Cybersecurity agencies in India are slightly relaxing their controversial and complex requirements for reporting on information security incidents, although they reaffirm that the final version of these rules should apply to any multinational company operating on their territory. These rules were announced overnight in late April, receiving criticism from major players in the industry because […]
The iPhone of New York Times journalist Ben Hubbard was repeatedly hacked with NSO Group’s Pegasus spyware tool over a three-year period stretching between June 2018 to June 2021, resulting in infections twice in July 2020 and June 2021. The University of Toronto’s Citizen Lab, which publicized the findings on Sunday, said the “targeting took […]
Following a series of security mishaps and data abuse through its social media platform, Facebook today expanding its bug bounty program in a very unique way to beef up the security of third-party apps and websites that integrate with its platform. Last year, Facebook launched “Data Abuse Bounty” program to reward anyone who reports valid […]
Zero-Day Android exploits are now more valuable then iOS exploits. The infosec and premium zero-day acquisition platform Zerodium known for selling zero-day exploits to governments has announced that it will be paying a huge amount of money to buy zero-day Android exploits. In total, the company will pay up to a whopping $2.5 million to […]
Data protection specialists say that, after two years, business advisory firm Equifax has reached an agreement with U.S. government agencies to pay around $700M USD due to massive data breach happened in the company in 2017. The agreement involves bodies such as the Federal Trade Commission (FTC), the Consumer Protection Bureau, and several states’ attorney […]
The flaw allowed anyone with knowledge of brute force attack to hack Instagram accounts without raising any suspicion. How to hack Instagram account? This is something that every Tom, Dick, and Harry wants to know since with over a billion users, Instagram is the world’s largest photo and video-sharing social networking service. While people are […]
Seccubus automates regular vulnerability scans with various tools and aids security people in the fast analysis of its output, both on the first scan and on repeated scans. On repeated scan delta reporting ensures that findings only need to be judged when they first appear in the scan results or when their output changes. Seccubus […]
Hungary’s Prosecution Service has accused an ethical hacker and computer specialist of infiltrating the Magyar Telekom database. The office found him involved in a crime that disrupted the operations of a “public utility” thereby attempting to endanger the society. Reportedly, the hacker identified serious vulnerabilities in Magyar Telekom and reported them to the company. He […]
The social network would pay up to $40k USD for reporting errors that allow a single account takeover In the middle of an image crisis because of critics of users and regulatory authorities on its data protection policy, Facebook has announced the expansion of its bug bounty program for experts in ethical hacking and […]
A Web Dashbord for Nmap XML Report Usage You should use this with docker, just by sending this command: $ mkdir /tmp/webmap $ docker run -d –name webmap -h webmap -p 8000:8000 -v /tmp/webmap:/opt/xml rev3rse/webmap $ # now you can run Nmap and save the XML Report on /tmp/webmap $ nmap -sT -A -T4 -oX […]
The bug bounty program will remain open until December 31st, 2018. Recently, the identification of serious CPU flaws called Spectre and Meltdown shook the tech community. Although the gravity of damage has been controlled considerably still there is room for mitigation. Perhaps that’s the reason why Microsoft has decided to roll out a new bug bounty […]
According to an information security firm, China is attempting to cover up inexplicable delays in public reporting of high-risk software security holes by changing the dates of vulnerability publication to its national vulnerability database so they match those in the U.S. database. A previous investigation, in November, discovered that China is finding and disclosing information […]
Cyber vulnerability hoarding? The US government publishes its Vulnerabilities Equities Policy (VEP) and describes the process by which cyber flaws found by agencies such as the NSA are handled.
There are so many protocols out there in the computer networks world which focus on the QoS and improving data transmission quality and quantity. There is another protocol known as ICMP which can be seen as the auxiliary protocol supporting other important protocols in the internet protocol suite. ICMP, which stands for Internet Control Message […]
Pizza Hut hacked and some of its clients who utilized the fast food chain’s website and application were influenced by the data breach. As indicated by the email, shared via social media by a few recipients, affected clients placed orders on the company’s mobile app or website within the morning of October 1 and noon […]
Dradis is an open-source collaboration framework, tailored to InfoSec teams. Goals Share the information effectively. Easy to use, easy to be adopted. Otherwise it would present little benefit over other systems. Flexible: with a powerful and simple extensions interface. Small and portable. You should be able to use it while on site (no outside connectivity). […]
Usually, a bug bounty program helps companies secure their software and products from zero day vulnerabilities that can cause massive damage if cyber criminals get their hands on them. But Zerodium, an American information security company, and premium zero-day acquisition platform have launched a Tor Browser Zero-Day Bounty; the purpose of which is to get hackers and security researchers to […]
Another day, another data breach but this one will haunt the targeted customers for a long time. Equifax, a consumer credit reporting agency in the United States has suffered a massive data breach in which personal details of 143 million Americans have been stolen – This is over 40% of the entire population of the […]
Despite being an expanding threat, ransomware infections are rarely reported to law enforcement agencies, according to conclusions from the 2016 Internet Crime Report, released yesterday by the FBI’s Internet Crime Complaint Center (IC3). During 2016, FBI IC3 officials said they received only 2,673 complaints regarding ransomware incidents, which ranked ransomware as the 22nd most reported […]
The search engine and tech giant Google has now increased the reward for finding bugs in Android OS to $200,000. Stepping up their bounty program at this time isn’t that surprising, especially considering that it’s only been a couple of days since the massive ‘Judy’ malware attack. Despite the unthreatening name, Judy has managed to […]
It can perform a lockdown. Unlike some other scripts it has the capability to backout changes. Files are backed up using cpio to a directory based on the date. Although it can perform a lockdown, as previously stated, we would recommend you address the warnings via policy, documentation and configuration management. Linux RHEL 5,6,7 Centos 5,6,7 […]