Cybersecurity
-
Malware Analysis
How the Trickbot C2 uses rDNS to disguise as a legitimate Australian government service
By Gabor Szathmari One interesting offshoot of researching .gov.au websites running outside Australia was an odd service running from Russia. How the Service…
-
Mobile
WhatsApp can be forced to decrypt WhatsApp Google Drive backups by state surveillance
The AES-GCM-256 key is stored and generated by WhatsApp server and is sent to the client. When a user signs in to…
-
Malware Analysis
IcedID Malware Updates new techniques To Avoid Detection
by Paul Kimayong In our previous blog about IcedID, we explored some of the changes in the malware and how it tries to…
-
Carding
400,000 Korean Credit Cards Leaked Overseas
SEOUL, June 8 (Yonhap) — Details of some 900,000 credit cards held by South Koreans were leaked and traded on…
-
Web Applications
Magento Based Stores See Biggest Attack Due to 0day flaw
Well-known cybersecurity expert and founder of Sanguine Security (SanSec) Willem de Groot (Willem de Groot) warned of the largest ever campaign aimed…
-
Threat Intelligence
Microsoft to Block Excel Add-ins to Stop Office Exploits
Microsoft plans to add a feature to Office Excel that will make it harder for cyberattackers to exploit the spreadsheet…
-
Threat Intelligence
‘DragonSpark’ Malware: East Asian Cyberattackers Create an OSS Frankenstein
We imagine that the world’s most successful hackers write their own dangerous code and invest heavily in the technologies they…
-
Threat Intelligence
Pair of Galaxy App Store Bugs Offer Cyberattackers Mobile Device Access
The Galaxy App Store, the official mobile app store available on Samsung devices, has two vulnerabilities, which, if exploited, could allow…
-
Threat Intelligence
Hunting Insider Threats on the Dark Web
Insider threats are a serious and growing problem. According to recent research, malicious employees contribute to 20% of incidents and…
-
Threat Intelligence
FanDuel Sportsbook Bettors Exposed in Mailchimp Breach
The FanDuel online sportsbook has told its users to be on the lookout for phishing cyberattacks in the wake of…
- 1
- 2