CISO Express | A Security Professional’s Home Page

Threat Intelligence from Arbor Net

  • Lojack Becomes a Double-Agent

    Lojack Becomes a Double-Agent

    Executive Summary ASERT recently discovered Lojack agents containing malicious C2s. These hijacked agents pointed to suspected Fancy Bear (a.k.a. APT28, Pawn Storm) domains.  The InfoSec community and the U.S. government have both attributed Fancy B…
    - 1 May 18, 1:44pm -
  • Innaput Actors Utilize Remote Access Trojan Since 2016, Presumably Targeting Victim Files

    Innaput Actors Utilize Remote Access Trojan Since 2016, Presumably Targeting Victim Files

    Overview ASERT recently identified a campaign targeting commercial manufacturing  in the US and potentially Europe in late 2017.   The threat actors used phishing and downloader(s) to install a Remote Access Trojan (RAT) ASERT calls InnaputRAT on…
    - 4 Apr 18, 8:02pm -
  • Panda Banker Zeros in on Japanese Targets

    Panda Banker Zeros in on Japanese Targets

    Key Findings A threat actor using the well-known banking malware Panda Banker (a.k.a Zeus Panda, PandaBot) has started targeting financial institutions in Japan. Based on our data and analysis this is the first time that we have seen Panda Banker inj…
    - 27 Mar 18, 9:25pm -
  • Donot Team Leverages New Modular Malware Framework in South Asia

    Donot Team Leverages New Modular Malware Framework in South Asia

    Authors: Dennis Schwarz and Jill Sopko Special thanks to Richard Hummel and Hardik Modi for their contributions on this post. Key Findings ASERT discovered a new modular malware framework, we call yty, that focuses on file collection, screenshots, a…
    - 8 Mar 18, 2:39pm -
  • NETSCOUT Arbor Confirms 1.7 Tbps DDoS Attack; The Terabit Attack Era Is Upon Us

    NETSCOUT Arbor Confirms 1.7 Tbps DDoS Attack; The Terabit Attack Era Is Upon Us

    Last week, after Akamai confirmed a 1.3Tbps DDoS attack against Github. I published a blog that looked at the last five years of reflection/amplification attack innovation. I hope that it provides a helpful backgrounder on how we got here, to the ter…
    - 5 Mar 18, 5:34pm -
  • 1 Terabit DDoS Attacks Become a Reality; Reflecting on Five Years of Reflections

    1 Terabit DDoS Attacks Become a Reality; Reflecting on Five Years of Reflections

    Special thanks to Hardik Modi, Steve Siadak and Roland Dobbins for their contributions on this post. Reflection amplification is a technique that allows cyber attackers to both magnify the amount of malicious traffic they can generate, and obfuscate…
    - 1 Mar 18, 7:24pm -
  • memcached Reflection/Amplification Description and DDoS Attack Mitigation Recommendations

    memcached Reflection/Amplification Description and DDoS Attack Mitigation Recommendations

    ASERT Threat Summary: memcached Reflection/Amplification Description and DDoS Attack Mitigation Recommendations Date/Time: 27022018 2325UTC Title/Number: memcached Reflection/Amplification Description and DDoS Attack Mitigation Recommendations – Fe…
    - 27 Feb 18, 5:08pm -
  • Musical Chairs Playing Tetris

    Musical Chairs Playing Tetris

    February 20, 2018: This blog has been amended since it was originally published on February 15, 2018. This version removes the association with the APT group responsible for the Night Dragon campaign that we had incorrectly made. We thank the researc…
    - 15 Feb 18, 9:23pm -
  • The ARC of Satori

    The ARC of Satori

    Authors: Pete Arzamendi, Matt Bing, and Kirk Soluk. Satori, the heir-apparent to the infamous IOT malware Mirai, was discovered by researchers in December 2017. The word “satori” means “enlightenment” or “understanding” in Japanese, but t…
    - 19 Jan 18, 2:03am -
  • MedusaHTTP DDoS Slithers Back into the Spotlight

    MedusaHTTP DDoS Slithers Back into the Spotlight

    Executive Summary MedusaHTTP is a HTTP-based DDoS botnet written in .NET, that surfaced in early 2017. MedusaHTTP is based off of MedusaIRC which leveraged IRC for its command and control communications instead of HTTP. MedusaIRC botnet has been adve…
    - 18 Dec 17, 3:00pm -

Cyber Crimes Info by FBI

    Financial Crimes Task Force (FCTF)

    Threat Metrix

      Federal Trade Commision on Identity Theft

      • Bought ReJuvenation pills? Get your money back
        Last year, the FTC reached a settlement agreement with makers of ReJuvenation and sent refund checks to people who bought this so-called “anti-aging” pill that claimed to be a cure-all for ailments including cell damage, heart attack damage, brai…
        - 11 days ago 15 Jul 21, 4:54pm -
      • Targeting the troops
        While American servicemembers stand ready to defend the nation, smalltime scammers and large corporations alike have them in their sights. They follow the money — and they know that military personnel get a steady paycheck and valuable benefits fro…
        - 19 days ago 7 Jul 21, 3:47pm -
      • Military Consumer Month 2021
        - 26 days ago 1 Jul 21, 4:00am -
      • Shopping online? Know your retailer and your rights
        COVID opened the door for scammers to double down on their worst practices, while preying on consumers during an unprecedented global pandemic. That includes some bad actors who have been taking advantage of online shoppers in search of hard-to-find…
        - 27 days ago 30 Jun 21, 12:02pm -
      • What to know before you buy something online
        Ahh, summer. Ten sweet yet short weeks to enjoy some of your favorite traditions. Maybe it’s sipping an ice cold drink on the porch, spending a weekend at the beach, or cooling off with the kids at the pool. Now that you think about it, you might d…
        - 39 days ago 18 Jun 21, 12:22pm -
      • Don’t send them money
        Family emergency scams try to scare people into sending money to help a loved one in trouble. The fraud can play out in many ways, but the hustle is the same: the caller lies, tries to scare you, and rushes you to pay so you don’t have time to thin…
        - 39 days ago 17 Jun 21, 5:12pm -
      • Timeshares: Yes? No? Maybe?
        If you’re considering getting a timeshare this vacation season, read on. Maybe you got a flyer in the mail with pictures of sunny beaches and beautiful resort suites. Sounds great, right? But before you sign a timeshare contract, make sure you unde…
        - 41 days ago 16 Jun 21, 4:00am -
      • Hot rental car market = scams
        The weather is getting warmer, and you might be itching to travel again. The mountains, the beach, and the trails are calling you — and everyone else. At least that’s what it feels like when you start looking into renting a car. With rental car a…
        - 42 days ago 15 Jun 21, 1:01pm -
      • Hello, summer. Goodbye, scammers.
        Summer is right around the corner. With things reopening, kids getting out of school, and days lasting longer, this summer promises, we hope, some much-needed relaxation, adventure, and a chance to reconnect with family and friends. Today, we’re ki…
        - 43 days ago 14 Jun 21, 12:01pm -
      • How to spot a government impersonator scam
        Scammers often disguise themselves as people working for the government and might pretend to offer help. But, really, they’re after your money or personal information. For Pride Month, the FTC wants the LGBTQ+ community to know about government imp…
        - 45 days ago 11 Jun 21, 5:16pm -

