all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
All InfoSec / Cybersecurity News

Source: www.trustwave.com / SpiderLabs Blog from Trustwave

https://www.trustwave.com/en-us/
Follow source RSS
Gootloader: Why your Legal Document Search May End in Misery 1 month, 2 weeks ago | www.trustwave.com
cases delivery document end +8
WormGPT and FraudGPT – The Rise of Malicious LLMs 1 month, 2 weeks ago | www.trustwave.com
blog chatgpt criminal discuss +11
New Rilide Stealer Version Targets Banking Data and Works Around Google Chrome Manifest V3 1 month, 3 weeks ago | www.trustwave.com
banking brave browsers chrome +16
Honeypot Recon: New Variant of SkidMap Targeting Redis 1 month, 3 weeks ago | www.trustwave.com
attacks caught honeypot instance +8
Healthcare Threat Landscape 2022-2023: Common TTPs Used by Top Ransomware Groups Targeting the Healthcare Sector 1 month, 4 weeks ago | www.trustwave.com
blog cybercriminals data healthcare +11
ModSecurity v3: DoS Vulnerability in Four Transformations (CVE-2023-38285) 2 months ago | www.trustwave.com
actions actor application attack +20
Cybersecurity in the Healthcare Industry : Trustwave SpiderLabs Report 2 months, 1 week ago | www.trustwave.com
actionable actionable intelligence cyber cybersecurity +14
It’s Raining Phish and Scams – How Cloudflare Pages.dev and Workers.dev Domains Get Abused 2 months, 2 weeks ago | www.trustwave.com
abusing cloudflare cloudflare pages dev +9
Honeypot Recon: Enterprise Applications Honeypot - Unveiling Findings from Six Worldwide Locations 2 months, 3 weeks ago | www.trustwave.com
a network applications attackers attacks +12
SNAPPY: Detecting Rogue and Fake 802.11 Wireless Access Points Through Fingerprinting Beacon Management Frames 2 months, 4 weeks ago | www.trustwave.com
access access points beacon blog +12
Honeypot Recon: MSSQL Server – Database Threat Overview '22/'23 3 months ago | www.trustwave.com
article attack backdoors botnet +14
Brute-forcing ButterflyMX Virtual Keys and Hacking Time Limits 3 months, 1 week ago | www.trustwave.com
access access control attackers brute +10
KillNet, Anonymous Sudan, and REvil Unveil Plans for Attacks on US and European Banking Systems 3 months, 1 week ago | www.trustwave.com
anonymous anonymous sudan attacks banking +13
Honeypot Recon: Global Database Threat Landscape 3 months, 1 week ago | www.trustwave.com
attacks breaches businesses data +16
Trustwave Action Response: Zero Day Vulnerability in Barracuda Email Security Gateway Appliance (ESG) (CVE-2023-2868) 3 months, 2 weeks ago | www.trustwave.com
action barracuda barracuda networks command +17
From Admin to AdminPlusPlus: Breaking Out of Sandboxed Applications Through Recon, Being Brave and Abusing … 3 months, 2 weeks ago | www.trustwave.com
abusing account applications brave +5
Trustwave Action Response: Zero Day Exploitation of MOVEit (CVE-2023-34362) 3 months, 3 weeks ago | www.trustwave.com
access action critical cve +21
Hunting For Password Reset Tokens By Spraying And Using HTTP Pipelining 3 months, 3 weeks ago | www.trustwave.com
http http requests hunting password +7
Analyzing the NTC Vulkan Leak: What it Says About Russia's Cyber Capabilities 4 months ago | www.trustwave.com
capabilities cooperation cyber defense +16
Microsoft Encrypted Restricted Permission Messages Deliver Phishing 4 months ago | www.trustwave.com
accounts attacks compromised emails +10
From Response To Request, Adding Your Own Variables Inside Of GraphQL Queries For Account Take … 4 months ago | www.trustwave.com
account back blog blog post +6
When User Impersonation Features In Applications Go Bad 4 months, 1 week ago | www.trustwave.com
application applications bad features +7
Abusing Time-Of-Check Time-Of-Use (TOCTOU) Race Condition Vulnerabilities in Games, Harry Potter Style 4 months, 1 week ago | www.trustwave.com
abusing application application security check +10
Rendezvous with a Chatbot: Chaining Contextual Risk Vulnerabilities 4 months, 2 weeks ago | www.trustwave.com
car chatbot dead engine +7
Why It’s Important to Change Default Credentials 4 months, 3 weeks ago | www.trustwave.com
access attackers best practice call +15
Dissecting Buffer Overflow Attacks in MongoDB 5 months, 1 week ago | www.trustwave.com
attacks buffer buffer overflow end +3
CVE-2023-29383: Abusing Linux chfn to Misrepresent /etc/passwd 5 months, 1 week ago | www.trustwave.com
abusing asking bugs cve +6
