Qealler — The Silent Java Credential Thief

Qealler is a new type of malware that CyberArk Labs recently detected in a spam campaign targeting corporate mailboxes in the UK. At first sight, it looks to be a simple, harmless file that can…

Execute This, I Know You Have It

A Local File Inclusion in Kibana allows attackers to run local JavaScript files Introduction As organizations flock to Elastic’s open source Elasticsearch to search and analyze massive amounts of data, many are utilizing the Kibana…