      Security Technical Implementation Guides

        Security Intelligence by IBM Security

        • newDouble Encryption: When Ransomware Recovery Gets Complicated
          Ever hear of double extortion? It’s a technique increasingly employed by ransomware attackers. A malware payload steals a victim’s plaintext information before launching its encryption routine. Those operating the ransomware then go on to demand…
          - 9 hours ago 26 Jul 21, 4:00pm -
        • How AI Will Transform Data Security
          I’ve often wondered whether artificial intelligence (AI) in cybersecurity is a good thing or a bad thing for data security. Yes, I love the convenience of online stores suggesting the perfect items for me based on my search history, but other times…
          - 3 days ago 23 Jul 21, 4:00pm -
        • API Abuse Is a Data Security Issue Here to Stay
          Just about every app uses an application programming interface (API). From a security standpoint, though, APIs also come with some common problems. Gartner predicted that API abuse will be the most common type of attack seen in 2022. So, what problem…
          - 4 days ago 23 Jul 21, 12:00am -
        • Thriving in Chaos: How Cyber Resilience Works
          In cybersecurity as in most jobs, problems don’t happen one at a time, you’re bound to have a few at once. Speakers at the RSA Conference 2021 talked about this in terms of maintaining cyber resilience in chaos. So, what does the buzzword ‘cybe…
          - 4 days ago 22 Jul 21, 10:00pm -
        • This Chat is Being Recorded: Egregor Ransomware Negotiations Uncovered
          Ransomware attacks are topping the charts as the most common attack type to target organizations with a constant drumbeat of attacks impacting industries across the board. In fact, IBM Security X-Force has seen a more than 10% increase in ransomware…
          - 5 days ago 21 Jul 21, 6:00pm -
        • Beyond Ransomware: Four Threats Facing Companies Today
          The recent DarkSide attack makes it clear: no system is safe from ransomware. And while the attackers say they weren’t out to hurt anyone, only to make money, the impact is the same. It could lead to potential disruptions of critical services acros…
          - 5 days ago 21 Jul 21, 4:00pm -
        • How to Fix the Big Problems With Two-Factor and Multifactor Authentication
          Getting a second opinion is a great idea in both medicine and end-user cybersecurity. Two-factor authentication (2FA) and multifactor authentication (MFA) are powerful tools in the fight against all kinds of cyberattacks that involve end-user devices…
          - 6 days ago 20 Jul 21, 7:00pm -
        • Avoid Blind Spots: Is Your Incident Response Team Cloud Ready?
          The year 2020 — with all its tumult — ushered in a massive shift in the way most companies work. Much of that transformation included migrating to cloud, with some statisticians reporting that a full 50% of companies across the globe are now usin…
          - 6 days ago 20 Jul 21, 5:00pm -
        • How Data Discovery and Zero Trust Can Help Defend Against a Data Breach
          As more companies start to use the cloud, the threat of a data breach and the rules and fines that go with it has only grown. Therefore, companies and agencies need to anticipate and adapt to their changing data and IT landscape. For that, a zero tru…
          - 6 days ago 20 Jul 21, 2:30pm -
        • Two (or More) Is Better Than One: Digital Twin Tech for Cybersecurity
          Throughout my lifetime, I’ve wondered on many occasions how my life would have changed had I made a different decision at a critical point — picked a different college, taken a different job or moved to another town. I’ve often wished that I co…
          - 7 days ago 19 Jul 21, 7:00pm -

        Security Focus Vulnerabilities

        The TOR Blog

        • New Release: Tor Browser 11.0a2

          New Release: Tor Browser 11.0a2

          New Release: Tor Browser 11.0a2 sysrqbJuly 20, 2021 Tor Browser 11.0a2 is now available from the Tor Browser download page and also from our distribution directory.Note: This is an alpha release, an experimenta…
          - 6 days ago 20 Jul 21, 7:38pm -
        • New Release: Tor Browser 10.5.3 (Android)

          New Release: Tor Browser 10.5.3 (Android)

          New Release: Tor Browser 10.5.3 (Android) sysrqbJuly 20, 2021 Tor Browser 10.5.3 is now available from the Tor Browser download page and also from our distribution directory.This version updates Firefox to 90.1…
          - 6 days ago 20 Jul 21, 7:31pm -
        • Bug Smash Fund, Year 2: Progress Since February 2021

          Bug Smash Fund, Year 2: Progress Since February 2021

          Bug Smash Fund, Year 2: Progress Since February 2021 Al SmithJuly 13, 2021 Last August, we asked you to help us fundraise during our second annual Bug Smash Fund campaign. This fund is designed to grow a healthy…
          - 13 days ago 13 Jul 21, 9:50pm -
        • New Release: Tor Browser 10.5.2 (Windows, macOS, Linux)

          New Release: Tor Browser 10.5.2 (Windows, macOS, Linux)

          New Release: Tor Browser 10.5.2 (Windows, macOS, Linux) sysrqbJuly 13, 2021 Tor Browser 10.5.2 is now available from the Tor Browser download page and also from our distribution directory.This version updates F…
          - 13 days ago 13 Jul 21, 7:22pm -
        • New Release: Tails 4.20

          New Release: Tails 4.20

          New Release: Tails 4.20 TailsJuly 13, 2021 Tor Connection assistantTails 4.20 completely changes how to connect to the Tor network from Tails.After connecting to a local network, a Tor Connection assistant hel…
          - 14 days ago 13 Jul 21, 12:16pm -
        • New Release: Tor Browser 11.0a1 (Android Only)

          New Release: Tor Browser 11.0a1 (Android Only)

          New Release: Tor Browser 11.0a1 (Android Only) sysrqbJuly 12, 2021 Tor Browser 11.0a1 is now available from the Tor Browser download page and also from our distribution directory.Note: This is an alpha release,…
          - 14 days ago 12 Jul 21, 7:26pm -
        • Transparency, Openness, and Our 2020 Financials

          Transparency, Openness, and Our 2020 Financials

          Transparency, Openness, and Our 2020 Financials Al SmithJuly 09, 2021 Every year, as required by U.S. federal law for 501(c)(3) nonprofits, the Tor Project completes a Form 990, and as required by contractual ob…
          - 17 days ago 9 Jul 21, 5:00pm -
        • Announcing Arti, a pure-Rust Tor implementation