Rilide: A New Malicious Browser Extension for Stealing Cryptocurrencies 5 months, 3 weeks ago | www.trustwave.com
brave browser browser extension browsers +17
Deobfuscating the Recent Emotet Epoch 4 Macro 5 months, 3 weeks ago | www.trustwave.com
analysis community cybersecurity cybersecurity community +5
Trustwave Action Response: Supply Chain Attack Using 3CX PABX Software 5 months, 3 weeks ago | www.trustwave.com
3cx action attack compromise +9
Trustwave Action Response: Supply Chain Attack Using 3CX PBAX Software 5 months, 3 weeks ago | www.trustwave.com
3cx action attack compromise +9
2023 Tax Scam Emails Exposed: Unmasking Deceptive Trends 5 months, 3 weeks ago | www.trustwave.com
businesses consumers cybercriminals emails +13
Anonymous Sudan: Religious Hacktivists or Russian Front Group 5 months, 3 weeks ago | www.trustwave.com
anonymous anonymous sudan attacks countries +20
ChatGPT: The Right Tool for the Job? 6 months ago | www.trustwave.com
chatbot chatgpt human job +5
OneNote Spear-Phishing Campaign 6 months, 2 weeks ago | www.trustwave.com
campaign change december investigations +9
A Noteworthy Threat: How Cybercriminals are Abusing OneNote – Part 1 6 months, 2 weeks ago | www.trustwave.com
abusing cybercriminals document download +14
A Noteworthy Threat: How Cybercriminals are Abusing OneNote – Part 2 6 months, 2 weeks ago | www.trustwave.com
abuse abusing asyncrat code +14
Network Map NMAP Meets ChatGPT 7 months, 1 week ago | www.trustwave.com
cases chatgpt development map +11
HTML Smuggling: The Hidden Threat in Your Inbox 7 months, 2 weeks ago | www.trustwave.com
attachments credentials email hidden +10
Money Lover App Vulnerability Exposes Personal Info 7 months, 2 weeks ago | www.trustwave.com
android app application app vulnerability +15
Vulnerability Causing Deletion of All Users in CrushFTP Admin Area 7 months, 3 weeks ago | www.trustwave.com
application area deletion input +9
CVE-2022-43704 - Capture-Replay Vulnerability in Sinilink XY-WFT1 Thermostat 8 months, 2 weeks ago | www.trustwave.com
authentication capture control cve +10
2022 Year in Review: Ransomware 8 months, 3 weeks ago | www.trustwave.com
attack attacks back cost +8
Malicious Macros Adapt to Use Microsoft Publisher to Push Ekipa RAT 9 months ago | www.trustwave.com
macros malicious microsoft rat
ChatGPT: Emerging AI Threat Landscape 9 months ago | www.trustwave.com
chatgpt emerging threat threat landscape
Trustwave Action Response: Zero-Day Vulnerability in Citrix ADC (CVE-2022-27518) 9 months, 1 week ago | www.trustwave.com
action adc citrix citrix adc +7
Meta-Phish: Facebook Infrastructure Used in Phishing Attack Chain 9 months, 1 week ago | www.trustwave.com
attack attack chain facebook infrastructure +4
Trojanized OneNote Document Leads to Formbook Malware 9 months, 2 weeks ago | www.trustwave.com
document formbook malware
Going Mobile: BEC Attacks Are Moving Beyond Email 9 months, 2 weeks ago | www.trustwave.com
attacks bec bec attacks beyond +3
Bypassing 2FA Authentication with Evilginx2 9 months, 3 weeks ago | www.trustwave.com
2fa authentication bypassing
‘Tis the Season for Online Shopping and Phishing Scams 9 months, 3 weeks ago | www.trustwave.com
online shopping phishing phishing scams scams +1
Killnet Claims Attacks Against Starlink, Whitehouse.gov, and United Kingdom Websites 10 months ago | www.trustwave.com
attacks claims gov killnet +5
Evolution of the SOC – From the Dark Ages to Enlightenment, shifting to an agile … 10 months ago | www.trustwave.com
ages agile cyber cyber defense +5
Automating RDS Security Via Boto3 (AWS API) 10 months, 1 week ago | www.trustwave.com
api aws rds security
Development of the Ukrainian Cyber Counter-Offensive 10 months, 2 weeks ago | www.trustwave.com
counter cyber development offensive +1
Denial of Service and RCE in OpenSSL 3.0 (CVE-2022-3786 and CVE-2022-3602) 10 months, 3 weeks ago | www.trustwave.com
cve cve-2022-3602 cve-2022-3786 denial of service +3
Insta-Phish-A-Gram 10 months, 4 weeks ago | www.trustwave.com
phish
Archive Sidestepping: Self-Unlocking Password-Protected RAR 11 months ago | www.trustwave.com
archive password rar
Archive Sidestepping: Emotet Botnet Pushing Self-Unlocking Password-Protected RAR 11 months ago | www.trustwave.com
archive botnet emotet emotet botnet +2
ModSecurity Request Body Parsing: Recent Bypass Issues 11 months, 1 week ago | www.trustwave.com
bypass parsing request

