SecureBug allows you to evaluate your offensive and defensive skills, in addition, to let you exchange your ideas and methodologies with thousands of people in the security field.
Join Nordic's No.1 Crowdsourced Security Platform For Offensive & Defensive Security Strategies.

Apple Safari

Apple Safari Updated to Block Third-Party Cookies

Apple on Tuesday released Safari 13.1 and updated the Intelligent Tracking Prevention (ITP) privacy feature. Intelligent Tracking Prevention allows Safari to block cookies and prevent advertisers from snooping on users’ web habits. According to Apple WebKit engineer John Wilander, Safari now blocks all third-party cookies. (WebKit is the browser engine that powers Safari.) That means that…

APT32 open IOC detection rule via open IOC

Hold APT32 Signs in your Hand with Open IOC Detection Rule

[vc_row][vc_column][vc_column_text]APT32 is a threat group that has been active since at least 2014. The group has targeted multiple private sector industries as well as with foreign governments, dissidents, and journalists with a strong focus on Southeast Asian countries like Vietnam, the Philippines, Laos, and Cambodia. According to MITRE ATT&CK, they have extensively used strategic web…

Netwalker ransomware, coronavirus

Netwalker Ransomware Delivered via Coronavirus Phishing Emails

The number of Coronavirus-themed attacks is increasing. Attackers are now using phishing emails designed to deliver the Netwalker Ransomware. MalwareHunterTeam experts discovered a phishing campaign with an attachment, named “CORONAVIRUS_COVID-19.vbs,” used to install the Netwalker Ransomware. the Netwalker ransomware, previously known as Mailto, is resurfacing again as it is targeting government agencies and enterprises. Two significant…

smss.exe process

smss.exe: One Of The Most Important Processes For Threat Hunting

“smss.exe” is the Session Manager Subsystem for Microsoft Windows OS. The main system thread initiates this process.     This process manages the start of user sessions and various other activities including launching Winlogon.exe and Csrss.exe processes, setting system variables and other activities. If the 2 processes end normally after launch, smss.exe shuts down the…

Coronavirus (COVID-19)

Thousands of Coronavirus (COVID-19) Related Sites Created Daily as Bait

Since February, there have been thousands of new Covid-19-related domains containing keywords like Coronavirus, COVID-19, COVID, pandemic, vaccine, virus. In February, Spammers used the Coronavirus outbreak to spread malware via emails claiming to offer information on how to defend against the real-world virus.  Early in March, hackers were using Fake World Health Organization Emails to spread malware.…