Information Security News|Cyber Security|Hacking Tutorial

Briton admits to router hack that DDoSed Deutsche Telekom

On: July 24, 2017

An as yet unnamed 29-year-old pleaded guilty on Friday to charges relating to the hijacking of more than 1.25 million Deutsche Telekom routers, according to reports in the German press.Read More →

Expert exploited an unrestricted File Upload flaw in a PayPal Server to remotely execute code

On: July 24, 2017

In: Vulnerabilities

The security researcher Vikas Anil Sharma exploited an unrestricted File Upload vulnerability in a PayPal Server to remotely execute code. The security researcher Vikas Anil Sharma has found a remote codeRead More →

Hacker “BestBuy” Admits to Hijacking Deutsche Telekom Routers With Mirai Malware

On: July 24, 2017

In: Malware

A 29-year-old man pleaded guilty in court on Friday to hijacking over 900,000 routers from the network of Deutsche Telekom, according to several reports in the German press [1, 2, 3, 4]. TheRead More →

Microsoft sued Fancy Bear to gain control of the domains used in the cyber espionage campaigns

On: July 22, 2017

In: Incidents, Vulnerabilities

Microsoft used the lawsuit to disrupt a large number of cyber espionage campaigns conducted by infamous Fancy Bear APT hacking group We have discussed several times about hacking back and the caseRead More →

Shut Up and Hack

On: July 22, 2017

In: Incidents, Vulnerabilities

I wrote most of the code of this small project, called ‘injectAllTheThings’, a while ago when I started developing custom tools for Red Team engagements (in order to emulate differentRead More →

New Version of DarkHotel Malware Spotted Going After Political Figures

On: July 22, 2017

In: Malware

The DarkHotel hacking group, a threat actor known to engage in advanced cyber-espionage tactics, has shifted operations from targeting CEOs and businessmen to political figures. DarkHotel has its own placeRead More →

EnglishmansDentist Exploit Analysis

On: July 22, 2017

In: Vulnerabilities

Introduction We are continuing our series of blog posts dissecting the exploits released by ShadowBrokers in April 2017. After the first two posts about the SMB exploits known as EternalChampion and EternalSynergy, we’llRead More →

Briar Tor-Based Messenger Passes Security Audit, Enters Beta Stage

On: July 22, 2017

In: Incidents

Briar, an instant messaging service that works over the Tor network, has reached beta stage today, the app’s creators announced. Only an Android app is available at the moment, whichRead More →

FCC has no documentation of DDoS attack that hit net neutrality comments

On: July 21, 2017

In: Data Security

Records request denied because FCC made no “written documentation” of attack. The US Federal Communications Commission says it has no written analysis of DDoS attacks that hit the commission’s net neutralityRead More →

Stantinko Modular Backdoor Infected Over 500,000 Computers

On: July 21, 2017

In: Incidents, Malware

Over 500,000 users have had their computers infected with a stealthy malware named Stantinko, according to a 99-page report released yesterday by Slovak antivirus maker ESET. The malware is a modularRead More →

Briton admits to router hack that DDoSed Deutsche Telekom

Expert exploited an unrestricted File Upload flaw in a PayPal Server to remotely execute code

Hacker “BestBuy” Admits to Hijacking Deutsche Telekom Routers With Mirai Malware

Microsoft sued Fancy Bear to gain control of the domains used in the cyber espionage campaigns

Shut Up and Hack

New Version of DarkHotel Malware Spotted Going After Political Figures

EnglishmansDentist Exploit Analysis

Briar Tor-Based Messenger Passes Security Audit, Enters Beta Stage

FCC has no documentation of DDoS attack that hit net neutrality comments

Stantinko Modular Backdoor Infected Over 500,000 Computers

How Hackers Intercept Mobile OTP and Calls Without ‘Hacking’ — The Shocking Power of SIM Boxes

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

This Hidden Comet/Atlas AI Browser Flaw That Hackers Are Exploiting

How to Use Google’s OSS Rebuild: A New Open Source Software Supply Chain Security Tool

MFA? Irrelevant. CitrixBleed 2 Lets Hackers Take Over Without Logging In

MotW Bypassed: Zero Warning, Full Control – New WinRAR Flaw Silently Bypasses Windows Security

New Vulnerability in GCP Cloud Run Shows Why Least Privilege Isn’t Enough

Forget Metasploit: Inside Predator’s Zero-Click Advertising-Driven Phone Hacking System

How Hackers Intercept Mobile OTP and Calls Without ‘Hacking’ — The Shocking Power of SIM Boxes

13 Insanely Easy Techniques to Hack & Exploit Agentic AI Browsers

How to Use Google’s OSS Rebuild: A New Open Source Software Supply Chain Security Tool

Phishing 2.0: AI Tools Now Build Fake Login Pages That Fool Even Experts

How TokenBreak Technique Hacks OpenAI, Anthropic, and Gemini AI Filters — Step-by-Step Tutorial

Comparing Top 8 AI Code Assistants: Productivity Miracle or Security Nightmare. Can You Patent AI Code Based App?

No Login Required: How Hackers Hijack Your System with Just One Keystroke: utilman.exe Exploit Explained

How to Send DKIM-Signed, 100% Legit Phishing Emails — Straight from Google That Bypass Everything

A Malware That EDR Can’t See?If You Rely on Antivirus for Protection, Read This Before It’s Too Late!

Live Malware Code Mutation: How AI Generates Evasive Malware

Backdooring ATMs via Bootloader? These Hackers Showed It’s Still Possible in 2025”

How Lynx Ransomware Extorts Millions from U.S. Companies

A Malware That EDR Can’t See?If You Rely on Antivirus for Protection, Read This Before It’s Too Late!

Top 2 Malicious Python Packages You Must Avoid! Zebo-0.1.0 & Cometlogger-0.1

Cyber Security Channel

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022