The recent LockBit ransomware breach saw attackers deface its affiliate panel and leak an SQL database, exposing victim data, negotiation tactics, and operational missteps. It explores ties to the Everest hack, LockBit’s RaaS model, and affiliate errors, offering a glimpse into the group’s vulnerabilities.
Join us as we introduce Reece, Security Blue Team’s Corporate Sales Manager, whose leadership and passion drive our sales team...
Security Blue Team is diving into red team training with a free Introduction to Penetration Testing course. Perfect for newcomers,...
We’re thrilled to introduce João Rodrigues, Security Blue Team’s Director of Web, a driving force behind the secure, seamless platforms that define our cybersecurity training experience. For those familiar with João through his pivotal work on our BTLO platform or his involvement in SBT’s CTF events, this is a fresh...
CVSS, or Common Vulnerability Scoring System, is a standardized framework used to assess and communicate the severity of software vulnerabilities. It provides a numerical score representing the vulnerability’s potential impact, helping security professionals and organizations prioritize their responses to different security threats.
The Common Vulnerability Scoring System (CVSS) is a standardized framework used to assess and quantify the severity of security vulnerabilities in software or systems. Version 4.0 of CVSS was officially released on November 1, 2023, by FIRST.
Embark on a journey into the shadows of malware persistence where malicious software meets the art of invisibility, and how a legitimate Windows feature such as IFEO becomes a weapon in the hands of crafty threat actors.
There has been a lot of talk recently about ChatGPT and its implications for a wide range of industries. Potential applications are vast, including creative design, technical writing, and programming. In this article, we will explore some of the potential applications within the realm of cybersecurity — as well as...
In this blog post, we’ll investigate the fascinating details regarding CVE-2023–47246 SysAid On-Prem Software Vulnerability and uncover how attackers are compromising endpoints. This blog will also discuss how Lace Tempest weaponizes GraceWire Loader or Turtle Loader, and how to recognize the indicators of compromise (IOCs) from active exploitation.
We’re delighted to announce exciting new partnerships with two fantastic organizations. This is part of our mission to give back to the community and support people at all stages of their cybersecurity training and career development.
