Evgeny Gaevoy, the CEO of Wintermute, said that the company had been hacked and had lost $162.2 million in DeFi operations. Over 50 cryptocurrency…
github
YouTube gaming videos help distribute new malware packs.
In order to further propagate its malicious package, a new malware packs exploits the YouTube channels of its victims. They lure to produce malicious…
Mitel VoIP Systems are Used by Lorenz Ransomware to Breach Business Networks
A now-patched significant security hole in Mitel MiVoice Connect has been used by the Lornenz ransomware operations. The operators used it to gain access…
A Xalan-J vulnerability could lead to arbitrary code execution
Different SAML implementations make use of open-source initiatives. Researchers caution that a flaw in the Apache project Xalan-J used by numerous SAML implementations leads…
GIFShell attack creates reverse shell using Microsoft Teams GIFs
In order to ensure that PII and/or configuration data, such as Wi-Fi, WPA, PSK, etc., are deleted from the devices before they are sold…
All Hackers Can Utilize Sophisticated Phishing Techniques Thanks To The New EvilProxy Service
With the promise of stealing authentication tokens to get around multi-factor authentication (MFA) on Apple, Google, Facebook, Microsoft, Twitter, GitHub, GoDaddy, and even PyPI.…
As an alternative to Cobalt Strike, hackers use the Sliver toolkit
Threat actors are switching away from the Cobalt Strike suite of penetration testing tools in favor of less similar frameworks. Sliver toolkit, an open-source,…
GoTestWAF Expands API Attack Testing With Support For OpenAPI
Attendees at Black Hat USA have learned that the popular open-source hacking tool GoTestWAF has developed into the first utility of its kind to…
No Shoes, Socks, or Malware Proxy Services Are Allowed!
There is currently something of a supply chain crisis engulfing the underground of the Internet as a result of the recent loss of numerous…
Numerous Android Apps On The Google Play Store Have Been Discovered To Drop Banking Malware
A malicious effort used Android dropper apps that appeared to be innocuous from the Google Play Store to infect consumers’ smartphones with banking malware.…