■■■■■ GitHub-based malware calculates Cobalt Strike payload from Imgur pic.
https://www.bleepingcomputer.com/news/security/github-based-malware-calculates-cobalt-strike-payload-from-imgur-pic/
https://www.bleepingcomputer.com/news/security/github-based-malware-calculates-cobalt-strike-payload-from-imgur-pic/
BleepingComputer
GitHub-hosted malware calculates Cobalt Strike payload from Imgur pic
A new strand of malware uses Word files with macros to download a PowerShell script from GitHub. This PowerShell script further downloads a legitimate image file from image hosting service Imgur to decode a Cobalt Strike script.
■■■□□ (s)AINT is a Spyware Generator for Windows systems written in Java.
https://github.com/tiagorlampert/sAINT
https://github.com/tiagorlampert/sAINT
GitHub
GitHub - tiagorlampert/sAINT: :eye: (s)AINT is a Spyware Generator for Windows systems written in Java. [Discontinued]
:eye: (s)AINT is a Spyware Generator for Windows systems written in Java. [Discontinued] - tiagorlampert/sAINT
cKure
■■■□□ #DataLeak: REvil ransomware group, aka Sodinokibi, hacked The Hospital Group and threatens to release before-and-after pictures of celebrity clients. https://securityaffairs.co/wordpress/112637/cyber-crime/the-hospital-group-revil.html
■■■■□ #DataLeak: REvil hackers to leak photos of plastic surgery patients after massive hack.
https://www.hackread.com/revil-hackers-leak-plastic-surgery-patients-photos/
https://www.hackread.com/revil-hackers-leak-plastic-surgery-patients-photos/
Hackread - Latest Cybersecurity, Tech, Crypto & Hacking News
REvil hackers to leak photos of plastic surgery patients after massive hack
Like us on Facebook @ /HackRead
■■■□□ #DataLeak #CyberCrime: Home appliance giant Whirlpool hit in Nefilim ransomware attack.
https://www.bleepingcomputer.com/news/security/home-appliance-giant-whirlpool-hit-in-nefilim-ransomware-attack/
https://www.bleepingcomputer.com/news/security/home-appliance-giant-whirlpool-hit-in-nefilim-ransomware-attack/
BleepingComputer
Home appliance giant Whirlpool hit in Nefilim ransomware attack
Home appliances giant Whirlpool suffered a ransomware attack by the Nefilim ransomware gang who stole data before encrypting devices.
■■□□□ Third edition of US 🇺🇸 Army bug bounty program prepared for deployment.
https://portswigger.net/daily-swig/third-edition-of-us-army-bug-bounty-program-prepared-for-deployment #UnitedStates
https://portswigger.net/daily-swig/third-edition-of-us-army-bug-bounty-program-prepared-for-deployment #UnitedStates
portswigger.net
Web Application Security, Testing, & Scanning - PortSwigger
PortSwigger offers tools for web application security, testing, & scanning. Choose from a range of security tools, & identify the very latest vulnerabilities.
■■□□□ #DataLeak / #Italy 🇮🇹: Threat actor is selling a dump allegedly including 2,5M customers of service provider Ho Mobile.
https://hackademicus.nl/threat-actor-is-selling-a-dump-allegedly-including-25m-customers-of-service-provider-ho-mobile/
https://hackademicus.nl/threat-actor-is-selling-a-dump-allegedly-including-25m-customers-of-service-provider-ho-mobile/
hackademicus.nl
Hackademicus is under construction
it's all about security stupid!
■■■□□ #DataLeak: #Finland 🇫🇮 confirms that hackers breached MPs’ emails accounts.
https://hackademicus.nl/finland-confirms-that-hackers-breached-mps-emails-accounts/
https://hackademicus.nl/finland-confirms-that-hackers-breached-mps-emails-accounts/
hackademicus.nl
Hackademicus is under construction
it's all about security stupid!
