ThreatFabric has identified a new cash-out tactic that wasn’t seen before called “Ghost Tap”, which cybercriminals use to exploit stolen credit card details linked to mobile payment services like Google Pay and Apple Pay. This method involves relaying NFC…

Learn how Clutch Security debunked the myth of secret rotation with evidence-based research, revealing how attackers exploit exposed Non-Human Identities in seconds. Discover why traditional practices fall short and how Zero Trust and ephemeral identities…

Explore adversarial attacks on AI/ML models through hands-on challenges on Dreadnode’s Crucible CTF platform.

This blog post shows a recent penetration test I performed for some customers’ Salesforce applications (also called Salesforce Communities), in which I exploited some common and other lesser-known flaws, which eventually led to an account takeover vulnerability.…

Introducing our latest project: the OAuth Labs. A hands-on approach to OAuth 2.0 vulnerabilities

This post walks through a new CloudGoat scenario, sqs_flag_shop in AWS.

JP (Translated by ChatGPT) In this article, I'll explain the intended solution for the "Tanuki Udon" challenge presented in SECCON CTF 13. TL;DR An XS-Leaks att…

Cleafy Labs reveals DroidBot, a new Android Remote Access Trojan targeting banks, crypto exchanges, and national organisations in Europe and beyond. Learn how it operates with dual-channel communication and evolving tactics. Read here the full report.

Exposor is a tool using internet search engines to detect exposed technologies with a unified syntax. - abuyv/exposor

Information Security Services, News, Files, Tools, Exploits, Advisories, and Whitepapers

It is not just APTs that like to target telephone systems, but ourselves at watchTowr too.

We can't overstate the consequences of an attacker crossing the boundary from the 'computer system' to the 'telephone system'. We've seen attackers realise this in…

A deep dive into macOS malware this year.

At least eight U.S. telecom firms and dozens of nations have been tied up in the unprecedented Salt Typhoon attack, according to new details from U.S. officials.

Note This is another attempt in my Android Side Quest (the previous one was Android’s CVE-2020-0238). Intro While digging around through my old gadgets, I found my ancient OnePlus phone that had been gathering dust in a drawer.

Azure CLI was vulnerable to a registry server confusion attack in it’s Azure Container Registry (ACR) module. If an attacker controls the value of the registry name, they can leak the token of the principal, scoped to the ARM API at https://management.azure.com/…

Did I ever tell you what the definition of insanity is? Insanity is doing the exact… same ******* thing… over and over again expecting… **** to change… That. Is. Crazy.Far Cry 3 Intro The peripheral device industry has once again sacrificed security in the…

Apres-Cyber Slopes Summit is a Cybersecurity conference event with trainings and briefings at a ski-in/ski-out resort located within the Canyons Village at Park City Utah, the largest ski resort in the USA. Focused on cybersecurity leaders (e.g. CISOs) and…