Cyber

The flaw in the plugin can be used to extract sensitive info from a site's database, including user emails and password hashes. There is also a PoC.

Cybercrime, beauty salons worldwide could be targeted soon

A user called bob934 is selling on Raid Forums a huge private database with 1,253,686…

Cybercrime, beauty salons worldwide could be targeted soon

A user called bob934 is selling on Raid Forums a huge private database with 1,253,686 records. Many of them are still active.

Cyber Espionage, Chinese hackers exploit anti virus flaws to strike

Recorded Future cybersecurity experts: Unit 61419 bought small English AV batches from Western companies through intermediaries.

Cyber Espionage, Chinese hackers exploit anti virus flaws to strike

Recorded Future cybersecurity experts: Unit 61419 bought small English AV batches from Western companies through intermediaries.

White-hat hackers can now target all publicly accessible U.S. Defense information systems

The DoD expanded the VDP Program to let cybersecurity researchers testing also the less “famous”…

White-hat hackers can now target all publicly accessible U.S. Defense information systems

The DoD expanded the VDP Program to let cybersecurity researchers testing also the less “famous” ones, but often strategic as the others.

Cybercrime, Pingback is a new malware exploiting ICMP tunnelling for communications

Trustwave cybersecurity experts: It uses ICMP for receiving commands from its C2 server, and maintains…

Cybercrime, Pingback is a new malware exploiting ICMP tunnelling for communications

Trustwave cybersecurity experts: It uses ICMP for receiving commands from its C2 server, and maintains persistency thanks DLL hijacking.

Cybercrime, Rocke Group uses a new malware to attack via saved SSH keys and weak passwords

Intezer cybersecurity experts: The China-linked APT’s code, after the victim has been infected, executes a…

Cybercrime, Rocke Group uses a new malware to attack via saved SSH keys and weak passwords

Intezer cybersecurity experts: The China-linked APT’s code, after the victim has been infected, executes a Monero cryptominer.

Cybercrime, Darkside gang now target stock markets organizations

Recorded Future cybersecurity experts: The ransomware group will notify info to crooked market traders in…

Cybercrime, Darkside gang now target stock markets organizations

Recorded Future cybersecurity experts: The ransomware group will notify info to crooked market traders in advance, so they can short a company’s stock price.

Cyber Espionage, NAIKON exploited RainyDay to target military organizations in Asia

Bitdefender cybersecurity experts: China’s APT used the backdoor to compromise the victims’ network and to…

Cyber Espionage, NAIKON exploited RainyDay to target military organizations in Asia

Bitdefender cybersecurity experts: China’s APT used the backdoor to compromise the victims’ network and to get to the information of interest.

Cybercrime, Hello ransomware uses China Chopper web shell vulnerability

Trend Micro cybersecurity experts: The malware (aka WickrMe) arrives via the CVE-2019-0604. Then, the threat…

Cybercrime, Hello ransomware uses China Chopper web shell vulnerability

Trend Micro cybersecurity experts: The malware (aka WickrMe) arrives via the CVE-2019-0604. Then, the threat actors exploit web shell to download Cobalt Strike.

Cybercrime, Dridex is back with a Quickbooks global campaign

Bitdefender cybersecurity experts: More than half of the phishing emails, sent to spread the malware,…

Cybercrime, Dridex is back with a Quickbooks global campaign

Bitdefender cybersecurity experts: More than half of the phishing emails, sent to spread the malware, originate from IP addresses in Italy.