■■□□□AutoHotkey-Based Password Stealer Targeting US, Canadian Banking Users.
https://thehackernews.com/2020/12/autohotkey-based-password-stealer.html
https://thehackernews.com/2020/12/autohotkey-based-password-stealer.html
■■■■■ A Google Docs Bug Could Have Allowed Hackers See Your Private Documents.
https://blog.geekycat.in/google-vrp-hijacking-your-screenshots/
https://blog.geekycat.in/google-vrp-hijacking-your-screenshots/
■■■□□ CVE-2020-17530: APACHE STRUCTS VULNERABILITY EXPLOITED IN THE WILD.
https://securitynews.sonicwall.com/xmlpost/cve-2020-17530-apache-structs-vulnerability-exploited-in-the-wild/
https://securitynews.sonicwall.com/xmlpost/cve-2020-17530-apache-structs-vulnerability-exploited-in-the-wild/
■□□□□ #DataLeak: Japanese Aerospace Firm Kawasaki Warns of Data Breach.
https://threatpost.com/japanese-aerospace-firm-kawasaki-warns-of-data-breach/162642/
https://threatpost.com/japanese-aerospace-firm-kawasaki-warns-of-data-breach/162642/
Threat Post
Japanese Aerospace Firm Kawasaki Warns of Data Breach
The Japanese aerospace manufacturer said that starting in June, overseas unauthorized access to its servers may have compromised customer data.
■■□□□ #IoT: Pranksters are hijacking smart devices to live-stream swatting incidents, says FBI.
https://www.zdnet.com/article/fbi-pranksters-are-hijacking-smart-devices-to-live-stream-swatting-incidents
https://www.zdnet.com/article/fbi-pranksters-are-hijacking-smart-devices-to-live-stream-swatting-incidents
ZDNet
FBI: Swatters are hijacking smart devices to live-stream swatting incidents
The FBI said it's working with smart device makers to address the issue.
■■□□□ Nullify AMSI Scanner with PowerShell.
http://binaryhax0r.blogspot.com/2020/12/nullify-amsi-scanner-with-powershell.html
http://binaryhax0r.blogspot.com/2020/12/nullify-amsi-scanner-with-powershell.html
Blogspot
Nullify AMSI Scanner with PowerShell
AMSI as per Microsoft is: "The Windows Antimalware Scan Interface (AMSI) is a versatile interface standard that allows your applications a...
■■■■□ Declaring War Against Cyber Negligence.
https://www.ehackingnews.com/2020/12/declaring-war-against-cyber-negligence.html
https://www.ehackingnews.com/2020/12/declaring-war-against-cyber-negligence.html
■□□□□ The head of Group-IB Mr. Sachkov described the portrait of a typical Russian hacker.
https://www.ehackingnews.com/2020/12/the-head-of-group-ib-mr-sachkov.html
https://www.ehackingnews.com/2020/12/the-head-of-group-ib-mr-sachkov.html
■□□□□ #IoT: Lawsuit Claims Flawed Facial Recognition Led to Man’s Wrongful Arrest.
https://threatpost.com/lawsuit-claims-flawed-facial-recognition-led-to-mans-wrongful-arrest/162663/
https://threatpost.com/lawsuit-claims-flawed-facial-recognition-led-to-mans-wrongful-arrest/162663/
Threat Post
Lawsuit Claims Flawed Facial Recognition Led to Man’s Wrongful Arrest
Black man sues police after being falsely ID’d by facial recognition, joining other Black Americans falling victim to the technology’s racial bias.
cKure
■■■□□ SolarWinds has released an updated advisory for the additional SuperNova malware discovered to have been distributed through the company's network management platform. https://www.bleepingcomputer.com/news/security/solarwinds-releases-updated-advisory…
■■□□□ SolarWinds / Solorigate attackers wanted to access cloud ☁️ data of the victims.
■■■■■ #Exclusive
#DataLeak: Hacker group RedRabbit Team have created a website which sends details of AirTel #India 🇮🇳 over the email.
We have tested the data for authenticity. Takes around 10 hours to send details. This will be the most audacious leak as it is available on .com clear-net website.
#DataLeak: Hacker group RedRabbit Team have created a website which sends details of AirTel #India 🇮🇳 over the email.
We have tested the data for authenticity. Takes around 10 hours to send details. This will be the most audacious leak as it is available on .com clear-net website.