          Announcing Arti, a pure-Rust Tor implementation

          Announcing Arti, a pure-Rust Tor implementation nickmJuly 08, 2021 Greetings!Today I'm happy to announce a new era in Tor implementation.Over the past year or so, we've been working on "Arti", a project to rew…
          - 18 days ago 8 Jul 21, 3:48pm -
        • New Release: Tor Browser 10.5.1 (Android Only)

          New Release: Tor Browser 10.5.1 (Android Only)

          New Release: Tor Browser 10.5.1 (Android Only) sysrqbJuly 07, 2021 Tor Browser 10.5.1 is now available from the Tor Browser download page and also from our distribution directory.This version is a bugfix for An…
          - 19 days ago 7 Jul 21, 5:27pm -
        • New Release: Tor Browser 10.5

          New Release: Tor Browser 10.5

          New Release: Tor Browser 10.5 AntonelaJuly 06, 2021 Tor Browser 10.5 is now available from the Tor Browser download page and also from our distribution directory.This new Tor Browser release is focused on impro…
          - 20 days ago 6 Jul 21, 4:56pm -
        • New stable release: Tor 0.4.6.6

          New stable release: Tor 0.4.6.6

          New stable release: Tor 0.4.6.6 nickmJune 30, 2021 We have a new stable release today. If you build Tor from source, you can download the source code for 0.4.6.6 on the download page.Tor 0.4.6.6 makes several s…
          - 26 days ago 30 Jun 21, 4:14pm -
        • New Release: Tor Browser 10.5a17

          New Release: Tor Browser 10.5a17

          New Release: Tor Browser 10.5a17 sysrqbJune 28, 2021 Tor Browser 10.5a17 is now available from the Tor Browser download page and also from our distribution directory.Note: This is an alpha release, an experimen…
          - 28 days ago 28 Jun 21, 10:33pm -
        • Improving the user experience of connecting to Tor in Tor Browser 10.5

          Improving the user experience of connecting to Tor in Tor Browser 10.5

          Improving the user experience of connecting to Tor in Tor Browser 10.5 AntonelaJune 24, 2021 During the past few years, the UX team has been working on qualitatively improving the entire Tor Browser user journey…
          - 32 days ago 24 Jun 21, 1:53pm -
        • New Release: Tor Browser 10.0.18

          New Release: Tor Browser 10.0.18

          New Release: Tor Browser 10.0.18 sysrqbJune 21, 2021 Tor Browser 10.0.18 is now available from the Tor Browser download page and also from our distribution directory.This version updates Tor to 0.4.5.9, includi…
          - 35 days ago 21 Jun 21, 2:00pm -
        • Internet Freedom, Privacy, & LGBTQIA+ Human Rights

          Internet Freedom, Privacy, & LGBTQIA+ Human Rights

          Internet Freedom, Privacy, & LGBTQIA+ Human Rights Al SmithJune 14, 2021 Every June, we recognize Pride month because internet freedom and the human rights of LGBTQIA+ people go hand in hand.LGBTQIA+ people hav…
          - 42 days ago 14 Jun 21, 5:14pm -
        • New stable security releases: 0.3.5.15, 0.4.4.9, 0.4.5.9, 0.4.6.5

          New stable security releases: 0.3.5.15, 0.4.4.9, 0.4.5.9, 0.4.6.5

          New stable security releases: 0.3.5.15, 0.4.4.9, 0.4.5.9, 0.4.6.5 nickmJune 14, 2021 After months of work, we have a new stable release series! If you build Tor from source, you can download the source code for…
          - 42 days ago 14 Jun 21, 3:35pm -
        • New Release: Tor Browser 10.5a16

          New Release: Tor Browser 10.5a16

          New Release: Tor Browser 10.5a16 sysrqbJune 11, 2021 Tor Browser 10.5a16 is now available from the Tor Browser download page and also from our distribution directory.Note: This is an alpha release, an experimen…
          - 45 days ago 11 Jun 21, 1:59pm -
        • Snowflake moving to stable in Tor Browser 10.5

          Snowflake moving to stable in Tor Browser 10.5

          Snowflake moving to stable in Tor Browser 10.5 cohoshJune 08, 2021 We're excited to announce that Snowflake will be shipped as one of the default bridge options with stable versions of Tor Browser later this mon…
          - 48 days ago 8 Jun 21, 2:24pm -
        • New Release: Tor Browser 10.0.17

          New Release: Tor Browser 10.0.17

          New Release: Tor Browser 10.0.17 sysrqbJune 02, 2021 Tor Browser 10.0.17 is now available from the Tor Browser download page and also from our distribution directory.This version updates Firefox to 78.11esr. In…
          - 54 days ago 2 Jun 21, 4:17pm -
        • Dreaming at Dusk: the Tor Project’s NFT Auction & What’s Next

          Dreaming at Dusk: the Tor Project’s NFT Auction & What’s Next

          Dreaming at Dusk: the Tor Project’s NFT Auction & What’s Next Al SmithMay 28, 2021 In mid-May, the Tor Project held a nonfungible token (NFT) auction of a generative art piece we called Dreaming at Dusk, cre…
          - 59 days ago 28 May 21, 4:54pm -
        • New release candidate: Tor 0.4.6.4-rc

          New release candidate: Tor 0.4.6.4-rc

          New release candidate: Tor 0.4.6.4-rc nickmMay 28, 2021 There's a new release candidate available for download. If you build Tor from source, you can download the source code for 0.4.6.4-rc from the download pag…
          - 59 days ago 28 May 21, 4:28pm -
        • Announcing new Board members

          Announcing new Board members

          Announcing new Board members isabelaMay 26, 2021 We are excited to announce that three new members are joining the Tor Project’s Board of Directors: Alissa Cooper, Desigan (Dees) Chinniah, and Kendra Albert! E…
          - 61 days ago 26 May 21, 4:57pm -
        • Dreaming At Dusk

          Dreaming At Dusk

          Dreaming At Dusk rootMay 13, 2021   The first star of a dying galaxy. Curves taking over while bits dream at dusk. Welcome to the onion space. We've been here since 2004, and we grow every day. In a fe…
          - 74 days ago 13 May 21, 7:40pm -
        • New release: Tor 0.4.5.8

          New release: Tor 0.4.5.8

          New release: Tor 0.4.5.8 nickmMay 10, 2021 We have a new stable release today. If you build Tor from source, you can download the source code for Tor 0.4.5.8 on the download page. Packages should be available wi…
          - 77 days ago 10 May 21, 2:50pm -
        • New release candidate: Tor 0.4.6.3-rc

          New release candidate: Tor 0.4.6.3-rc

          New release candidate: Tor 0.4.6.3-rc nickmMay 10, 2021 There's a new release candidate available for download. If you build Tor from source, you can download the source code for Tor 0.4.6.3-rc from the download…
          - 77 days ago 10 May 21, 2:46pm -
        • Check the status of Tor services with status.torproject.org

