Vulnerabilities (Page 199)

ANDROID PATCH FIXES NEXUS 5X CRITICAL VULNERABILITY

On: September 3, 2016

Google’s Android security team has patched a vulnerability that left Nexus 5X devices open to attack even if the phone’s screen was locked. The vulnerability in Google’s line of phonesRead More →

Talos ShadowGate Take Down: Global Malvertising Campaign Thwarted

On: September 2, 2016

In: Important, Incidents, Malware, Vulnerabilities

Exploit kits are a class of threat that indiscriminately aims to compromise all users. Talos has continued to monitor this threat over time resulting in large scale research and evenRead More →

Apple Patches OS X and Safari Zero-Days Related to NSO Group Spyware

On: September 2, 2016

In: Vulnerabilities

Apple patches two new zero-days in OS X and Safari.Apple released today two security bulletins for OS X and Safari aimed to fix three vulnerabilities related to the now infamousRead More →

Double-click me not: Malicious proxy settings in OLE Embedded Script

On: September 1, 2016

In: Important, Incidents, Malware, Vulnerabilities

Attackers have been using social engineering to avoid the increasing costs of exploitation due to the significant hardening and exploit mitigations investments in Windows. Tricking a user into running aRead More →

Vulnerability in Yandex Browser Allows Attackers to Steal Victims’ Browsing Data

On: September 1, 2016

In: Incidents, Vulnerabilities

Vulnerability is easy to exploit, hard to spot. A CSRF vulnerability existed in the core of the Yandex Browser that allowed attackers to trick the browser’s synchronization feature into sending theRead More →

New cloud attack takes full control of virtual machines with little effort

On: September 1, 2016

In: Important, Incidents, Malware, Vulnerabilities

Existing crypto software “wholly unequipped” to counter Rowhammer attacks. The world has seen the most unsettling attack yet resulting from the so-called Rowhammer exploit, which flips individual bits in computer memory. It’sRead More →

Unsophisticated Revenge RAT Released Online for Free EXCLUSIVE

On: August 31, 2016

In: Important, Incidents, Malware, Vulnerabilities

RAT is still in its early stages of development. An Arabic-speaking malware coder using the name Napoleon has released a new RAT (Remote Access Trojan/Tool) called Revenge, which he’s distributing forRead More →

iOS 9.3.4 and minor versions are vulnerable to the Trident Exploit

On: August 31, 2016

In: Mobile Security, Vulnerabilities

Its name is the Trident: a chain of zero-day exploits that aim to infect iPhone with commercial spyware. Researchers linked it to the NSO group.Its name is the Trident: aRead More →

Google Login Page Bug Can Lead to Automatic Malware Download

On: August 30, 2016

In: Important, Incidents, Malware, Vulnerabilities

Google declined to classify this as a security issue. British security researcher Aidan Woods discovered an issue on Google’s login page that allows clever attackers to automatically download files on theRead More →

After Illinois hack, FBI warns of more attacks on state election board systems

On: August 30, 2016

In: Incidents, Vulnerabilities

Concern about more attacks mounting as presidential elections approach. Someone using servers in the US, England, Scotland, and the Netherlands stole voter registration from one state’s Board of Elections website inRead More →

Vulnerabilities (Page 199)

ANDROID PATCH FIXES NEXUS 5X CRITICAL VULNERABILITY

Talos ShadowGate Take Down: Global Malvertising Campaign Thwarted

Apple Patches OS X and Safari Zero-Days Related to NSO Group Spyware

Double-click me not: Malicious proxy settings in OLE Embedded Script

Vulnerability in Yandex Browser Allows Attackers to Steal Victims’ Browsing Data

Unsophisticated Revenge RAT Released Online for Free EXCLUSIVE

iOS 9.3.4 and minor versions are vulnerable to the Trident Exploit

Google Login Page Bug Can Lead to Automatic Malware Download

After Illinois hack, FBI warns of more attacks on state election board systems

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

Massive NVIDIA GPU Exploit Found. How Hackers Can Take Down 35% of AI Systems in Cloud!

Blast-RADIUS Attack Exploting Critical RADIUS Flaw Could Compromise Your Network

14 Million Servers Vulnerable to Critical OpenSSH Bug: Become Remote Admin with CVE-2024-6387

How Safe is Your TinyProxy? Step-by-Step Guide to Exploiting Tinyproxy’s Zero Day Vulnerability

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

WinRAR and ZIP File Exploits: This ZIP File Hack Could Let Malware Bypass Your Antivirus

5 Techniques Hackers Use to Jailbreak ChatGPT, Gemini, and Copilot AI systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hacking Pagers to Explosions: Israel’s Covert Cyber-Physical Sabotage Operation Against Hezbollah!

Five Techniques for Bypassing Microsoft SmartScreen and Smart App Control (SAC) to Run Malware in Windows

How Millions of Phishing Emails were Sent from Trusted Domains: EchoSpoofing Explained

How to implement Principle of Least Privilege(Cloud Security) in AWS, Azure, and GCP cloud

The 11 Essential Falco Cloud Security Rules for Securing Containerized Applications at No Cost

Hack-Proof Your Cloud: The Step-by-Step Continuous Threat Exposure Management CTEM Strategy for AWS & AZURE

Web-Based PLC Malware: A New Technique to Hack Industrial Control Systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hackers’ Guide to Rogue VM Deployment: Lessons from the MITRE hack

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

Major Python Infrastructure Breach – Over 170K Users Compromised. How Safe Is Your Code?

How to exploit Windows Defender Antivirus to infect a device with malware

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]