Latest Security News
-
Blackbasta gang claimed responsibility for Synlab Italia attack
-
The Blackbasta extortion group claimed responsibility for the attack that
in April severely impacted the operations of Synlab Italia. Since April 18,
Synla...
10 hours ago
-
Iranian hackers pose as journalists to push backdoor malware
-
The Iranian state-backed threat actor tracked as APT42 is employing social
engineering attacks, including posing as journalists, to breach corporate
networ...
12 hours ago
-
Transatlantic Cable podcast episode 345 | Kaspersky official blog
-
Episode 345 of the Kaspersky podcast has password bans, ChatGPT hacks & do
social media platforms have too much power?
12 hours ago
-
JS-Tap - JavaScript Payload And Supporting Software To Be Used As XSS
Payload Or Post Exploitation Implant To Monitor Users As They Use The
Targeted Application
-
JavaScript payload and supporting software to be used as XSS payload or
post exploitation implant to monitor users as they use the targeted
application....
13 hours ago
-
Making a career of medical device interoperability and security
-
Enterprise Taxonomy:
Node settings:
Exclude from Accelerate RSS feed
1 day ago
-
Friday Squid Blogging: Squid Purses
-
Squid-shaped purses for sale.
As usual, you can also use this squid post to talk about the security
stories in the news that I haven’t covered.
Read my ...
1 day ago
-
Iranian state-backed cyber spies continue to impersonate media brands,
think tanks
-
Iranian state-backed cyber spies continue to impersonate media brands,
think tanks l33tdawg Fri, 05/03/2024 - 01:38
2 days ago
-
Man Who Mass-Extorted Psychotherapy Patients Gets Six Years
-
A 26-year-old Finnish man was sentenced to more than six years in prison
today after being convicted of hacking into an online psychotherapy clinic,
leakin...
4 days ago
-
הגליון המאה שישים ואחד של DigitalWhisper שוחרר!
-
הגליון המאה שישים ואחד של DigitalWhisper שוחרר!פורסם ב- April 30, 2024
00:13:40, על ידי- cp77fk4r
ברוכים הבאים לדברי הפתיחה של הגליון ה-161 של DigitalW...
4 days ago
-
Exposing Bulgaria’s "Circles" Commercial Spyware Vendor - An Analysis
-
It doesn't get any better than this.
Infecting users with commercial spyware where you've managed to somehow
infiltrate the global ecosystem of exploits ...
1 week ago
-
Overview of Content Published in March
-
Here is an overview of content I published in March: Blog posts: Update:
metatool.py Version 0.0.4 SANS ISC Diary entries: Obfuscated Hexadecimal
Payload 1...
2 weeks ago
-
Recommended: AI-Powered SOC: it's the end of the Alert Fatigue as we know
it?
-
I recommended AI-Powered SOC: it's the end of the Alert Fatigue as we know
it? on TysonRhame.
About me: http://www.chuvakin.org
4 weeks ago
-
-
-
3 Opportunities for Cybersecurity Leaders Who Choose to Stay
-
Several years into your role as a security leader at a company, you’ll
reach a point when you ask yourself, “What’s next for me?” This article
discusses th...
3 months ago
-
My Last Email with W. Richard Stevens
-
In the fall of 1998 I joined the AFCERT. I became acquainted with the
amazing book *TCP/IP Illustrated, Volume 1: The Protocols* by W. Richard
Stevens...
10 months ago
-
What a lovely sunset
-
Oh, hi. Long time no blog, eh?
Well, it is time to sunset this blog, I will be deleting it in the next few
weeks.
So long, and thanks for all the fis...
11 months ago
-
Simple PHP webshell with php filter chains
-
Recently found an LFI in a PHP application and one of the cool things I
learned about recently was PHP filter chains. More info here:
https://www.synacktiv...
1 year ago
-
Hello world!
-
Welcome to WordPress. This is your first post. Edit or delete it, then
start writing!
1 year ago
-
A Scam in the Family—How a Close Relative Lost $100,000 to an Elder Scam
-
Written by James Schmidt Editor’s Note: We often speak of online scams in
our blogs, ones that cost victims hundreds...
The post A Scam in the Family—Ho...
1 year ago
-
Hacking Solidity For fun and profit
-
Introduction
After a long period of silence I am now going to write a post for hacking
Solidity smart contracts for dummies (like me). The easiest way to p...
1 year ago
-
Tracking WMI Activity with PSGumshoe
-
WMI (Windows Management Instrumentation) is the Microsoft implementation of
the Web-Based Enterprise Management (WBEM) and Common Information Model
(CIM) s...
2 years ago
-
Renewed SideWinder Activity in South Asia
-
A few months ago, Trend Micro released a post which encapsulated the
SideWinder APT group activity in the past year, showcasing SideWinder’s
mobile malware...
3 years ago
-
Jupyter Notebook for crt.sh Queries
-
I created a Jupyter Notebook to query the crt.sh website, dump the results
into a pandas data frame, and then printing out the unique list of results
to th...