          Check the status of Tor services with status.torproject.org

          Check the status of Tor services with status.torproject.org anarcatMay 05, 2021 The Tor Project now has a status page which shows the state of our major services.You can check status.torproject for news about m…
          - 82 days ago 5 May 21, 2:33pm -
        • Defend Dissent with Tor

          Defend Dissent with Tor

          Defend Dissent with Tor GusApril 27, 2021 Guest post by Glencora BorradaileAfter 4 years of giving digital security trainings to activists and teaching a course called "Communications Security and Social Moveme…
          - 91 days ago 27 Apr 21, 8:23am -
        • New Release: Tor Browser 10.5a15

          New Release: Tor Browser 10.5a15

          New Release: Tor Browser 10.5a15 sysrqbApril 26, 2021 Tor Browser 10.5a15 is now available from the Tor Browser download page and also from our distribution directory.Note: This is an alpha release, an experime…
          - 91 days ago 27 Apr 21, 2:13am -
        • Domain Shadowing: Leveraging CDNs for Robust Blocking-Resistant Communications

          Domain Shadowing: Leveraging CDNs for Robust Blocking-Resistant Communications

          Domain Shadowing: Leveraging CDNs for Robust Blocking-Resistant Communications Mingkui WeiApril 22, 2021 We invited guest blog author, Mingkui Wei, to submit a summary of their research to the blog this week. Th…
          - 95 days ago 23 Apr 21, 1:04am -
        • New Release: Tor Browser 10.0.16

          New Release: Tor Browser 10.0.16

          New Release: Tor Browser 10.0.16 sysrqbApril 20, 2021 Tor Browser 10.0.16 is now available from the Tor Browser download page and also from our distribution directory.This version updates Firefox to 78.10esr an…
          - 97 days ago 20 Apr 21, 3:59pm -
        • New Alpha Release: Tor 0.4.6.2-alpha
          New Alpha Release: Tor 0.4.6.2-alphanickmApril 15, 2021 There's a new alpha release available for download. If you build Tor from source, you can download the source code for 0.4.6.2-alpha from the download page on the website. Package…
          - 15 Apr 21, 12:11pm -
        • New Release: Tor Browser 10.5a14

          New Release: Tor Browser 10.5a14

          New Release: Tor Browser 10.5a14 sysrqbApril 13, 2021 Tor Browser 10.5a14 is now available from the Tor Browser Alpha download page and also from our distribution directory.Note: This is an alpha release, an ex…
          - 14 Apr 21, 12:50am -
        • New Release: Tor Browser 10.5a13

          New Release: Tor Browser 10.5a13

          New Release: Tor Browser 10.5a13 sysrqbApril 05, 2021 Tor Browser 10.5a13 is now available from the Tor Browser Alpha download page and also from our distribution directory.Note: This is an alpha release, an ex…
          - 5 Apr 21, 1:58pm -
        • New Release: Tor Browser 10.0.15

          New Release: Tor Browser 10.0.15

          New Release: Tor Browser 10.0.15 sysrqbMarch 27, 2021 Update: 9 April 2021: Android Tor Browser 10.0.15 is now available.Tor Browser 10.0.15 is now available from the Tor Browser download page and also from our…
          - 28 Mar 21, 2:11am -
        • Onionize your Workflow with the Onion Guide Fanzine

          Onionize your Workflow with the Onion Guide Fanzine

          Onionize your Workflow with the Onion Guide Fanzine GabaMarch 27, 2021 At the Tor Project, we build technologies that allow anybody to access the Internet privately. We maintain the software that runs the Tor ne…
          - 27 Mar 21, 10:04pm -
        • New Release: Tor Browser 10.0.14

          New Release: Tor Browser 10.0.14

          New Release: Tor Browser 10.0.14 sysrqbMarch 24, 2021 Tor Browser 10.0.14 is now available from the Tor Browser download page and also from our distribution directory.This version updates Desktop Firefox to 78.…
          - 24 Mar 21, 9:05pm -
        • Get a TLS certificate for your onion site

          Get a TLS certificate for your onion site

          Get a TLS certificate for your onion site isabelaMarch 24, 2021 We are happy to share the news of another important milestone for .onion services! You can now get DV certificates for your v3 onion site using HAR…
          - 24 Mar 21, 4:58pm -
        • New Release: Tor Browser 10.5a12 (Android Only)

          New Release: Tor Browser 10.5a12 (Android Only)

          New Release: Tor Browser 10.5a12 (Android Only) sysrqbMarch 21, 2021 Tor Browser 10.5a12 is now available from the Tor Browser Alpha download page and also from our distribution directory.Note: This is an alpha…
          - 21 Mar 21, 4:27pm -
        • New Alpha Release: Tor 0.4.6.1-alpha

          New Alpha Release: Tor 0.4.6.1-alpha

          New Alpha Release: Tor 0.4.6.1-alpha nickmMarch 18, 2021 There's a new alpha release available for download. If you build Tor from source, you can download the source code for 0.4.6.1-alpha from the download pag…
          - 18 Mar 21, 5:53pm -
        • Sign now: European initiative for a ban on biometric mass surveillance

          Sign now: European initiative for a ban on biometric mass surveillance

          Sign now: European initiative for a ban on biometric mass surveillance Matthias MarxMarch 17, 2021 The “Reclaim Your Face” coalition has launched a European Citizens’ Initiative for a ban on biometric mas…
          - 17 Mar 21, 10:09pm -
        • New releases (with security fixes): Tor 0.3.5.14, 0.4.4.8, and 0.4.5.7

          New releases (with security fixes): Tor 0.3.5.14, 0.4.4.8, and 0.4.5.7

          New releases (with security fixes): Tor 0.3.5.14, 0.4.4.8, and 0.4.5.7 nickmMarch 16, 2021 We have a new stable release today. If you build Tor from source, you can download the source code for 0.4.5.7 on the do…
          - 16 Mar 21, 1:10pm -
        • How to contribute to the Tor metrics timeline

          How to contribute to the Tor metrics timeline

          How to contribute to the Tor metrics timelinedcfMarch 12, 2021 The metrics timeline is a database of news and events that may affect Tor Metrics graphs. This post is about how you can contribute to the timeline and help keep it up to d…
          - 12 Mar 21, 11:05pm -
        • New Release: Tor Browser 10.0.13 (Linux Only)

          New Release: Tor Browser 10.0.13 (Linux Only)

          New Release: Tor Browser 10.0.13 (Linux Only) sysrqbMarch 03, 2021 Tor Browser 10.0.13 for Linux is now available from the Tor Browser download page and also from our distribution directory.This version fixes i…
          - 4 Mar 21, 12:08am -
        • New Release: OnionShare 2.3

          New Release: OnionShare 2.3

          New Release: OnionShare 2.3 micahFebruary 25, 2021 This post was originally published on Micah Lee's blog.After a ridiculously long sixteen months (or roughly ten years in pandemic time) I'm excited to announce…
          - 26 Feb 21, 1:10am -
        • Learning more about our users

