Cisco Confirms Critical Firewall Software Bug Is Under Attack
Cisco has issued patches for the vulnerability, which could be up to seven years old. Continue reading Cisco Confirms Critical Firewall Software Bug Is Under Attack
Category Archives: Pastebin
Telnet Credential Leak Reinforces Bleak State of IoT Security
The disclosure and recent analysis of thousands of leaked telnet credentials paints a bleak picture of the state of IoT security. Continue reading Telnet Credential Leak Reinforces Bleak State of IoT Security
Race is On To Notify Owners After Public List of IoT Device Credentials Published
A list of device IPs and credentials has gone viral since Thursday, kicking off an effort by researchers to notify the owners of these connected devices before they’re hacked. Continue reading Race is On To Notify Owners After Public List of IoT Device Credentials Published
Mandiant researcher doxed by hackers; FireEye counters claim that internal info dumped
A hacker claiming to have compromised cybersecurity firm Mandiant published a trove of leaked emails Sunday apparently connected to a single employee’s personal computer. While the attacker boasted of breaking into the company’s corporate network, the available evidence only suggests that a personal computer, which stored some work documents, was hacked. “It was fun to be inside a giant company named ‘Mandiant’ we enjoyed watching how they try to protect their clients and how their dumb analysts are trying to reverse engineer malwares and stuffs,” the hacker’s message reads. “Now that ‘Mandiant’ knows how deep we breached into its infrastructure its so-called threat analysts are trying to block us. Let’s see how successful they are going to be :D.” In a statement provided to CyberScoop, a spokesperson for Mandiant’s parent company FireEye said: “We are aware of reports that a Mandiant employee’s social media accounts were compromised. We immediately began […]
The post Mandiant researcher doxed by hackers; FireEye counters claim that internal info dumped appeared first on Cyberscoop.
Trickbot via VBS files various subjects and a fake flashplayer from pastebin adverts
This morning’s first Trickbot banking Trojan campaign comes in an email with varying subjects including paper doc scan invoice documents Scanned Document receipt order They are all coming from random girls names at random email addresses There is a zip attachment containing a VBS file couple of examples: https://www.virustotal.com/en/file/5d6a5aed0b40512e7a94ae2905c6097e5b59a254f52074f8f2278a2d86c3bdad/analysis/1500545823/ https://www.virustotal.com/en/file/05e9e26f647fd9ee28aa96f876c794c95a7ee386dbba0679cd13145e2f1ffa74/analysis/1500543815/ … Continue reading → Continue reading Trickbot via VBS files various subjects and a fake flashplayer from pastebin adverts
PwnBin – Python Pastebin Search Tool
PwnBin is a webcrawler or Pastebin search tool which searches public pastebins for specified keywords. All pastes are then returned after sending completion signal CTRL+C. Apart from being a great tool for developers, Pastebins are often used by hacker… Continue reading PwnBin – Python Pastebin Search Tool
Think Twice before Posting Data on Pastebin!
Pastebin.com is one of my favourite playground. I’m monitoring the content of all pasties posted on this website. My goal is to find juicy data like configurations, database dumps, leaks of credentials. Sometimes you can find also malicious binary files. For sure, I knew that I’m not the only one
[The post Think Twice before Posting Data on Pastebin! has been first published on /dev/random]
Continue reading Think Twice before Posting Data on Pastebin!
[SANS ISC Diary] Many Malware Samples Found on Pastebin
I published the following diary on isc.sans.org: “Many Malware Samples Found on Pastebin“. pastebin.com is a wonderful website. I’m scrapping all posted pasties (not only from pastebin.com) and pass them to a bunch of regular expressions. As I said in a previous diary, it is a good way to perform
[The post [SANS ISC Diary] Many Malware Samples Found on Pastebin has been first published on /dev/random]
Continue reading [SANS ISC Diary] Many Malware Samples Found on Pastebin
Get your RAT on Pastebin
A dropper we analyzed downloaded the code for part of its payload from Pastebin on the fly. The payload turned out to be a RAT with keylogging capabilities.Categories: Cybercrime
MalwareTags: keyloggerpastebinPieter Arntzrattempwinlogontrojan(Read mor… Continue reading Get your RAT on Pastebin
Chimera ransomware keys leaked by rival malware developers
The good news: it could lead to some encrypted files being saved. The bad news: the rival gang is offering ransomware as a service. Continue reading Chimera ransomware keys leaked by rival malware developers