Vulnerabilities (Page 196)

MORE HACKING SQL SERVERS WITHOUT A PASSWORD

On: September 22, 2016

Hacking SQL servers is fun. Early this year, I blogged about hacking SQL servers without a password. I used Ettercap to perform a man-in-the-middle attack between a Microsoft SQL serverRead More →

iPhone passcode bypassed with NAND mirroring attack

On: September 21, 2016

In: Incidents, Mobile Security, Vulnerabilities

FBI says it’s impossible but Cambridge computer security expert proves them wrong. Passcodes on iPhones can be hacked using store-bought electronic components worth less than $100 (£77), according to oneRead More →

The Spider That Crawls the Dark Web Looking for Stolen Data

On: September 20, 2016

In: Important, Incidents, Vulnerabilities

A start-up alerts organizations when their sensitive information pops up for sale online. When police officers respond to a theft or a mugging, they’ll usually ask for the serial numbersRead More →

Car Hacking Research: Remote Attack Tesla Motors

On: September 20, 2016

In: Incidents, Vulnerabilities

With several months of in-depth research on Tesla Cars, we have discovered multiple security vulnerabilities and successfully implemented remote, aka none physical contact, control on Tesla Model S in bothRead More →

FACEBOOK FIXES VULNERABILITY THAT LED TO ACCOUNT TAKEOVER, PAYS RESEARCHER $16K

On: September 20, 2016

In: Important, Incidents, Vulnerabilities

Facebook quickly resolved a vulnerability in its Business Manager tool late last month that could have let an attacker take over any Facebook page. Arun Sureshkumar, a security researcher in India, disclosed theRead More →

Boffins analyzed EXIF metadata in photos on principal blackmarkets

On: September 19, 2016

In: Important, Incidents, Malware, Vulnerabilities

Two researchers have analyzed images Exif metadata included in the photos used by crooks to advertise their products on black marketplaces in the dark web. Darknets are a privileged environmentRead More →

Nearly 800,000 FTP Servers Accessible Online Without Authentication

On: September 19, 2016

In: Vulnerabilities

Very few have write access enabled, though. A recent brute-force scan of FTP servers available online via an IPv4 address revealed that 796,578 boxes can be accessed without the needRead More →

CVE-2016-6415 – CISCO confirms a new Zero-Day linked to Equation Group hack

On: September 19, 2016

In: Incidents, Vulnerabilities

Cisco revealed the existence of another zero-day vulnerability, tracked as CVE-2016-6415, in the Equation Group archive leaked by the Shadow Broker hackers. This summer a group of hackers known as ShadowRead More →

BUGS IN SIGNAL MESSAGING APP CORRUPT ATTACHMENTS, CRASH APP

On: September 17, 2016

In: Mobile Security, Vulnerabilities

Makers of the mobile encrypted chat app Signal say they have fixed vulnerabilities in the Android version of the messaging app that allowed attackers to corrupt encrypted attachments and remotely crash the application.Read More →

Mozilla plans Firefox fix for same malware vulnerability that bit Tor

On: September 17, 2016

In: Malware, Vulnerabilities

Weakness in certificate pinning protections may open users to MitM attacks. Mozilla officials say they’ll release a Firefox update on Tuesday that fixes the same cross-platform, malicious code-execution vulnerability patched FridayRead More →

Vulnerabilities (Page 196)

MORE HACKING SQL SERVERS WITHOUT A PASSWORD

iPhone passcode bypassed with NAND mirroring attack

The Spider That Crawls the Dark Web Looking for Stolen Data

Car Hacking Research: Remote Attack Tesla Motors

FACEBOOK FIXES VULNERABILITY THAT LED TO ACCOUNT TAKEOVER, PAYS RESEARCHER $16K

Boffins analyzed EXIF metadata in photos on principal blackmarkets

Nearly 800,000 FTP Servers Accessible Online Without Authentication

CVE-2016-6415 – CISCO confirms a new Zero-Day linked to Equation Group hack

BUGS IN SIGNAL MESSAGING APP CORRUPT ATTACHMENTS, CRASH APP

Mozilla plans Firefox fix for same malware vulnerability that bit Tor

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

Massive NVIDIA GPU Exploit Found. How Hackers Can Take Down 35% of AI Systems in Cloud!

Blast-RADIUS Attack Exploting Critical RADIUS Flaw Could Compromise Your Network

14 Million Servers Vulnerable to Critical OpenSSH Bug: Become Remote Admin with CVE-2024-6387

How Safe is Your TinyProxy? Step-by-Step Guide to Exploiting Tinyproxy’s Zero Day Vulnerability

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

WinRAR and ZIP File Exploits: This ZIP File Hack Could Let Malware Bypass Your Antivirus

5 Techniques Hackers Use to Jailbreak ChatGPT, Gemini, and Copilot AI systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hacking Pagers to Explosions: Israel’s Covert Cyber-Physical Sabotage Operation Against Hezbollah!

Five Techniques for Bypassing Microsoft SmartScreen and Smart App Control (SAC) to Run Malware in Windows

How Millions of Phishing Emails were Sent from Trusted Domains: EchoSpoofing Explained

How to implement Principle of Least Privilege(Cloud Security) in AWS, Azure, and GCP cloud

The 11 Essential Falco Cloud Security Rules for Securing Containerized Applications at No Cost

Hack-Proof Your Cloud: The Step-by-Step Continuous Threat Exposure Management CTEM Strategy for AWS & AZURE

Web-Based PLC Malware: A New Technique to Hack Industrial Control Systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hackers’ Guide to Rogue VM Deployment: Lessons from the MITRE hack

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

Major Python Infrastructure Breach – Over 170K Users Compromised. How Safe Is Your Code?

How to exploit Windows Defender Antivirus to infect a device with malware

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]