          Learning more about our users

          Learning more about our users duncanFebruary 24, 2021 At the Tor Project we practice user-centered design. This means we put our users at the heart of our development process, making a conscious effort to unders…
          - 24 Feb 21, 6:54pm -
        • New Release: Tor Browser 10.5a11

          New Release: Tor Browser 10.5a11

          New Release: Tor Browser 10.5a11 gkFebruary 24, 2021 Tor Browser 10.5a11 is now available from the Tor Browser Alpha download page and also from our distribution directory.Note: This is an alpha release, an exp…
          - 24 Feb 21, 12:26pm -
        • New Release: Tor Browser 10.0.12

          New Release: Tor Browser 10.0.12

          New Release: Tor Browser 10.0.12 sysrqbFebruary 23, 2021 Tor Browser 10.0.12 is now available from the Tor Browser download page and also from our distribution directory.This version updates Desktop Firefox to…
          - 23 Feb 21, 8:09pm -
        • New Release: Tor 0.4.5.6

          New Release: Tor 0.4.5.6

          New Release: Tor 0.4.5.6 nickmFebruary 15, 2021 After months of work, we have a new stable release series! If you build Tor from source, you can download the source code for 0.4.5.6 on the download page. Package…
          - 15 Feb 21, 6:05pm -
        • Bug Smash Fund, Year 2: Progress So Far!

          Bug Smash Fund, Year 2: Progress So Far!

          Bug Smash Fund, Year 2: Progress So Far! Al SmithFebruary 12, 2021 Last August, we asked you to help us fundraise during our second annual Bug Smash Fund campaign. This fund is designed to grow a healthy reserve…
          - 12 Feb 21, 6:50pm -
        • Anonymous GitLab Ticketing: An Exciting New Project at Tor

          Anonymous GitLab Ticketing: An Exciting New Project at Tor

          Anonymous GitLab Ticketing: An Exciting New Project at Tor Maria ViolanteFebruary 09, 2021 Hi! My name is Maria Violante, and I’m one of two Outreachy interns for Tor Project for Winter 2020/2021. I’m thril…
          - 9 Feb 21, 3:40pm -

        The TOR Blog Comments

        • New Release: Tor Browser 11.0a2

          New Release: Tor Browser 11.0a2

          New Release: Tor Browser 11.0a2 sysrqbJuly 20, 2021 Tor Browser 11.0a2 is now available from the Tor Browser download page and also from our distribution directory.Note: This is an alpha release, an experimenta…
          - 6 days ago 20 Jul 21, 7:38pm -
        • New Release: Tor Browser 10.5.3 (Android)

          New Release: Tor Browser 10.5.3 (Android)

          New Release: Tor Browser 10.5.3 (Android) sysrqbJuly 20, 2021 Tor Browser 10.5.3 is now available from the Tor Browser download page and also from our distribution directory.This version updates Firefox to 90.1…
          - 6 days ago 20 Jul 21, 7:31pm -
        • Bug Smash Fund, Year 2: Progress Since February 2021

          Bug Smash Fund, Year 2: Progress Since February 2021

          Bug Smash Fund, Year 2: Progress Since February 2021 Al SmithJuly 13, 2021 Last August, we asked you to help us fundraise during our second annual Bug Smash Fund campaign. This fund is designed to grow a healthy…
          - 13 days ago 13 Jul 21, 9:50pm -
        • New Release: Tor Browser 10.5.2 (Windows, macOS, Linux)

          New Release: Tor Browser 10.5.2 (Windows, macOS, Linux)

          New Release: Tor Browser 10.5.2 (Windows, macOS, Linux) sysrqbJuly 13, 2021 Tor Browser 10.5.2 is now available from the Tor Browser download page and also from our distribution directory.This version updates F…
          - 13 days ago 13 Jul 21, 7:22pm -
        • New Release: Tails 4.20

          New Release: Tails 4.20

          New Release: Tails 4.20 TailsJuly 13, 2021 Tor Connection assistantTails 4.20 completely changes how to connect to the Tor network from Tails.After connecting to a local network, a Tor Connection assistant hel…
          - 14 days ago 13 Jul 21, 12:16pm -
        • New Release: Tor Browser 11.0a1 (Android Only)

          New Release: Tor Browser 11.0a1 (Android Only)

          New Release: Tor Browser 11.0a1 (Android Only) sysrqbJuly 12, 2021 Tor Browser 11.0a1 is now available from the Tor Browser download page and also from our distribution directory.Note: This is an alpha release,…
          - 14 days ago 12 Jul 21, 7:26pm -
        • Transparency, Openness, and Our 2020 Financials

          Transparency, Openness, and Our 2020 Financials

          Transparency, Openness, and Our 2020 Financials Al SmithJuly 09, 2021 Every year, as required by U.S. federal law for 501(c)(3) nonprofits, the Tor Project completes a Form 990, and as required by contractual ob…
          - 17 days ago 9 Jul 21, 5:00pm -
        • Announcing Arti, a pure-Rust Tor implementation

          Announcing Arti, a pure-Rust Tor implementation

          Announcing Arti, a pure-Rust Tor implementation nickmJuly 08, 2021 Greetings!Today I'm happy to announce a new era in Tor implementation.Over the past year or so, we've been working on "Arti", a project to rew…
          - 18 days ago 8 Jul 21, 3:48pm -
        • New Release: Tor Browser 10.5.1 (Android Only)

          New Release: Tor Browser 10.5.1 (Android Only)

          New Release: Tor Browser 10.5.1 (Android Only) sysrqbJuly 07, 2021 Tor Browser 10.5.1 is now available from the Tor Browser download page and also from our distribution directory.This version is a bugfix for An…
          - 19 days ago 7 Jul 21, 5:27pm -
        • New Release: Tor Browser 10.5

          New Release: Tor Browser 10.5

          New Release: Tor Browser 10.5 AntonelaJuly 06, 2021 Tor Browser 10.5 is now available from the Tor Browser download page and also from our distribution directory.This new Tor Browser release is focused on impro…
          - 20 days ago 6 Jul 21, 4:56pm -
        • New stable release: Tor 0.4.6.6

          New stable release: Tor 0.4.6.6

          New stable release: Tor 0.4.6.6 nickmJune 30, 2021 We have a new stable release today. If you build Tor from source, you can download the source code for 0.4.6.6 on the download page.Tor 0.4.6.6 makes several s…
          - 26 days ago 30 Jun 21, 4:14pm -
        • New Release: Tor Browser 10.5a17

          New Release: Tor Browser 10.5a17

          New Release: Tor Browser 10.5a17 sysrqbJune 28, 2021 Tor Browser 10.5a17 is now available from the Tor Browser download page and also from our distribution directory.Note: This is an alpha release, an experimen…
          - 28 days ago 28 Jun 21, 10:33pm -
        • Improving the user experience of connecting to Tor in Tor Browser 10.5

