Cybersecurity

Elastic Releases Urgent Fix for Critical Kibana Vulnerability Enabling Remote Code Execution

Mar 06, 2025Ravie LakshmananData Security / Software Security Elastic has rolled out security updates to address a critical security flaw impacting the Kibana data visualization...

SilentCryptoMiner distributed as a bypass tool

In recent months, we’ve seen an increase in the use of Windows Packet Divert drivers to intercept and modify network traffic in Windows systems....

Romanian Distillery Scanning for SMTP Credentials

Lately, attackers have gotten more creative and aggressive in trying to find various credential files on exposed web servers. Our "First Seen" page each...

Notorious Malware, Spam Host “Prospero” Moves to Kaspersky Lab – Krebs on Security

One of the most notorious providers of abuse-friendly “bulletproof” web hosting for cybercriminals has started routing its operations through networks run by the Russian...

Beware of Fake Cybersecurity Audits: Cybercriminals Use Scams to Breach Corporate Systems

Companies are being warned that malicious hackers are using a novel technique to break into businesses - by pretending to offer audits of the...

Rachel – Darknet Diaries

Full Transcript Rachel Tobac is a social engineer. In this episode we hear how she got started doing this and a...

Fake job offers target coders with infostealers

A North Korea-aligned activity cluster tracked by ESET as DeceptiveDevelopment drains victims'...

Processing 23 Billion Rows of ALIEN TXTBASE Stealer Logs

I like to start long blog posts with a tl;dr, so here...

159-CVE January Patch Tuesday smashes single-month record – Sophos News

Microsoft on Tuesday released 159 patches touching 13 product families. Nine of the addressed issues are considered by Microsoft to be of Critical severity,...

LightSpy Expands to 100+ Commands, Increasing Control Over Windows, macOS, Linux, and Mobile

Cybersecurity researchers have flagged an updated version of the LightSpy implant that comes equipped with an expanded set of data collection features to extract...

Fake GitHub projects distribute stealers in GitVenom campaign

In our modern world, it’s difficult to underestimate the impact that open-source code has on software development. Over the years, the global community has...

Tool update: sigs.py – added check mode

Over the years, I've written a number of scripts to make my life easier. One of those tools was sigs.py (which was a rewrite...

Recent articles