Nothing found.

Items published with this topic over the last 90 days.

Latest

Gootloader: Why your Legal Document Search May End in Misery 1 month, 2 weeks ago | www.trustwave.com
cases delivery document end +8
WormGPT and FraudGPT – The Rise of Malicious LLMs 1 month, 2 weeks ago | www.trustwave.com
blog chatgpt criminal discuss +11
New Rilide Stealer Version Targets Banking Data and Works Around Google Chrome Manifest V3 1 month, 3 weeks ago | www.trustwave.com
banking brave browsers chrome +16
Honeypot Recon: New Variant of SkidMap Targeting Redis 1 month, 3 weeks ago | www.trustwave.com
attacks caught honeypot instance +8
Healthcare Threat Landscape 2022-2023: Common TTPs Used by Top Ransomware Groups Targeting the Healthcare Sector 1 month, 4 weeks ago | www.trustwave.com
blog cybercriminals data healthcare +11
ModSecurity v3: DoS Vulnerability in Four Transformations (CVE-2023-38285) 2 months ago | www.trustwave.com
actions actor application attack +20
Cybersecurity in the Healthcare Industry : Trustwave SpiderLabs Report 2 months, 1 week ago | www.trustwave.com
actionable actionable intelligence cyber cybersecurity +14
It’s Raining Phish and Scams – How Cloudflare Pages.dev and Workers.dev Domains Get Abused 2 months, 2 weeks ago | www.trustwave.com
abusing cloudflare cloudflare pages dev +9
Honeypot Recon: Enterprise Applications Honeypot - Unveiling Findings from Six Worldwide Locations 2 months, 3 weeks ago | www.trustwave.com
a network applications attackers attacks +12
SNAPPY: Detecting Rogue and Fake 802.11 Wireless Access Points Through Fingerprinting Beacon Management Frames 2 months, 4 weeks ago | www.trustwave.com
access access points beacon blog +12
Honeypot Recon: MSSQL Server – Database Threat Overview '22/'23 3 months ago | www.trustwave.com
article attack backdoors botnet +14
Brute-forcing ButterflyMX Virtual Keys and Hacking Time Limits 3 months, 1 week ago | www.trustwave.com
access access control attackers brute +10
KillNet, Anonymous Sudan, and REvil Unveil Plans for Attacks on US and European Banking Systems 3 months, 1 week ago | www.trustwave.com
anonymous anonymous sudan attacks banking +13
Honeypot Recon: Global Database Threat Landscape 3 months, 1 week ago | www.trustwave.com
attacks breaches businesses data +16
Trustwave Action Response: Zero Day Vulnerability in Barracuda Email Security Gateway Appliance (ESG) (CVE-2023-2868) 3 months, 2 weeks ago | www.trustwave.com
action barracuda barracuda networks command +17
From Admin to AdminPlusPlus: Breaking Out of Sandboxed Applications Through Recon, Being Brave and Abusing … 3 months, 2 weeks ago | www.trustwave.com
abusing account applications brave +5
Trustwave Action Response: Zero Day Exploitation of MOVEit (CVE-2023-34362) 3 months, 3 weeks ago | www.trustwave.com
access action critical cve +21
Hunting For Password Reset Tokens By Spraying And Using HTTP Pipelining 3 months, 3 weeks ago | www.trustwave.com
http http requests hunting password +7
Analyzing the NTC Vulkan Leak: What it Says About Russia's Cyber Capabilities 4 months ago | www.trustwave.com
capabilities cooperation cyber defense +16