          Improving the user experience of connecting to Tor in Tor Browser 10.5

          Improving the user experience of connecting to Tor in Tor Browser 10.5 AntonelaJune 24, 2021 During the past few years, the UX team has been working on qualitatively improving the entire Tor Browser user journey…
          - 32 days ago 24 Jun 21, 1:53pm -
        • New Release: Tor Browser 10.0.18

          New Release: Tor Browser 10.0.18

          New Release: Tor Browser 10.0.18 sysrqbJune 21, 2021 Tor Browser 10.0.18 is now available from the Tor Browser download page and also from our distribution directory.This version updates Tor to 0.4.5.9, includi…
          - 35 days ago 21 Jun 21, 2:00pm -
        • Internet Freedom, Privacy, & LGBTQIA+ Human Rights

          Internet Freedom, Privacy, & LGBTQIA+ Human Rights

          Internet Freedom, Privacy, & LGBTQIA+ Human Rights Al SmithJune 14, 2021 Every June, we recognize Pride month because internet freedom and the human rights of LGBTQIA+ people go hand in hand.LGBTQIA+ people hav…
          - 42 days ago 14 Jun 21, 5:14pm -
        • New stable security releases: 0.3.5.15, 0.4.4.9, 0.4.5.9, 0.4.6.5

          New stable security releases: 0.3.5.15, 0.4.4.9, 0.4.5.9, 0.4.6.5

          New stable security releases: 0.3.5.15, 0.4.4.9, 0.4.5.9, 0.4.6.5 nickmJune 14, 2021 After months of work, we have a new stable release series! If you build Tor from source, you can download the source code for…
          - 42 days ago 14 Jun 21, 3:35pm -
        • New Release: Tor Browser 10.5a16

          New Release: Tor Browser 10.5a16

          New Release: Tor Browser 10.5a16 sysrqbJune 11, 2021 Tor Browser 10.5a16 is now available from the Tor Browser download page and also from our distribution directory.Note: This is an alpha release, an experimen…
          - 45 days ago 11 Jun 21, 1:59pm -
        • Snowflake moving to stable in Tor Browser 10.5

          Snowflake moving to stable in Tor Browser 10.5

          Snowflake moving to stable in Tor Browser 10.5 cohoshJune 08, 2021 We're excited to announce that Snowflake will be shipped as one of the default bridge options with stable versions of Tor Browser later this mon…
          - 48 days ago 8 Jun 21, 2:24pm -
        • New Release: Tor Browser 10.0.17

          New Release: Tor Browser 10.0.17

          New Release: Tor Browser 10.0.17 sysrqbJune 02, 2021 Tor Browser 10.0.17 is now available from the Tor Browser download page and also from our distribution directory.This version updates Firefox to 78.11esr. In…
          - 54 days ago 2 Jun 21, 4:17pm -
        • Dreaming at Dusk: the Tor Project’s NFT Auction & What’s Next

          Dreaming at Dusk: the Tor Project’s NFT Auction & What’s Next

          Dreaming at Dusk: the Tor Project’s NFT Auction & What’s Next Al SmithMay 28, 2021 In mid-May, the Tor Project held a nonfungible token (NFT) auction of a generative art piece we called Dreaming at Dusk, cre…
          - 59 days ago 28 May 21, 4:54pm -
        • New release candidate: Tor 0.4.6.4-rc

          New release candidate: Tor 0.4.6.4-rc

          New release candidate: Tor 0.4.6.4-rc nickmMay 28, 2021 There's a new release candidate available for download. If you build Tor from source, you can download the source code for 0.4.6.4-rc from the download pag…
          - 59 days ago 28 May 21, 4:28pm -
        • Announcing new Board members

          Announcing new Board members

          Announcing new Board members isabelaMay 26, 2021 We are excited to announce that three new members are joining the Tor Project’s Board of Directors: Alissa Cooper, Desigan (Dees) Chinniah, and Kendra Albert! E…
          - 61 days ago 26 May 21, 4:57pm -
        • Dreaming At Dusk

          Dreaming At Dusk

          Dreaming At Dusk rootMay 13, 2021   The first star of a dying galaxy. Curves taking over while bits dream at dusk. Welcome to the onion space. We've been here since 2004, and we grow every day. In a fe…
          - 74 days ago 13 May 21, 7:40pm -
        • New release: Tor 0.4.5.8

          New release: Tor 0.4.5.8

          New release: Tor 0.4.5.8 nickmMay 10, 2021 We have a new stable release today. If you build Tor from source, you can download the source code for Tor 0.4.5.8 on the download page. Packages should be available wi…
          - 77 days ago 10 May 21, 2:50pm -
        • New release candidate: Tor 0.4.6.3-rc

          New release candidate: Tor 0.4.6.3-rc

          New release candidate: Tor 0.4.6.3-rc nickmMay 10, 2021 There's a new release candidate available for download. If you build Tor from source, you can download the source code for Tor 0.4.6.3-rc from the download…
          - 77 days ago 10 May 21, 2:46pm -
        • Check the status of Tor services with status.torproject.org

          Check the status of Tor services with status.torproject.org

          Check the status of Tor services with status.torproject.org anarcatMay 05, 2021 The Tor Project now has a status page which shows the state of our major services.You can check status.torproject for news about m…
          - 82 days ago 5 May 21, 2:33pm -
        • Defend Dissent with Tor

          Defend Dissent with Tor

          Defend Dissent with Tor GusApril 27, 2021 Guest post by Glencora BorradaileAfter 4 years of giving digital security trainings to activists and teaching a course called "Communications Security and Social Moveme…
          - 91 days ago 27 Apr 21, 8:23am -
        • New Release: Tor Browser 10.5a15

          New Release: Tor Browser 10.5a15

          New Release: Tor Browser 10.5a15 sysrqbApril 26, 2021 Tor Browser 10.5a15 is now available from the Tor Browser download page and also from our distribution directory.Note: This is an alpha release, an experime…
          - 91 days ago 27 Apr 21, 2:13am -
        • Domain Shadowing: Leveraging CDNs for Robust Blocking-Resistant Communications

          Domain Shadowing: Leveraging CDNs for Robust Blocking-Resistant Communications

          Domain Shadowing: Leveraging CDNs for Robust Blocking-Resistant Communications Mingkui WeiApril 22, 2021 We invited guest blog author, Mingkui Wei, to submit a summary of their research to the blog this week. Th…
          - 95 days ago 23 Apr 21, 1:04am -
        • New Release: Tor Browser 10.0.16

