SecureBug allows you to evaluate your offensive and defensive skills, in addition, to let you exchange your ideas and methodologies with thousands of people in the security field.
Join Nordic's No.1 Crowdsourced Security Platform For Offensive & Defensive Security Strategies.
Researchers from CyberArk have discovered an infostealing malware that is relatively new on cybercriminal forums that can extract sensitive data from about 60 applications on a targeted computer. The operators behind the “Raccoon” infostealer Trojan have added new capabilities to this malware-as-service offering after being observed in the wild for the first time almost a year ago.…
Researchers discovered eight malicious Android apps that were spreading a new data-stealing malware strain that also signs victims up for expensive premium services. The malware, dubbed Haken malware, was found mostly in camera utilities and children’s games in the Google Play marketplace. The eight apps in question, which had collectively been downloaded 50,000 times, have…
New Phishing campaigns are using a CIM Finance account to steal user credentials; in these attacks, targeted users receive a phishing email that tells them they need to update their office 365. The attackers use a fake Microsoft form hosted on google with an authentic SSL certificate to trick recipients into thinking they are connected…
The Joker malware is still capable of bypassing the Google Play defense. The Joker malware, a spyware and premium dialer, has a vast range of capabilities; it is able to disable the Google Play Protect, display adds, write fake reviews and install malicious apps. The malware is also capable of stealing device data, SMS messages,…
A Domain Generation Algorithm (DGA) is a program that is designed to generate domain names in a particular order. Attackers developed DGAs so that malware can quickly generate a list of domains that it can use for the sites that give it instructions and receive information from the malware (usually referred to as “command and…
DNS beacon attack is one of the most complicated techniques used in some C&Cs to check the C&C server and exfiltrate data. For detecting this attack, you must check the time request for domains and find a repetitive behavior within a specified time. We suggest this rule for detecting some beacons. index=”*” type=”dns” | fields…
Microsoft released Windows 10 KB4532693 Update on their February Update Tuesday. It is now reported that a bug is causing the deletion of user files. According to previous reports, users have been facing with various difficulties on account of the Windows 10 KB4532693 Update; the buggy security update, released on February 11, boots user desktop…
A critical flaw in Cisco Smart Software Manager On-Prem could allow unverified remote attackers to gain control over a system with a high-privileged account due to a default and static password of a system account. Cisco Smart Software Manager On-Prem is a license-managing product that allows organizations to manage product activation keys (PAKs) and license…
’ThemeGrill Demo Importer’ är ett populärt WordPress-temaplugin som har över 200 000 installationer. Det har nyligen upptäckts att plugin-programmet innehåller en signifikant sårbarhet som kan göra det möjligt för oautentiserade cyberbrottslingar att få kontroll över många webbplatser och bloggar om de inte är patchade. Det upptäcktes att sårbarheten har funnits i ThemeGrill-plugin under de senaste…
‘ThemeGrill Demo Importer’ is a popular WordPress theme plugin that has over 200,000 installations. It has recently been discovered that the plugin contains a significant vulnerability that could allow unauthenticated cybercriminals to gain control over numerous websites and blogs if they are unpatched. It is discovered that the vulnerability has existed in the ThemeGrill plugin…