3 years ago
-
UNSINKABLE meets UNTHINKABLE פוסט לציון 108 שנים לטביעתה של הטיטניק והלקחים
להגנת סייבר בימינו אנו
-
פוסט זה הוא עדכון משמעותי לפוסט שנכתב במקור בשנת 2012 לאחר צפיה בסרט תיעודי
ששודר באותה השנה, במלאת 100 שנה לטביעת הטיטניק. בעדכון זה ננפץ כמה פרות
קדושות ...
4 years ago
-
How Reverse Engineering (and Cyber-Criminals’ Mistakes) Can Help You When
You’ve Been a Ransomware Victim
-
Ransomware is a type of malware that threatens to publish the victim’s data
or perpetually block access to it unless a ransom is paid. In the last two
year...
4 years ago
-
-
Lucky Break
-
One of the things I do from time to time is throw out an open ended
question on Twitter. Sometimes I’m making a point, sometimes I just want
to amuse myse...
5 years ago
-
TekThing 161 – Bitcoin Sucks For Gaming PCs!!! Our Video Gear, Fingbox Home
Network Security
-
—— Thank You Patrons! Without your support via patreon.com/tekthing, we
wouldn’t be able to make the show for you every week!
https://www.patreon.com/tekth...
6 years ago
-
Romania is vice-champion at the European Cyber Security
-
CERT-RO The National Response Center for Cyber Security Incidents affirmed
on Friday that Romania, for the second consecutive year, has become the
European...
6 years ago
-
CoalaBot : http Ddos Bot
-
CoalaBot appears to be build on August Stealer code (Panel and Traffic are
really alike)
I found it spread as a tasks in a Betabot and in an Andromeda sp...
6 years ago
-
Social-Engineer Toolkit (SET) v7.7 “Blackout” Released
-
TrustedSec is proud to announce a major release of the Social-Engineer
Toolkit (SET) v7.7. This version incorporates support for hostnames in the
HTA att...
6 years ago
-
[Virus Bulletin Conference] The TAO of Automated Iframe Injectors -
Building Drive-by Platforms For Fun and Profit
-
In this paper, we present the design of distributed infection model used by
attackers to inject malicious iframes on the fly to conduct large scale
driv...
6 years ago
-
Big Changes Around the Corner for the IoT
-
The IoT is transforming before our eyes due to increasing regulations,
growing demand for security standards and advancements in the telecom
industry.
T...
7 years ago
-
ClearEnergy ransomware can destroy process automation logics in critical
infrastructure, SCADA and industrial control systems.
-
Schneider Electric, Allen-Bradley, General Electric (GE) and more vendors
are vulnerable to ClearEnergy ransomware. Researchers at CRITIFENCE®
Critical I...
7 years ago
-
ROOTCON 11 Venue
-
This years ROOTCON 11 will be held at Taal Vista Hotel in Tagaytay on
September 21-22, 2017. We announced the venue as early as now so you can
plan ahead...
7 years ago
-
The ‘Compliance Only / CISSP / Minimum Viable Product / HR firewall’
infosec trapezoid of fuck
-
Yesterday (thurs, 3/24/16) I went on a tirade on twitter, regarding an
experience I had in San Francisco during RSA week, while at a vendor party.
I’ll let...
8 years ago
-
Citadel 0.0.1.1 (Atmos)
-
Guys of JPCERT, 有難う御座います!
Released an update to their Citadel decrypter to make it compatible with
0.0.1.1 sample.
Citadel 0.0.1.1 don't have a lot of do...
8 years ago
-
Dridex Down Under
-
Raytheon | Websense® Security Labs™ has been tracking malicious email
campaigns associated with the Dridex banking Trojan since 2014. An
interesting deve...
8 years ago
-
What Verizon Missed in the Latest Threat Reports
-
* By: Zuk Avraham, Joshua Drake, Yaniv Karta, Jimmy Sha *
* Read the full report - here Recently, Veriz...
8 years ago
-
Forensic
-
אחת מהבעיות העיקריות בביצוע תהליך FORENSIC הוא לאחר ביצוע תהליך שיכפול ה -
Harddisk (על פי כל התקנים של שיכפול ביט אחרי ביט), היא לבצע מחקר על *מחשב
חיי...
8 years ago
-
Blog Moved
-
Please see the Trustwave SpiderLabs Blog.
9 years ago
-
TrustKeeper Scan Engine Update – February 4, 2015
-
The latest update to the TrustKeeper scan engine that powers our Trustwave
Vulnerability Management product (including both internal and external
vulnerabi...
9 years ago
-
RSA Announces End of RSA Security Conference
-
Aims to bring clarity to cloudy marketing messages through exhibit hall
chotskies Bedford, MA., – April 1, 2014 – RSA, the security division of
EMC, today ...
10 years ago
-
botCloud – an emerging platform for cyber-attacks
-
Hosting network services on Cloud platforms is getting more and more
popular. It is not in the scope of this article to elaborate the advantage
of using Cl...
11 years ago
-
mimikatz: Tool To Recover Cleartext Passwords From Lsass
-
I meant to blog about this a while ago, but never got round to it. Here’s a
brief post about very cool feature of a tool called mimikatz. I’m very
grateful...
12 years ago
-
Pentestify.
-
i’m over here now.
12 years ago
-
-
-
-
-
-
-
-
-
-
-
Microsoft Security Bulletin MS10-018 - Critical - התשובה ל CVE-2010-0806