          New Release: Tor Browser 10.0.16

          New Release: Tor Browser 10.0.16 sysrqbApril 20, 2021 Tor Browser 10.0.16 is now available from the Tor Browser download page and also from our distribution directory.This version updates Firefox to 78.10esr an…
          - 97 days ago 20 Apr 21, 3:59pm -
        • New Alpha Release: Tor 0.4.6.2-alpha
          New Alpha Release: Tor 0.4.6.2-alphanickmApril 15, 2021 There's a new alpha release available for download. If you build Tor from source, you can download the source code for 0.4.6.2-alpha from the download page on the website. Package…
          - 15 Apr 21, 12:11pm -
        • New Release: Tor Browser 10.5a14

          New Release: Tor Browser 10.5a14

          New Release: Tor Browser 10.5a14 sysrqbApril 13, 2021 Tor Browser 10.5a14 is now available from the Tor Browser Alpha download page and also from our distribution directory.Note: This is an alpha release, an ex…
          - 14 Apr 21, 12:50am -
        • New Release: Tor Browser 10.5a13

          New Release: Tor Browser 10.5a13

          New Release: Tor Browser 10.5a13 sysrqbApril 05, 2021 Tor Browser 10.5a13 is now available from the Tor Browser Alpha download page and also from our distribution directory.Note: This is an alpha release, an ex…
          - 5 Apr 21, 1:58pm -
        • New Release: Tor Browser 10.0.15

          New Release: Tor Browser 10.0.15

          New Release: Tor Browser 10.0.15 sysrqbMarch 27, 2021 Update: 9 April 2021: Android Tor Browser 10.0.15 is now available.Tor Browser 10.0.15 is now available from the Tor Browser download page and also from our…
          - 28 Mar 21, 2:11am -
        • Onionize your Workflow with the Onion Guide Fanzine

          Onionize your Workflow with the Onion Guide Fanzine

          Onionize your Workflow with the Onion Guide Fanzine GabaMarch 27, 2021 At the Tor Project, we build technologies that allow anybody to access the Internet privately. We maintain the software that runs the Tor ne…
          - 27 Mar 21, 10:04pm -
        • New Release: Tor Browser 10.0.14

          New Release: Tor Browser 10.0.14

          New Release: Tor Browser 10.0.14 sysrqbMarch 24, 2021 Tor Browser 10.0.14 is now available from the Tor Browser download page and also from our distribution directory.This version updates Desktop Firefox to 78.…
          - 24 Mar 21, 9:05pm -
        • Get a TLS certificate for your onion site

          Get a TLS certificate for your onion site

          Get a TLS certificate for your onion site isabelaMarch 24, 2021 We are happy to share the news of another important milestone for .onion services! You can now get DV certificates for your v3 onion site using HAR…
          - 24 Mar 21, 4:58pm -
        • New Release: Tor Browser 10.5a12 (Android Only)

          New Release: Tor Browser 10.5a12 (Android Only)

          New Release: Tor Browser 10.5a12 (Android Only) sysrqbMarch 21, 2021 Tor Browser 10.5a12 is now available from the Tor Browser Alpha download page and also from our distribution directory.Note: This is an alpha…
          - 21 Mar 21, 4:27pm -
        • New Alpha Release: Tor 0.4.6.1-alpha

          New Alpha Release: Tor 0.4.6.1-alpha

          New Alpha Release: Tor 0.4.6.1-alpha nickmMarch 18, 2021 There's a new alpha release available for download. If you build Tor from source, you can download the source code for 0.4.6.1-alpha from the download pag…
          - 18 Mar 21, 5:53pm -
        • Sign now: European initiative for a ban on biometric mass surveillance

          Sign now: European initiative for a ban on biometric mass surveillance

          Sign now: European initiative for a ban on biometric mass surveillance Matthias MarxMarch 17, 2021 The “Reclaim Your Face” coalition has launched a European Citizens’ Initiative for a ban on biometric mas…
          - 17 Mar 21, 10:09pm -
        • New releases (with security fixes): Tor 0.3.5.14, 0.4.4.8, and 0.4.5.7

          New releases (with security fixes): Tor 0.3.5.14, 0.4.4.8, and 0.4.5.7

          New releases (with security fixes): Tor 0.3.5.14, 0.4.4.8, and 0.4.5.7 nickmMarch 16, 2021 We have a new stable release today. If you build Tor from source, you can download the source code for 0.4.5.7 on the do…
          - 16 Mar 21, 1:10pm -
        • How to contribute to the Tor metrics timeline

          How to contribute to the Tor metrics timeline

          How to contribute to the Tor metrics timelinedcfMarch 12, 2021 The metrics timeline is a database of news and events that may affect Tor Metrics graphs. This post is about how you can contribute to the timeline and help keep it up to d…
          - 12 Mar 21, 11:05pm -
        • New Release: Tor Browser 10.0.13 (Linux Only)

          New Release: Tor Browser 10.0.13 (Linux Only)

          New Release: Tor Browser 10.0.13 (Linux Only) sysrqbMarch 03, 2021 Tor Browser 10.0.13 for Linux is now available from the Tor Browser download page and also from our distribution directory.This version fixes i…
          - 4 Mar 21, 12:08am -
        • New Release: OnionShare 2.3

          New Release: OnionShare 2.3

          New Release: OnionShare 2.3 micahFebruary 25, 2021 This post was originally published on Micah Lee's blog.After a ridiculously long sixteen months (or roughly ten years in pandemic time) I'm excited to announce…
          - 26 Feb 21, 1:10am -
        • Learning more about our users

          Learning more about our users

          Learning more about our users duncanFebruary 24, 2021 At the Tor Project we practice user-centered design. This means we put our users at the heart of our development process, making a conscious effort to unders…
          - 24 Feb 21, 6:54pm -
        • New Release: Tor Browser 10.5a11

          New Release: Tor Browser 10.5a11

          New Release: Tor Browser 10.5a11 gkFebruary 24, 2021 Tor Browser 10.5a11 is now available from the Tor Browser Alpha download page and also from our distribution directory.Note: This is an alpha release, an exp…
          - 24 Feb 21, 12:26pm -
        • New Release: Tor Browser 10.0.12

          New Release: Tor Browser 10.0.12

          New Release: Tor Browser 10.0.12 sysrqbFebruary 23, 2021 Tor Browser 10.0.12 is now available from the Tor Browser download page and also from our distribution directory.This version updates Desktop Firefox to…
          - 23 Feb 21, 8:09pm -
        • New Release: Tor 0.4.5.6

          New Release: Tor 0.4.5.6

          New Release: Tor 0.4.5.6 nickmFebruary 15, 2021 After months of work, we have a new stable release series! If you build Tor from source, you can download the source code for 0.4.5.6 on the download page. Package…
          - 15 Feb 21, 6:05pm -
        • Bug Smash Fund, Year 2: Progress So Far!

          Bug Smash Fund, Year 2: Progress So Far!

