Information Security News|Cyber Security|Hacking Tutorial

JavaScript Backdoor

On: January 25, 2016

Casey Smith recently shared his research on twitter, which is to reverse HTTP Shell by using JavaScript. I found it rather interesting and further analyzed this technique. 0x01 Introduction ObservingRead More →

Apple Can Still See Your iMessages If You Enable iCloud

On: January 25, 2016

In: Incidents, Mobile Security

Apple has taken a strong stance on privacy ever since the FBI began loudly demanding encryption backdoors into its products. The company’s statements about its iMessage service seem plain asRead More →

EDA2 Open-Source Ransomware Code Used in Real-Life Attacks

On: January 25, 2016

In: Incidents

Another educational open-source ransomware project goes bad. Cyber-crooks have used the open-source code of the EDA2 ransomware to create the Magic ransomware strain, which has been spotted in real-life attacksRead More →

This Robot Solves a Rubik’s Cube In Less Than 2 Seconds Flat

On: January 25, 2016

In: Technology

This homemade Robot Can Solve A Rubik’s Cube In A Flash (Video). YouTubers, Jay Flatland and Paul Rose have uploaded a video this month that demonstrates their mechanical solver thatRead More →

LeChiffre, Ransomware Ran Manually

On: January 23, 2016

In: Malware

LeChiffre is yet another ransomware that recently has been observed to cause some major damage (in Mumbai – read more here). Not much material about it is available, so weRead More →

Web Reconnaissance Attack Infects 3,500 Websites, Possibly WordPress

On: January 23, 2016

In: Incidents

Attackers are adding unauthorized code at the top of infected websites, over 3,500 8sites already infected. Alarms are ringing in Symantec’s offices, as its research team has discovered a massiveRead More →

Trojan.DNSChanger circumvents Powershell restrictions

On: January 23, 2016

In: Malware

In recent variants of the infamous DNS-changer adware we have found that the coders use a particularly interesting method to bypass the default restrictions imposed for executing Powershell scripts. ExecutionRead More →

TorMail hack, FBI surgical operation, or dragnet surveillance?

On: January 23, 2016

In: Important

In 2013 the FBI agents seized TorMail, now new information are emerging on the operations. Someone believes it was a surgical ops others accuse Feds of dragnet surveillance. In 2013 theRead More →

Chinese Group Trying to Exploit Old Fortinet SSH Backdoor

On: January 22, 2016

In: Incidents

Scans for Fortinet devices have intensified. An unknown group has been scanning the Internet for old Fortinet equipment that includes a secret SSH backdoor account that can be exploited to takeRead More →

Don’t open that Facebook email attachment — it could be malware

On: January 22, 2016

In: Malware

Two weeks ago, the Comodo Threat Research Lab discovered a malware campaign aimed at businesses and consumers using the WhatsApp mobile messaging service. That attack used official looking emails masqueradingRead More →

JavaScript Backdoor

Apple Can Still See Your iMessages If You Enable iCloud

EDA2 Open-Source Ransomware Code Used in Real-Life Attacks

This Robot Solves a Rubik’s Cube In Less Than 2 Seconds Flat

LeChiffre, Ransomware Ran Manually

Web Reconnaissance Attack Infects 3,500 Websites, Possibly WordPress

Trojan.DNSChanger circumvents Powershell restrictions

TorMail hack, FBI surgical operation, or dragnet surveillance?

Chinese Group Trying to Exploit Old Fortinet SSH Backdoor

Don’t open that Facebook email attachment — it could be malware

How Hackers Intercept Mobile OTP and Calls Without ‘Hacking’ — The Shocking Power of SIM Boxes

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How to Use Google’s OSS Rebuild: A New Open Source Software Supply Chain Security Tool

MFA? Irrelevant. CitrixBleed 2 Lets Hackers Take Over Without Logging In

MotW Bypassed: Zero Warning, Full Control – New WinRAR Flaw Silently Bypasses Windows Security

New Vulnerability in GCP Cloud Run Shows Why Least Privilege Isn’t Enough

Hackers Can Manipulate Your Heart Rate Monitor – Unbelievable Security Flaw!

How Hackers Intercept Mobile OTP and Calls Without ‘Hacking’ — The Shocking Power of SIM Boxes

13 Insanely Easy Techniques to Hack & Exploit Agentic AI Browsers

How to Use Google’s OSS Rebuild: A New Open Source Software Supply Chain Security Tool

Phishing 2.0: AI Tools Now Build Fake Login Pages That Fool Even Experts

How TokenBreak Technique Hacks OpenAI, Anthropic, and Gemini AI Filters — Step-by-Step Tutorial

Comparing Top 8 AI Code Assistants: Productivity Miracle or Security Nightmare. Can You Patent AI Code Based App?

No Login Required: How Hackers Hijack Your System with Just One Keystroke: utilman.exe Exploit Explained

How to Send DKIM-Signed, 100% Legit Phishing Emails — Straight from Google That Bypass Everything

A Malware That EDR Can’t See?If You Rely on Antivirus for Protection, Read This Before It’s Too Late!

WinRAR and ZIP File Exploits: This ZIP File Hack Could Let Malware Bypass Your Antivirus

Backdooring ATMs via Bootloader? These Hackers Showed It’s Still Possible in 2025”

How Lynx Ransomware Extorts Millions from U.S. Companies

A Malware That EDR Can’t See?If You Rely on Antivirus for Protection, Read This Before It’s Too Late!

Top 2 Malicious Python Packages You Must Avoid! Zebo-0.1.0 & Cometlogger-0.1

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Cyber Security Channel

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022