• Follow Us

Locked Dorr Security
  • Home
    • Newsletter
    • Locked Dorr Security Blog
  • Cyber News
    • Latest Cyber News and Breaches
    • Latest Malware
    • Latest in Scada and Industrial Control
  • Useful Links and How To Posts
    • Staying Up to Date with Cyber
    • Virtulization
      • Set up a “Host Only” Malware Testing Environment in esxi
      • Setting up ProxMox on a Trunk with multiple Interfaces
      • Import vmdk Virtual Disk from OVF into ProxMox
      • Setting Up a SPAN and Linux Bridge for a Network Sensor
    • Remote Management
      • Gl-iNet Travel Router with Wireguard
      • Guacamole Server for Clientless RDP/VNC Access
      • SSH login with Keys: Login without a Password
      • Lab Management with Portainer with DashMachine
    • Linux
      • Managing Linux Firewalls
    • pfSense and Hosting Web Services
      • SSL Offloading with HA Proxy on pfSense
      • Using Cloudflare with Namecheap DNS & Web-hosting Services and pfSense HA Proxy
    • Protecting Network Traffic with Wireguard or VPNs
      • Protecting your network traffic with Wireguard
      • Adding HA Proxy with Wireguard to proxy Network Traffic to pfSense
    • Install Arkime for conducting PCAP Analysis
    • Install Elastiflow Server on Ubuntu 20.04.1 LTS
    • Shutdown multiple Docker Images Gracefully
    • Updating my CTFd Docker Container with local git clones Repositories
    • Useful Links and How To Posts
  • Defensive Cyber
    • Scanning Techniques with NMAP
    • Packet Analysis with Magic Shark
    • Packet Analysis with tshark
    • Packet Analysis with Data Science
  • Hacktivities
    • RouterSpace Write-up on HTB
  • Docs
  • Home
    • - Newsletter
    • - Locked Dorr Security Blog
  • Cyber News
    • - Latest Cyber News and Breaches
    • - Latest Malware
    • - Latest in Scada and Industrial Control
  • Useful Links and How To Posts
    • - Staying Up to Date with Cyber
    • - Virtulization
      • - - Set up a “Host Only” Malware Testing Environment in esxi
      • - - Setting up ProxMox on a Trunk with multiple Interfaces
      • - - Import vmdk Virtual Disk from OVF into ProxMox
      • - - Setting Up a SPAN and Linux Bridge for a Network Sensor
    • - Remote Management
      • - - Gl-iNet Travel Router with Wireguard
      • - - Guacamole Server for Clientless RDP/VNC Access
      • - - SSH login with Keys: Login without a Password
      • - - Lab Management with Portainer with DashMachine
    • - Linux
      • - - Managing Linux Firewalls
    • - pfSense and Hosting Web Services
      • - - SSL Offloading with HA Proxy on pfSense
      • - - Using Cloudflare with Namecheap DNS & Web-hosting Services and pfSense HA Proxy
    • - Protecting Network Traffic with Wireguard or VPNs
      • - - Protecting your network traffic with Wireguard
      • - - Adding HA Proxy with Wireguard to proxy Network Traffic to pfSense
    • - Install Arkime for conducting PCAP Analysis
    • - Install Elastiflow Server on Ubuntu 20.04.1 LTS
    • - Shutdown multiple Docker Images Gracefully
    • - Updating my CTFd Docker Container with local git clones Repositories
    • - Useful Links and How To Posts
  • Defensive Cyber
    • - Scanning Techniques with NMAP
    • - Packet Analysis with Magic Shark
    • - Packet Analysis with tshark
    • - Packet Analysis with Data Science
  • Hacktivities
    • - RouterSpace Write-up on HTB
  • Docs

