• Follow Us

Locked Dorr Security

  • Home
    • Newsletter
    • Locked Dorr Security Blog
  • Cyber News
    • Latest Cyber News and Breaches
    • Latest Malware
    • Latest in Scada and Industrial Control
  • Useful Links and How To Posts
    • Staying Up to Date with Cyber
    • Virtulization
      • Set up a “Host Only” Malware Testing Environment in esxi
      • Setting up ProxMox on a Trunk with multiple Interfaces
      • Import vmdk Virtual Disk from OVF into ProxMox
      • Setting Up a SPAN and Linux Bridge for a Network Sensor
    • Remote Management
      • Gl-iNet Travel Router with Wireguard
      • Guacamole Server for Clientless RDP/VNC Access
      • SSH login with Keys: Login without a Password
      • Lab Management with Portainer with DashMachine
    • Linux
      • Managing Linux Firewalls
    • pfSense and Hosting Web Services
      • SSL Offloading with HA Proxy on pfSense
      • Using Cloudflare with Namecheap DNS & Web-hosting Services and pfSense HA Proxy
    • Protecting Network Traffic with Wireguard or VPNs
      • Protecting your network traffic with Wireguard
      • Adding HA Proxy with Wireguard to proxy Network Traffic to pfSense
    • Install Arkime for conducting PCAP Analysis
    • Install Elastiflow Server on Ubuntu 20.04.1 LTS
    • Shutdown multiple Docker Images Gracefully
    • Updating my CTFd Docker Container with local git clones Repositories
    • Useful Links and How To Posts
  • Defensive Cyber
    • Scanning Techniques with NMAP
    • Packet Analysis with Magic Shark
    • Packet Analysis with tshark
    • Packet Analysis with Data Science
  • Hacktivities
    • RouterSpace Write-up on HTB
  • Docs
  • Home
    • - Newsletter
    • - Locked Dorr Security Blog
  • Cyber News
    • - Latest Cyber News and Breaches
    • - Latest Malware
    • - Latest in Scada and Industrial Control
  • Useful Links and How To Posts
    • - Staying Up to Date with Cyber
    • - Virtulization
      • - - Set up a “Host Only” Malware Testing Environment in esxi
      • - - Setting up ProxMox on a Trunk with multiple Interfaces
      • - - Import vmdk Virtual Disk from OVF into ProxMox
      • - - Setting Up a SPAN and Linux Bridge for a Network Sensor
    • - Remote Management
      • - - Gl-iNet Travel Router with Wireguard
      • - - Guacamole Server for Clientless RDP/VNC Access
      • - - SSH login with Keys: Login without a Password
      • - - Lab Management with Portainer with DashMachine
    • - Linux
      • - - Managing Linux Firewalls
    • - pfSense and Hosting Web Services
      • - - SSL Offloading with HA Proxy on pfSense
      • - - Using Cloudflare with Namecheap DNS & Web-hosting Services and pfSense HA Proxy
    • - Protecting Network Traffic with Wireguard or VPNs
      • - - Protecting your network traffic with Wireguard
      • - - Adding HA Proxy with Wireguard to proxy Network Traffic to pfSense
    • - Install Arkime for conducting PCAP Analysis
    • - Install Elastiflow Server on Ubuntu 20.04.1 LTS
    • - Shutdown multiple Docker Images Gracefully
    • - Updating my CTFd Docker Container with local git clones Repositories
    • - Useful Links and How To Posts
  • Defensive Cyber
    • - Scanning Techniques with NMAP
    • - Packet Analysis with Magic Shark
    • - Packet Analysis with tshark
    • - Packet Analysis with Data Science
  • Hacktivities
    • - RouterSpace Write-up on HTB
  • Docs

