Collaborate Disseminate
What makes Mimic particularly unusual is that it exploits the API of a legitimate Windows file search tool (“Everything” by Voidtools) to quickly locate files for encryption.
Find out more about the threat in my article on the Tripwire State of Secu… Continue reading Mimic ransomware: what you need to know
A Kansas City man is accused of hacking into local businesses, not to steal money, but to… get a cheaper gym membership? A DNA-testing firm has vanished, leaving customers in the dark about what’s happened to their sensitive genetic data. And Austral… Continue reading Smashing Security podcast #395: Gym hacking, disappearing DNA, and a social lockout
Watch out for the Russian hackers from the infamous RomRom group, also known as Storm-0978, Tropical Scorpius, or UNC2596, and their use of a custom backdoor. Continue reading Russian Hackers Exploit Firefox and Windows 0-Days to Deploy Backdoor
Researchers reveal major vulnerabilities in popular corporate VPN clients, allowing remote attacks. Discover the NachoVPN tool and expert… Continue reading AmberWolf Launches NachoVPN Tool to Tackle VPN Security Risks
Aqua Nautilus researchers have discovered a campaign powering a series of large-scale DDoS attacks launched by Matrix, which… Continue reading ‘Matrix’ Hackers Deploy Massive New IoT Botnet for DDoS Attacks
Researchers have discovered vulnerabilities in the update process of Palo Alto Networks (CVE-2024-5921) and SonicWall (CVE-2024-29014) corporate VPN clients that could be exploited to remotely execute code on users’ devices. CVE-2024-5921 CVE-202… Continue reading Researchers reveal exploitable flaws in corporate VPN clients
How well do you know your smart contracts’ health? This article highlights the top five platforms that DeFi… Continue reading Top 5 Platforms for Identifying Smart Contract Vulnerabilities
Only 1.11% of UAE’s 37,926 .ae domains have implemented DMARC, leaving most vulnerable to phishing and and spoofing attacks. Continue reading 99% of UAE’s .ae Domains Exposed to Phishing and Spoofing
Andrew Tate’s “The Real World” platform has been breached, again, leaking user data including emails and private chat… Continue reading Andrew Tate’s University Breach: 1 Million User Records and Chats Leaked
The Shadowserver Foundation reports over 2,000 Palo Alto Networks firewalls have been hacked via two zero-day vulnerabilities: CVE-2024-0012… Continue reading Operation Lunar Peek: More Than 2,000 Palo Alto Network Firewalls Hacked