Latest Malware

  • Cisco Talos identifies surge in Qilin ransomware attacks, with manufacturing sector hit …
    October 30, 2025
    New Cisco Talos data shows that in the second half of 2025, the ransomware group Qilin continued publishing victim information on its leak site at …
  • Diplomatic entities in Belgium and Hungary hacked in China-linked spy campaign
    October 30, 2025
    The malware has been used in attacks since 2008 and remains a popular … The latest version has been streamlined significantly, maintaining …
  • New Windows-Based Airstalk Malware Employs Multi-Threaded C2 Communication to Steal Logins
    October 30, 2025
    New Windows malware “Airstalk” steals browser data via hijacked AirWatch API, using MDM systems as covert command channels.
  • CEO of Spyware company confirms govt customers are still using outdated malware
    October 30, 2025
    Kaspersky, the Russian-founded cybersecurity firm, has revealed in a recent study that a government client was still deploying spyware to monitor …
  • Threat Actors Utilize AdaptixC2 for Malicious Payload Delivery – Infosecurity Magazine
    October 30, 2025
    Its deployment accelerated shortly after new detection signatures were released, linking it to CountLoader, a malware loader first highlighted in …
  • Ransomware gang claims Conduent breach: what you should watch for next – Malwarebytes
    October 30, 2025
    Even if you've never heard of Conduent, you could be one of the many people caught up in its recent data breach. Conduent provides technology …
  • Rapid7 warns of new AI and quantum cyber risks | SC Media
    October 30, 2025
    … malware, and launch personalized phishing campaigns. The firm also cautions that quantum computing could soon render current encryption systems …
  • PhantomRaven Attack Involves 126 Malicious npm Packages with Over … – Cyber Security News
    October 30, 2025
    PhantomRaven malware hits developers via 126 npm packages with 86K+ … Latest news. PolarEdge Botnet Infected 25,000+ Devices and 140 C2 …
  • CISA Shares New Threat Detections for Actively Exploited WSUS Vulnerability
    October 30, 2025
    Attackers craft malicious SOAP requests containing base64-encoded payloads, encrypted with AES-128-CBC, which bypass validation and trigger code …
  • New Malware Targeting WooCommerce Sites with Malicious Plugins Steals Credit Card Data
    October 30, 2025
    Advanced malware targets WooCommerce sites, stealing payment data via rogue plugins using encryption, fake images, and hidden backdoors.
  • npm hit by PhantomRaven supply chain attack – The Register
    October 30, 2025
    A new supply chain attack dubbed PhantomRaven has flooded the npm registry with malicious packages that steal credentials, tokens, …
  • Threat Actors Weaponizing Open Source AdaptixC2 Tied to Russian Underworld
    October 30, 2025
    Silent Push last month reported detecting a new malware loader called CountLoader that is associated with Russian ransomware gangs and was observed …
  • 28% of Irish businesses risk closure with one ransomware attack
    October 30, 2025
    More than a quarter (28%) of businesses would be at risk of shutting down after one ransomware attack, the latest Vodafone Business Cybersecurity …
  • Hackers are using these malicious npm packages to target developers Windows, macOS …
    October 30, 2025
    Security experts have issued an alert after ten malicious npm packages were found to deliver infostealer malware across Windows, Linux, …
  • Russian Hackers Exploit Adaptix Pentesting Tool in Ransomware Attacks – Hackread
    October 30, 2025
    The investigation began when Silent Push researchers were tracking a new malware loader called CountLoader. During that work, they noticed Adaptix …
  • The latest Steam beta adds 'a suspicious chat warning' when you receive a potentially … – PC Gamer
    October 30, 2025
    Players can emulate others through similar profile pictures or usernames, so it's not out of the question to think bad actors could fake credentials …
  • ThreatsDay Bulletin: DNS Poisoning Flaw, Supply-Chain Heist, Rust Malware Trick and New …
    October 30, 2025
    Threat actors refine tactics with DNS attacks, new RATs, and Rust-based malware. Stay ahead with this week's top ThreatsDay intelligence brief.
  • Resistance to Google's Android verification grows among developers – Techzine Global
    October 30, 2025
    The open letter also emphasizes that the registration requirement could have consequences for digital sovereignty and free software development.
  • Talk about geriatric – This devious Android malware escapes detection by typing like an old person
    October 30, 2025
    Herodotus. Security researchers Threat Fabric recently discovered a brand new Android malware, named after the famous Greek historian, that includes a …
  • Microsoft: DNS outage impacts Azure and Microsoft 365 services – Bleeping Computer
    October 30, 2025
    Microsoft is suffering an ongoing DNS outage affecting customers worldwide, preventing them from logging into company networks and accessing …
Welcome to Locked Dorr Security
  • PRIVACY POLICY
  • TERMS OF USE
  • CONTACT US