Information Security News|Cyber Security|Hacking Tutorial

Penetration testing with Metasploit made easy

On: March 4, 2017

Millions of IT professionals all over the world want to get into the hot field of security, and Metasploit is a great place to start. Metasploit Framework is free, usedRead More →

New Dark Web Service Helps Crooks Trick You in Revealing Your Payment Card PIN

On: March 4, 2017

In: Important, Incidents, Vulnerabilities

A new service launched on the Dark Web this week simplifies the process of tricking victims whose card details have been exposed into revealing their card’s PIN. The service, whichRead More →

HackerOne Offers Free Bug Bounty Programs for Open Source Projects

On: March 3, 2017

In: Incidents, Vulnerabilities

HackerOne, a platform that is offering hosting for bug bounty programs, announced today that open-source projects can now sign up for a free bug bounty program if they meet aRead More →

Malware Leveraging PowerSploit

On: March 3, 2017

In: Malware

Hi again, this is Shusei Tomonaga from the Analysis Center. In this article, I’d like to share some of our findings about ChChes (which we introduced in a previous article)Read More →

Mike Pence used an AOL e-mail account for state business and it got hacked

On: March 3, 2017

In: Incidents

As a candidate, Trump VP castigated Clinton for use of a private e-mail server. As the US Republican vice presidential candidate, Mike Pence vigorously chastised Hillary Clinton for using aRead More →

Exploiting Android S-Boot: Getting Arbitrary Code Exec in the Samsung Bootloader (1/2)

On: March 3, 2017

In: Mobile Security, Vulnerabilities

Samsung’s Secure Bootloader (S-Boot) for Android lies at the heart of Samsung’s chain of trust concept. An attacker who compromises S-Boot could potentially load an untrusted kernel and system image,Read More →

Researchers uncover PowerShell Trojan that uses DNS queries to get its orders

On: March 3, 2017

In: Important, Incidents, Malware, Vulnerabilities

Delivered by “secure” Word doc, pure PowerShell malware fetches commands from DNS TXT records. Researchers at Cisco’s Talos threat research group are publishing research today on a targeted attack deliveredRead More →

Hidden backdoor discovered in Chinese IoT devices

On: March 2, 2017

In: Malware

Researchers at Trustwave have uncovered a backdoor in IoT devices from a Chinese manufacturer that could leave them open to exploitation. The backdoor is present in almost all devices producedRead More →

BlackArch Linux 2017-03-01 Hacking Distro Released With 50 New Tools And Kernel 4.9.11

On: March 2, 2017

In: Incidents, Vulnerabilities

Short Bytes: The developers of BlackArch ethical hacking distro have released the new ISO images of their operating system. BlackArch Linux 2017-03-01 is now available with 50 new hacking tools, Linux kernelRead More →

Online shops plundered by bank card-stealing malware after bungling backend Aptos hacked

On: March 2, 2017

In: Incidents, Malware

We were silenced by the Feds!’. Shoppers of 40 online stores have had their bank card numbers and addresses slurped by a malware infection at backend provider Aptos. The securityRead More →

Penetration testing with Metasploit made easy

New Dark Web Service Helps Crooks Trick You in Revealing Your Payment Card PIN

HackerOne Offers Free Bug Bounty Programs for Open Source Projects

Malware Leveraging PowerSploit

Mike Pence used an AOL e-mail account for state business and it got hacked

Exploiting Android S-Boot: Getting Arbitrary Code Exec in the Samsung Bootloader (1/2)

Researchers uncover PowerShell Trojan that uses DNS queries to get its orders

Hidden backdoor discovered in Chinese IoT devices

BlackArch Linux 2017-03-01 Hacking Distro Released With 50 New Tools And Kernel 4.9.11

Online shops plundered by bank card-stealing malware after bungling backend Aptos hacked

How Hackers Intercept Mobile OTP and Calls Without ‘Hacking’ — The Shocking Power of SIM Boxes

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

This Hidden Comet/Atlas AI Browser Flaw That Hackers Are Exploiting

How to Use Google’s OSS Rebuild: A New Open Source Software Supply Chain Security Tool

MFA? Irrelevant. CitrixBleed 2 Lets Hackers Take Over Without Logging In

MotW Bypassed: Zero Warning, Full Control – New WinRAR Flaw Silently Bypasses Windows Security

New Vulnerability in GCP Cloud Run Shows Why Least Privilege Isn’t Enough

Forget Metasploit: Inside Predator’s Zero-Click Advertising-Driven Phone Hacking System

How Hackers Intercept Mobile OTP and Calls Without ‘Hacking’ — The Shocking Power of SIM Boxes

13 Insanely Easy Techniques to Hack & Exploit Agentic AI Browsers

How to Use Google’s OSS Rebuild: A New Open Source Software Supply Chain Security Tool

Phishing 2.0: AI Tools Now Build Fake Login Pages That Fool Even Experts

How TokenBreak Technique Hacks OpenAI, Anthropic, and Gemini AI Filters — Step-by-Step Tutorial

Comparing Top 8 AI Code Assistants: Productivity Miracle or Security Nightmare. Can You Patent AI Code Based App?

No Login Required: How Hackers Hijack Your System with Just One Keystroke: utilman.exe Exploit Explained

How to Send DKIM-Signed, 100% Legit Phishing Emails — Straight from Google That Bypass Everything

A Malware That EDR Can’t See?If You Rely on Antivirus for Protection, Read This Before It’s Too Late!

Live Malware Code Mutation: How AI Generates Evasive Malware

Backdooring ATMs via Bootloader? These Hackers Showed It’s Still Possible in 2025”

How Lynx Ransomware Extorts Millions from U.S. Companies

A Malware That EDR Can’t See?If You Rely on Antivirus for Protection, Read This Before It’s Too Late!

Top 2 Malicious Python Packages You Must Avoid! Zebo-0.1.0 & Cometlogger-0.1

Cyber Security Channel

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022