Microsoft Encrypted Restricted Permission Messages Deliver Phishing 4 months ago | www.trustwave.com
accounts attacks compromised emails +10
From Response To Request, Adding Your Own Variables Inside Of GraphQL Queries For Account Take … 4 months ago | www.trustwave.com
account back blog blog post +6
When User Impersonation Features In Applications Go Bad 4 months, 1 week ago | www.trustwave.com
application applications bad features +7
Abusing Time-Of-Check Time-Of-Use (TOCTOU) Race Condition Vulnerabilities in Games, Harry Potter Style 4 months, 1 week ago | www.trustwave.com
abusing application application security check +10
Rendezvous with a Chatbot: Chaining Contextual Risk Vulnerabilities 4 months, 2 weeks ago | www.trustwave.com
car chatbot dead engine +7
Why It’s Important to Change Default Credentials 4 months, 3 weeks ago | www.trustwave.com
access attackers best practice call +15
Dissecting Buffer Overflow Attacks in MongoDB 5 months, 1 week ago | www.trustwave.com
attacks buffer buffer overflow end +3
CVE-2023-29383: Abusing Linux chfn to Misrepresent /etc/passwd 5 months, 1 week ago | www.trustwave.com
abusing asking bugs cve +6
Rilide: A New Malicious Browser Extension for Stealing Cryptocurrencies 5 months, 3 weeks ago | www.trustwave.com
brave browser browser extension browsers +17
Deobfuscating the Recent Emotet Epoch 4 Macro 5 months, 3 weeks ago | www.trustwave.com
analysis community cybersecurity cybersecurity community +5
Trustwave Action Response: Supply Chain Attack Using 3CX PABX Software 5 months, 3 weeks ago | www.trustwave.com
3cx action attack compromise +9
Trustwave Action Response: Supply Chain Attack Using 3CX PBAX Software 5 months, 3 weeks ago | www.trustwave.com
3cx action attack compromise +9
2023 Tax Scam Emails Exposed: Unmasking Deceptive Trends 5 months, 3 weeks ago | www.trustwave.com
businesses consumers cybercriminals emails +13
Anonymous Sudan: Religious Hacktivists or Russian Front Group 5 months, 3 weeks ago | www.trustwave.com
anonymous anonymous sudan attacks countries +20
ChatGPT: The Right Tool for the Job? 6 months ago | www.trustwave.com
chatbot chatgpt human job +5
OneNote Spear-Phishing Campaign 6 months, 2 weeks ago | www.trustwave.com
campaign change december investigations +9
A Noteworthy Threat: How Cybercriminals are Abusing OneNote – Part 1 6 months, 2 weeks ago | www.trustwave.com
abusing cybercriminals document download +14
A Noteworthy Threat: How Cybercriminals are Abusing OneNote – Part 2 6 months, 2 weeks ago | www.trustwave.com
abuse abusing asyncrat code +14
Network Map NMAP Meets ChatGPT 7 months, 1 week ago | www.trustwave.com
cases chatgpt development map +11
HTML Smuggling: The Hidden Threat in Your Inbox 7 months, 2 weeks ago | www.trustwave.com
attachments credentials email hidden +10
Money Lover App Vulnerability Exposes Personal Info 7 months, 2 weeks ago | www.trustwave.com
android app application app vulnerability +15
Vulnerability Causing Deletion of All Users in CrushFTP Admin Area 7 months, 3 weeks ago | www.trustwave.com
application area deletion input +9
CVE-2022-43704 - Capture-Replay Vulnerability in Sinilink XY-WFT1 Thermostat 8 months, 2 weeks ago | www.trustwave.com
