw’s Enterprise Security…
DNS Analyzer – New Burp Suite Extension to Find DNS flaws
DNS flaws are very common on web applications where the DNS resolvers are vulnerable to Kaminsky attacks. If threat actors are able to predict portions…
Crysis Ransomware Attacking RDP Server to Deploy Ransomware
Recently, the cybersecurity researchers at ASEC (AhnLab Security Emergency Response Center) found that the operators of Crysis ransomware are actively utilizing the Venus ransomware in…
MuddyWater’s New C2 Center Uncovered
Recently, it has been found by the security analysts at Deep Instinct that MuddyWater (aka Mango Sandstorm and Mercury), an Iranian state-backed group, has been…
High School Changed Every Student’s Password to ‘Ch@ngeme!’
In an attempt to reset the student’s passwords after a mistake in a cybersecurity audit, the Oak Park and River Forest (OPRF) High School reset…
New RUSTBUCKET Malware With Zero Detections on VirusTotal
The DPRK campaign is utilizing a recently updated version of Rustbucket malware to avoid being detected. This variant of RUSTBUCKET, targets macOS systems, adds persistence…
Proxyjacking campaign attack SSH servers
It has been observed that a new Proxyjacking campaign attack SSH servers and subsequently builds Docker services that share the victim’s bandwidth for money. This is…
University of Manchester Hack – NHS patient Data Exposed
It has come to light that the University of Manchester fell victim to a Ransomware Hack, which resulted in the breach of 1.1 million NHS…