SecureBug allows you to evaluate your offensive and defensive skills, in addition, to let you exchange your ideas and methodologies with thousands of people in the security field.
Join Nordic's No.1 Crowdsourced Security Platform For Offensive & Defensive Security Strategies.

zoom logo

Zoom Domains Targeted by Hackers to Push Malware

With the outbreak of the Coronavirus, hackers are attempting to take advantage of the popularity of online communication platforms that are used by businesses, school classrooms, and normal users. This time, attackers are taking advantage of Zoom’s increasing user base since the COVID-19 outbreak started by registering hundreds of new Zoom-themed domains for malicious purposes. …

Threat Hunting Images: Hunting Botnet Domain Names via Splunk Detection Rule

Hunting Botnet Domain Names via Splunk Detection Rule

[vc_row][vc_column][vc_column_text]A botnet consists of a number of internet-connected devices. Botnet operators perform activities, mostly malicious, that require large-scale automation including distributed denial-of-service attacks (DDoS attack), attacks on web applications to steal data, send spam, take control of the device and its connections, etc. Botnets usually use one or more than one malicious domain to make…

Threat Hunting Images: Rundll32 Remote Thread: Detect Powershell Malicious Activity with Sigma Detection Rule

Rundll32 Remote Thread: Detect Powershell Malicious Activity via Sigma Detection Rule

[vc_row][vc_column][vc_column_text]Legitimate applications like the PowerShell scripting language can also be used to execute attacks and for malicious activities. The rundll32.exe program can be used to execute an arbitrary binary. Adversaries may take advantage of this functionality to proxy execution of code to avoid setting off security tools that may not monitor the execution of the…

General Electric (GE) - Canon Data breach

General Electric Information Exposed Through Canon Data Breach

Tech giant, General Electric (GE), disclosed a data breach that exposed current and former employees as well as beneficiaries personally identifiable information (PII). The data breach was uncovered through a security incident that happened to one of GE’s partners, Canon Business Process Services. General Electric Company (GE) is a multinational digital industrial conglomerate. The company…