SANS Internet Storm Center - A global cooperative cyber threat / internet security monitor and alert system. Featuring daily handler diaries with summarizing and analyzing new threats to networks and internet security events.

Esta semana se conoció que los diferentes desarrolladores de sistemas operativos publicaron un parche para KRACK , un exploit creado por i...

This article describes how to use the Security Compliance Toolkit in your organization

Open Source Cybersecurity Linux Kernel Extension      ZENEDGE is contributing a Linux kernel extension called Zentables­-addons to open source, developed t

Seringa is an SQL injection framework featuring high customizability and a user-friendly interface. It is completely open source

Cómo identificar y combatir los casos de phishing en que los cibercriminales usan el nombre de Endesa | Endesa Clientes

"Disclosure"   Entrada editada. ###CVE-2017-15805###   Hola, muy buenas a tod@s!! Hace tiempo de la última vez, verdad? Reportar una vulnerabilidad como…

An NSA leaked document about the BADDECISION hacking tool raises the doubt about National Security Agency knew the Krack attack since 2010.

Windows proporciona varios métodos para transferir datos entre aplicaciones. Un método es usar el protocolo de intercambio dinámico de datos...

En determinadas ocasiones, necesitamos utilizar nuestra máquina de auditorías de manera anónima. La mayor parte de herramientas cuentan con una opción para configurar un proxy, ya sea http o sock, …

Buenas hackers!En esta prueba de concepto os explicare como una persona con fines mal intencionados puede obtener el correo electronico Gmail de los empleados de una organización a través de Twitter como medio de propagación.A traves del bypass del hsts conocida…

Security researchers have spotted a new Android banking trojan named LokiBot that turns into ransomware and locks users' phones when they try to remove its admin privileges.

Google Introduces Advanced Protection program for extra paranoid users to protect their accounts from targeted attacks.

Last month, we identified three plugins with critical object injection vulnerabilities, all being exploited in the wild. We deployed new and improved firewall rules to block that kind of exploit. While analyzing our attack data, we recently discovered that…

We’re pleased to announce the second release candidate for Qubes 4.0! As usual, this release candidate includes numerous bug fixes over the previous one. Two of the most important changes are: ...

Sockbot es un malware capaz de registrar dispositivos en una botnet y realizar ataques de denegación de servicios distribuídos.

After last week we had the KRACK and ROCA cryptographic attacks, this week has gotten off to a similarly "great" start with the publication of a new crypto attack known as DUHK (Don't Use Hard-coded Keys)

There’s a potentially massive new ransomware spreading in eastern Europe.

Extract common Windows artifacts from source images and VSCs - Silv3rHorn/ArtifactExtractor