Microsoft has reported the correction of a critical vulnerability in Exchange Server detected at the beginning of 2021 and whose exploitation would have allowed threat actors to establish forwarding rules in the affected accounts, which would eventually allow access to incoming emails. Known as ProxyToken and tracked as CVE-2021-33766, the flaw received a score of […]
An Iran-based hacking group has spent about a year and a half operating a hacking campaign in which they pose as aerobics instructors in order to spy on and infect defense employees and contractors and aerospace agencies with malware trying to steal sensitive information. According to Proofpoint specialists, the operators of this campaign created a […]
A staggering number of 3.28 billion passwords linked to 2.18 billion unique email addresses were exposed in what’s one of the largest data dumps of breached usernames and passwords. In addition, the leak includes 1,502,909 passwords associated with email addresses from government domains across the world, with the U.S. government alone taking up 625,505 of […]
MOSINT is an OSINT Tool for emails. It helps you gather information about the target email. Features: Verification Service { Check if email exist } Check social accounts with Socialscan Check data breaches [need API] Find related emails Find related phone numbers Find related domains Scan Pastebin Dumps Google Search DNS Lookup You can […]
According to ethical hacking specialists, two Romanian citizens have been sentenced to 20 years in prison for infecting more than 400,000 computer computers with a variant of malware to extract financial information, an incident that led to a million-dollar fraud. Bogdan Nicolescu (35 years old) and Radu Miclaus (37 years old), were convicted by a […]
According to web application security specialists, a recently patched vulnerability in Microsoft login system could have been exploited to trick some users into granting hackers full access to their online accounts. Thanks to the presence of this vulnerability, threat actors were able to inadvertently extract access tokens, so they could access victims’ accounts without having […]
A decade-old botnet malware that currently controls over 450,000 computers worldwide has recently shifted its operations from infecting machines with ransomware or crypto miners to abusing them for sending out sextortion emails to millions of innocent people. Extortion by email is growing significantly, with a large number of users recently complaining about receiving sextortion emails […]
Anonymous email in which third party servers are used to send email. Mostly these anonymous email servers are used to hide actual sender’s address. There are many servers available online for sending mails. Some are paid & free. We will looking at freely available anonymous email servers. According to ethical hacking researcher of International Institute […]
Famous Email service provider Click2mail suffering from a massive data breach that leaked their customer sensitive personal information, and the attackers used the stolen email addresses to send spam emails. October 4th, 2019, Click2Mail learned that their customer’s data were being used by unknown parties who have abused the customer’s email address to send the […]
Last Valentines day, we made a fearless declaration here in Hackercombat.com, that Trickbot is shaping itself of becoming the “malware of the year”, due to its massive campaigns of infecting computers worldwide. That will remain as our forecast; Trickbot was recently named by the DeepInstinct security researchers as responsible for the compromise of at least […]
Web application security experts claim that a group of government-sponsored hackers broke into the computer systems of ICS-Forth, the organization responsible for managing domain codes in Greece. The Institute of Computer Science from the Foundation for Research and Technology (ICS-Forth) acknowledged the security incident, notifying .gr and .el web domain owners via email. The hacker […]
Threat actors from TA5O5 APT groups distribute malicious spam email campaigns with a new set of malware tools via attached malicious word and excel documents. TA505 hacking group believed to reside in Russia and the threat actors from this group involved in various high profile cyber attacks including infamous Dridex, Locky ransomware, ServHelper malware, FlawedAmmyy, […]
Facebook’s fate now involves controversies that have ignited after the Cambridge Analytica fiasco. Following all the data-breach issues, Facebook could now land up in a new one — courtesy — Mark Zuckerberg’s old emails. According to a report by The Wall Street Journal, Facebook’s employees (close to the matter) have found old emails that suggest […]
The types of email spams break the chain of luring offers that scare us when we check our emails. Almost everyone who has an email address sometimes has to deal with spam mail. However, if you know how to identify this spam email, you will not be the victim of the many online scams. Email […]
Some key online operations in the U.S city of Baltimore have been impacted following a ransomware attack. Reports reveal that all online payment gateways and emails have been totally affected, bringing them all to a standstill, in Baltimore following a ransomware attack that happened in the first week of May. The hackers who have launched […]
Shade Ransomware emerged in late 2014; it includes malicious spam emails or exploits kits as their primary attack vectors. In a recent campaign, hackers abuses CMS such as WordPress and Joomla Sites to host the Shade Ransomware payload. According to Palo Alto report, the following are the top countries affected by the ransomware strain that […]
Turla cyberespionage groups developed an advanced piece of Malware named as LightNeuron that specifically target the Microsoft exchange server and spying on sensitive emails. Turla, also known as Snake is one of the most potent APT hacker’s group and the This APT group well-known for using sophisticated customized tools to attack high profile targets. Tular […]
Security researchers tracked a new malware loader JasperLoader, which has been active for the last few months and distributed through digitally signed emails. The campaign primarily targets European countries, it employs a multi-stage infection process with a number of obfuscation techniques, which make the analysis process more complicated. “Over the past several months, we’ve seen […]
Facebook stored millions of Instagram passwords in a readable format and asked users for their email’s passwords for “verification.” On 21st March, 2018, the social media giant Facebook admitted that it stored passwords of 600 million users including “tens of thousands” of passwords belonging to Instagram users in plain-text which were accessible to over 20,000 […]
Phishing attacks via emails are pretty common these days for which cybercriminals have new ways of luring users into falling prey to such attacks with ease. According to a cybersecurity research firm Barracuda, one such method is using ‘clickbaity’ subject in a mail. Barracuda, after monitoring 360,000 emails in three months, has suggested that there are […]
Researchers discovered the 150GB volume of biggest and most comprehensive email unprotected MongoDB that leaked 800 Million Email data online that belongs to Verifications.io. The leaked email contains sensitive information including personally identifiable information (PII) and the complete data being available in public that can be accessed by anyone on the internet. This Database exactly […]