From data leaks and cybersecurity incidents enabled by careless users to the malicious theft of intellectual property (IP) or even workplace violence, insider threats continue to pose a significant ...

A Free Tool to Gather Publicly Available Information Through Social Media OSINT or “Open Source INTeligence” plays a critical role in the field of cybersecurity. It can be used by your company to ...

A threat actor known as ‘DrOne’ has claimed responsibility for leaking a scraped database from Chess.com, a popular online platform for chess enthusiasts, exposing the personal data of over 800,000 ...

The healthcare and life sciences industry continues to be plagued by cybersecurity threats. 1 According to FTI Consulting’s U.S. Healthcare & Life Sciences Industry Outlook 2023 survey, 70 percent of ...

Easy Lab Setup in Minutes and Multiple Tools to Choose From DNS zone transfers use the AXFR protocol to replicate DNS records across DNS servers. If you do not protect your name servers, attackers can ...

During an external penetration test, and especially if it is a black-box engagement, one of the most important steps is the discovery of subdomains used by the target company. Subdomain Enumeration is ...

In the ever-evolving landscape of cyber threats, a new player has emerged, signaling a significant shift in the tactics of Advanced Persistent Threat (APT) groups. Recent findings by cybersecurity ...

A significant vulnerability has been uncovered in Samsung smartphones, linked to the Monkey’s Audio (APE) decoder. The flaw, now resolved, was identified as CVE-2024-49415, carrying a CVSS score of ...

Google announced the public preview of a tool which helps identify threats within virtual machines running on its Google Cloud infrastructure. The new Virtual Machine Threat Detection (VMTD), now ...

During the discovery phase of a vulnerability assessment or penetration testing it is almost certain that you will utilize the infamous tool nmap. You may want to pair it with WebMap. WebMap is a web ...

Why Should You Find Domains Owned by a Company? During a black box, or grey box penetration testing engagement for a company, one of the main things you will need to discover is the domains owned by ...

One common tactic is embedding malicious macros within PDF files. When a user opens the PDF and enables macros, it triggers a malicious script that can download malware onto the victim’s system.