authentication capture control cve +10
2022 Year in Review: Ransomware 8 months, 3 weeks ago | www.trustwave.com
attack attacks back cost +8
Malicious Macros Adapt to Use Microsoft Publisher to Push Ekipa RAT 9 months ago | www.trustwave.com
macros malicious microsoft rat
ChatGPT: Emerging AI Threat Landscape 9 months ago | www.trustwave.com
chatgpt emerging threat threat landscape
Trustwave Action Response: Zero-Day Vulnerability in Citrix ADC (CVE-2022-27518) 9 months, 1 week ago | www.trustwave.com
action adc citrix citrix adc +7
Meta-Phish: Facebook Infrastructure Used in Phishing Attack Chain 9 months, 1 week ago | www.trustwave.com
attack attack chain facebook infrastructure +4
Trojanized OneNote Document Leads to Formbook Malware 9 months, 2 weeks ago | www.trustwave.com
document formbook malware
Going Mobile: BEC Attacks Are Moving Beyond Email 9 months, 2 weeks ago | www.trustwave.com
attacks bec bec attacks beyond +3
Bypassing 2FA Authentication with Evilginx2 9 months, 3 weeks ago | www.trustwave.com
2fa authentication bypassing
‘Tis the Season for Online Shopping and Phishing Scams 9 months, 3 weeks ago | www.trustwave.com
online shopping phishing phishing scams scams +1
Killnet Claims Attacks Against Starlink, Whitehouse.gov, and United Kingdom Websites 10 months ago | www.trustwave.com
attacks claims gov killnet +5
Evolution of the SOC – From the Dark Ages to Enlightenment, shifting to an agile … 10 months ago | www.trustwave.com
ages agile cyber cyber defense +5
Automating RDS Security Via Boto3 (AWS API) 10 months, 1 week ago | www.trustwave.com
api aws rds security
Development of the Ukrainian Cyber Counter-Offensive 10 months, 2 weeks ago | www.trustwave.com
counter cyber development offensive +1
Denial of Service and RCE in OpenSSL 3.0 (CVE-2022-3786 and CVE-2022-3602) 10 months, 3 weeks ago | www.trustwave.com
cve cve-2022-3602 cve-2022-3786 denial of service +3
Insta-Phish-A-Gram 10 months, 4 weeks ago | www.trustwave.com
phish
Archive Sidestepping: Self-Unlocking Password-Protected RAR 11 months ago | www.trustwave.com
archive password rar
Archive Sidestepping: Emotet Botnet Pushing Self-Unlocking Password-Protected RAR 11 months ago | www.trustwave.com
archive botnet emotet emotet botnet +2
ModSecurity Request Body Parsing: Recent Bypass Issues 11 months, 1 week ago | www.trustwave.com
bypass parsing request

Top (last 7 days)

Nothing found.

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Business Information Security Officer

@ Metrolink | Los Angeles, CA
View on infosec-jobs.com

Senior Security Engineer

@ Freedom of the Press Foundation | Remote, 4 hour time zone overlap with New York City
View on infosec-jobs.com

Security Engineer

@ ChartMogul | Remote, EU
View on infosec-jobs.com

Cyber Hunt Subject Matter Expert (SME) - Hybrid

@ XOR Security | Alexandria, VA
View on infosec-jobs.com

Software Compliance, Safety and Security Manager (w/m/d)

@ Bosch Group | Stuttgart, Germany
View on infosec-jobs.com

Chef de projet - Service PKI

@ Alter Solutions | Paris, France
View on infosec-jobs.com
View more jobs