Last week we had reported that SolarWinds was subject to a massive cyberattack and it had left the data of many organizations and government departments exposed and at stake. The fallout continues as earlier this week US Senator Ron Wyden said that dozens of US Treasury email accounts were compromised. Both the US Treasury Department […]
The post US Treasury officials’ Email Accounts Hacked by the Threat Actors Behind SolarWinds Attack (https://gbhackers.com/solarwinds-cyberattack/) appeared first on GBHackers On Security (https://gbhackers.com/).

Watcher : Open Source Cybersecurity Threat Hunting Platform
https://kalilinuxtutorials.com/watcher/

Watcher is a Django & React JS automated platform for discovering new potentially cybersecurity threats targeting your organization. It should be used on webservers and available on Docker. Watcher Capabilities Detect emerging vulnerability, malware using social network & other RSS sources (www.cert.ssi.gouv.fr, www.cert.europa.eu, www.us-cert.gov, www.cyber.gov.au…). Detect Keywords in pastebin & in other IT content exchange […]
The post Watcher : Open Source Cybersecurity Threat Hunting Platform (https://kalilinuxtutorials.com/watcher/) appeared first on Kali Linux Tutorials (https://kalilinuxtutorials.com/).

New Zero-Day, Malware Indicate Second Group May Have Targeted SolarWinds
http://feedproxy.google.com/~r/Securityweek/~3/eGKsmuuNy2A/new-zero-day-malware-indicate-second-group-may-have-targeted-solarwinds

A piece of malware named by researchers Supernova and a zero-day vulnerability exploited to deliver this malware indicate that SolarWinds may have been targeted by a second, unrelated threat actor.
read more (https://www.securityweek.com/new-zero-day-malware-indicate-second-group-may-have-targeted-solarwinds)

SolarWinds Hackers Aimed to Access Victim Cloud Assets after deploying the Solorigate Backdoor
https://gbhackers.com/solarsinds-targets-cloud-assets/

Microsoft security researchers have continued to investigate Solorigate which caused supply chain compromise and the subsequent compromise of cloud assets and have said that the ultimate ambition of the compromise was to pivot to the victims’ cloud assets after deploying the Sunburst/Solorigate backdoor on their local networks. What is Solorigate attack chain? The Solorigate attack […]
The post SolarWinds Hackers Aimed to Access Victim Cloud Assets after deploying the Solorigate Backdoor (https://gbhackers.com/solarsinds-targets-cloud-assets/) appeared first on GBHackers On Security (https://gbhackers.com/).

Mobile Endpoint Security: Still the Crack in the Enterprise's Cyber Armor
https://www.darkreading.com/mobile/mobile-endpoint-security-still-the-crack-in-the-enterprises-cyber-armor/a/d-id/1339642?_mc=rss_x_drr_edt_aud_dr_x_x-rss-simple

A combination of best practices and best-in-class technology will help keep your enterprise from falling victim to ever-growing threats.

🎉 HAPPY NEW YEAR 🍾

Linux To Report MIPS Vulnerabilities But They Often Go Unreported Or Dead Vendors
https://www.phoronix.com/scan.php?page=news_item&px=Linux-MIPS-Vulnerabilities

Backdoor account discovered in more than 100,000 Zyxel firewalls, VPN gateways | ZDNet
https://www.zdnet.com/article/backdoor-account-discovered-in-more-than-100000-zyxel-firewalls-vpn-gateways/

Congressman Langevin says NDAA important for cybersecurity  WJAR
https://turnto10.com/news/local/congressman-langevin-says-ndaa-important-for-cybersecurity

Thick Client Pentest Lab Setup: DVTA
https://www.hackingarticles.in/thick-client-pentest-lab-setup-dvta/

Thick client applications are not new and have been around for many years and can be still easily found within a variety of organizations. Thick clients are majorly used across organizations for their internal operations and Just because of the adoption of Hybrid infrastructure architecture, thick-client applications become a better target for attackers. However, if... Continue reading →
The post Thick Client Pentest Lab Setup: DVTA (https://www.hackingarticles.in/thick-client-pentest-lab-setup-dvta/) appeared first on Hacking Articles (https://www.hackingarticles.in/).

Nashville Bombing Spotlights Vulnerable Voice, Data Networks
http://feedproxy.google.com/~r/Securityweek/~3/CukVIMtD1F8/nashville-bombing-spotlights-vulnerable-voice-data-networks

The Christmas Day bombing in downtown Nashville led to phone and data service outages and disruptions over hundreds of miles in the southern U.S., raising new concerns about the vulnerability of U.S. communications.
read more (https://www.securityweek.com/nashville-bombing-spotlights-vulnerable-voice-data-networks)

How to Use Virtualbox VMs on KVM In Linux
https://www.tecmint.com/migrate-virtualbox-vms-into-kvm-vms/

Linux Vs Windows: 10 Reasons Why Linux Is Better - Fossbytes
https://fossbytes.com/linux-vs-windows-why-linux-better-than-windows/

Secret Backdoor found Installed in Zyxel Firewall and VPN
https://gbhackers.com/zyxel-firewall-and-vpn/

Zyxel Communications Corp. is a manufacturer of networking devices. It is popular for firewalls that are marketed towards small and medium businesses. Their Unified Security Gateway (USG) product line is often used as a firewall or VPN gateway. The secret backdoor found installed in Zyxel firewall and VPN was discovered by a team of Dutch security […]
The post Secret Backdoor found Installed in Zyxel Firewall and VPN (https://gbhackers.com/zyxel-firewall-and-vpn/) appeared first on GBHackers On Security (https://gbhackers.com/).

New Wallpaper for KDE Plasma 5.21 Revealed - OMG! Ubuntu!
https://www.omgubuntu.co.uk/2021/01/kde-plasma-milky-way-wallpaper