Latest Malware

  • Microsoft warns of GigaWiper malware with destructive capabilities – TechGig
    July 11, 2026
    Microsoft has identified a new malware named GigaWiper, linked to Iranian group CyberAv3ngers. This malware can wipe drives, encrypt files, …
  • New U-Boot flaws could enable stealthy firmware attacks – Bleeping Computer
    July 11, 2026
    Six vulnerabilities in the widely used U-Boot bootloader have been discovered that could allow attackers to execute malicious code during device …
  • Southeast Asia's scammers' new disguise: your leader's face | South China Morning Post
    July 11, 2026
    Southeast Asia's scam industry has found a powerful new weapon, and it isn't malware, cunning or even greed – it's borrowed faces.
  • ClickFix and removable media lead malware delivery methods – TechTarget
    July 11, 2026
    Malware leaderboard: March 1, 2026 – May 31, 2026 · Train users. By convincing targets to unwittingly run malicious commands on their own devices, …
  • Injective software package hit by malicious supply chain attack – Details – AMBCrypto
    July 10, 2026
    Software supply chain attacks have become more common, with attackers increasingly targeting trusted developer tools instead of end users.
  • Update Now: Critical Zimbra Classic Web Client Flaw Could Expose Mailboxes
    July 10, 2026
    Zimbra addressed a critical stored XSS vulnerability in its Classic Web Client that lets malicious emails execute code when opened.
  • Devious phishing campaign hijacks a genuine Meta business feature to send scam emails
    July 10, 2026
    Hackers are abusing one, and impersonating another legitimate Meta service, to try and steal login credentials for people's business accounts with the …
  • EDR Bypass Driver: How GodDamn Ransomware Gets In – Latest Hacking News
    July 10, 2026
    That is exactly what happened with GodDamn, a ransomware family that Broadcom's Symantec Threat Hunter Team linked to a kernel driver called PoisonX …
  • This malicious Google Notes extension just wants to sneakily steal all your crypto
    July 10, 2026
    McAfee flags “Silent Swap,” a malicious Chromium extension disguised as Google Notes that secretly hijacks crypto transactions …
  • Microsoft discovers new multi-malware package 'GigaWiper' capable of deploying wipers …
    July 10, 2026
    Microsoft warns of “GigaWiper,” a destructive malware attributed to Iranian group CyberAv3ngers that combines multiple variants into one …
  • Agentic AI widens cyber risk as attackers speed up – IT Brief Asia
    July 10, 2026
    Attackers are using agentic tools to compress breaches into days, exposing developers and cloud users to faster, harder-to-stop intrusions.
  • X-Copper legal firm says June data breach may have accessed personal information
    July 10, 2026
    Last Updated July 10, 2026 12:12 pm. There has been a data breach involving a Canadian legal firm specializing in defending against traffic tickets …
  • X-Copper legal firm says June data breach may have accessed personal information
    July 10, 2026
    … malware. “Although the malware primarily restricted our access to internal data, the forensic evidence suggests that, before encryption, the actor …
  • TheGentlemen Ransomware Attack on Ferretería Scopazzo in Argentina – DeXpose
    July 10, 2026
    Utilize immutable backup solutions to defend against ransomware encryption and deletion attempts. Apply threat intelligence: Integrate external threat …
  • Doommageddon Targets Brazilian Healthcare Facility Hospital Di Camp – DeXpose
    July 10, 2026
    Summary. On July 10, 2026, the ransomware group Doommageddon publicly claimed responsibility for a cyberattack against Hospital Di Camp …
  • This new Windows malware can take over your PC and wipe it clean – Security Boulevard
    July 10, 2026
    GigaWiper is a remote access Trojan that can spy on victims and permanently wipe their systems in three different ways.
  • New Ransomware Exploits Malicious Driver to Remove Cybersecurity Protections
    July 10, 2026
    GodDamn ransomware uses remote desktop application to secretly move around networks and drop the malicious PoisonX kernel driver.
  • New MODBEACON RAT Uses gRPC Streaming for Encrypted C2 Traffic – The Hacker News
    July 10, 2026
    China-linked Silver Fox deploys the Rust-based MODBEACON RAT through fake software installers, targeting technology, education, and state-owned …
  • CRPxO Ransomware Attack on Creative Smiles Pediatric Dentistry – DeXpose
    July 10, 2026
    Recommended Security Actions. Ransomware attacks are increasingly targeting both enterprise and mid-sized organizations across all sectors. The …
  • Threat Actor Uses Phishing to Breach Orgs for Ransomware Gangs – KnowBe4 Blog
    July 10, 2026
    A ransomware-linked initial access broker uses fake Microsoft Teams IT alerts to install a malicious Edge extension and steal credentials.
Welcome to Locked Dorr Security
  • PRIVACY POLICY
  • TERMS OF USE
  • CONTACT US