          Bug Smash Fund, Year 2: Progress So Far! Al SmithFebruary 12, 2021 Last August, we asked you to help us fundraise during our second annual Bug Smash Fund campaign. This fund is designed to grow a healthy reserve…
          - 12 Feb 21, 6:50pm -
        • Anonymous GitLab Ticketing: An Exciting New Project at Tor

          Anonymous GitLab Ticketing: An Exciting New Project at Tor

          Anonymous GitLab Ticketing: An Exciting New Project at Tor Maria ViolanteFebruary 09, 2021 Hi! My name is Maria Violante, and I’m one of two Outreachy interns for Tor Project for Winter 2020/2021. I’m thril…
          - 9 Feb 21, 3:40pm -

        Cyber Punk

        • Automated Dynamic Application Penetration Testing: ADAPT

          Automated Dynamic Application Penetration Testing: ADAPT

             ADAPT is a tool that performs Automated Dynamic Application Penetration Testing for web applications. It is designed to increase accuracy, speed, and confidence in penetration testing efforts....
          - 5 Mar 19, 9:51pm -
        • Scalable Fuzzing Infrastructure: ClusterFuzz

          Scalable Fuzzing Infrastructure: ClusterFuzz

             ClusterFuzz is a scalable fuzzing infrastructure which finds security and stability issues in software. It is used by Google for fuzzing the Chrome Browser, and serves as the fuzzing backend for...
          - 21 Feb 19, 3:51am -
        • Target Reconnaissance Framework: Pown Recon

          Target Reconnaissance Framework: Pown Recon

              Pown Recon is a target reconnaissance framework powered by graph theory. The benefit of using graph theory instead of flat table representation is that it is easier to find the relationships...
          - 21 Feb 19, 3:32am -
        • Post-Exploitation Framework for Linux Written in Bash: Orc

          Post-Exploitation Framework for Linux Written in Bash: Orc

             Orc is a simple post-exploitation written in bash. I wrote this because I myself needed a more featureful post-exploitation toolkit for Linux. It’s part of a larger bundle of scripts and...
          - 21 Feb 19, 3:15am -
        • Securely and Anonymously Send and Receive Files: OnionShare

          Securely and Anonymously Send and Receive Files: OnionShare

             OnionShare is an open source tool for securely and anonymously sending and receiving files using Tor onion services. It works by starting a web server directly on your computer and making it...
          - 20 Feb 19, 4:28pm -
        • Flexible and Powerful Reverse Proxy: Modlishka

          Flexible and Powerful Reverse Proxy: Modlishka

          Modlishka is a flexible and powerful reverse proxy, that will take your phishing campaigns to the next level.It was realeased with an aim to:help penetration testers to carry out an effective...
          - 22 Jan 19, 3:47am -
        • A Framework for Secure and Scalable Network Traffic Analysis: Netcap

          A Framework for Secure and Scalable Network Traffic Analysis: Netcap

             The Netcap (NETwork CAPture) framework efficiently converts a stream of network packets into highly accessible type-safe structured data that represent specific protocols or custom abstractions....
          - 22 Jan 19, 3:21am -
        • Phishing Campaign Toolkit: King Phisher

          Phishing Campaign Toolkit: King Phisher

             King Phisher is a tool for testing and promoting user awareness by simulating real world phishing attacks. It features an easy to use, yet very flexible architecture allowing full control over...
          - 20 Dec 18, 3:50pm -
        • Framework for Rogue Wi-Fi Access Point Attack: WiFi-Pumpkin

          Framework for Rogue Wi-Fi Access Point Attack: WiFi-Pumpkin

             The WiFi-Pumpkin is a rogue AP framework to easily create these fake networks, all while forwarding legitimate traffic to and from the unsuspecting target. It comes stuffed with features,...
          - 12 Dec 18, 5:20am -
        • A Post-Exploitation Scanning/Mapping Tool: Scavenger

          A Post-Exploitation Scanning/Mapping Tool: Scavenger

             SCAVENGER is a multi-threaded post-exploitation scanning tool for mapping systems and finding “interesting” and most frequently used files, folders and services. Once credentials are...
          - 10 Dec 18, 1:26am -
        • Kernel-Mode Rootkit Hunter: Tyton

          Kernel-Mode Rootkit Hunter: Tyton

             Loadable kernel modules, LKMs for short, are an integral companion to the Linux kernel. Typically, LKMs are used to add support for new hardware (as device drivers) or file systems or add...
          - 3 Dec 18, 11:15pm -
        • Tools for capturing and analyzing keyboard input paired with microphone capture

          Tools for capturing and analyzing keyboard input paired with microphone capture

             The main goal is to exploit the sound produced by pressing keyboard keys as a side channel in order to guess the content of the text being typed. To achieve this, the algorithm takes as input a...
          - 3 Dec 18, 10:59pm -

        Bot24

        Talos by Cisco

        • How Adversaries Use Politics for Compromise
          Cisco Talos recently discovered several malware distribution campaigns where the adversaries were utilizing the names and likenesses of several prominent political figures.
          - 5 Nov 19, 3:59pm -
        • C2 With It All: From Ransomware To Carding
            Cisco Talos recently discovered a new server hosting a large stockpile of malicious files. Our analysis of these files shows that these attackers were able to obtain a deep...
          - 4 Nov 19, 4:03pm -
        • Threat Roundup for October 25 to November 1

          Threat Roundup for October 25 to  November 1

          Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Oct 25 and Nov 1. As...
          - 1 Nov 19, 5:31pm -
        • The commoditization of mobile espionage software
          Mobile stalkerware has all sorts of wide-ranging consequences. The creators of these types of apps can track user's locations, see their social media usage and more. And they certainly open...
          - 30 Oct 19, 4:06pm -
        • Threat Roundup for October 18 to October 25

          Threat Roundup for October 18 to  October 25

          Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Oct 18 and Oct 25. As...
          - 25 Oct 19, 4:32pm -
        • Gustuff return, new features for victims
          The Gustuff banking trojan is back with new features, months after initially appearing targeting financial institutions in Australia. Cisco Talos first reported on Gustuff in April. Soon after, the actors behind...
          - 21 Oct 19, 2:48pm -
        • Threat Roundup for October 11 to October 18

          Threat Roundup for October 11 to  October 18

          Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Oct 11 and Oct 18. As...
          - 18 Oct 19, 4:44pm -
        • Checkrain fake iOS jailbreak leads to click fraud
          Attackers are capitalizing on the recent discovery of a new vulnerability that exists across legacy iOS hardware. Cisco Talos recently discovered a malicious actor using a fake website that claims...
          - 15 Oct 19, 8:33am -
        • Threat Roundup for October 4 to October 11

          Threat Roundup for October 4 to  October 11

          Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Oct 4 and Oct 11. As...
          - 11 Oct 19, 3:45pm -
        • New IDA Pro plugin provides TileGX support
          Cisco Talos has a new plugin available for IDA Pro that provides a new disassembler for TileGX binaries. This tool should assist researchers in reverse-engineering threats in IDA Pro that...
          - 11 Oct 19, 9:26am -

        More Links on Threat Intelligence

        Tweets for Threat Intel