Vulnerabilities (Page 208)

New Made-in-China Web Shell Threatens the Security of Web Servers Worldwide

On: July 20, 2016

In: Important, Malware, Technology, Vulnerabilities

In part one of our web shell series we analyzed recent trends, code bases, and explored defensive mitigations. In part two we investigate a new web shell created by Chinese-speakingRead More →

Wave of business websites hijacked to deliver crypto-ransomware

On: July 20, 2016

In: Important, Incidents, Malware, Vulnerabilities

Sites exploited by SoakSoak bots give the gift of CryptXXX malware. If you’ve visited the do-it-yourself project site of Dunlop Adhesives, the official tourism site for Guatemala, or a numberRead More →

Malware in the browser: how you might get hacked by a Chrome extension

On: July 19, 2016

In: Important, Incidents, Malware, Vulnerabilities

Increasingly, browsers are taking on a central role in our daily lives. With web apps for everything, we have placed our most intimate data on online services such as Facebook,Read More →

Malicious macros arrive in phishing emails, steal banking information

On: July 19, 2016

In: Important, Malware, Mobile Security, Vulnerabilities

Malicious macros made a comeback in 2015 to deliver malware. Now we’re seeing phishing emails use macros in Excel attachments to steal sensitive banking details. In 2015, we saw maliciousRead More →

HTTPoxy Vulnerability Affects CGI-Based Apps in PHP, Python, and Go

On: July 19, 2016

In: Vulnerabilities

Fifteen-year-old vulnerability comes back to life. HTTPoxy is the name of a 15-year-old vulnerability that has plagued several code libraries that make HTTP requests, and has most recently been found toRead More →

CVE-2015-1641 and CVE-2015-2545 Are Today’s Most Popular Microsoft Word Exploits

On: July 19, 2016

In: Important, Incidents, Malware, Vulnerabilities

Office exploit kits updates drop support for CVE-2012-0158. Two newer vulnerabilities targeting the Microsoft Office suite have become very popular in recent months, as Office exploit kit makers have updated theirRead More →

Ubuntu Linux forums hacked!

On: July 16, 2016

In: Incidents, Vulnerabilities

There is a common misconception that all things Linux are bulletproof. The fact is, no software is infallible. When news of a Linux vulnerability hits, some Windows and Mac fans like to tauntRead More →

JUNIPER CRYPTO BUG LET ATTACKERS EAVESDROP ON ROUTER, SWITCH TRAFFIC

On: July 16, 2016

In: Incidents, Vulnerabilities

Juniper Networks patched a crypto bug tied to its public key infrastructure that could have allowed hackers to access the company’s routers, switches and security devices and eavesdrop on sensitiveRead More →

Foolishly Open-Sourced Internet Explorer Exploit Code Added to Neutrino EK

On: July 15, 2016

In: Vulnerabilities

Neutrino EK now features support for CVE-2016-0189. The crooks behind the Neutrino Exploit Kit (EK) didn’t wait long to update their automated malware infection technology with exploit code foolishly open-sourced byRead More →

Microsoft silently kills dev backdoor that boots Linux on locked-down Windows RT slabs

On: July 15, 2016

In: Important, Incidents, Malware, Vulnerabilities

Patch Tuesday wasn’t just about browser bugs. Microsoft has quietly killed a vulnerability that can be exploited to unlock ARM-powered Windows RT tablets and boot non-Redmond-approved operating systems. The Register hasRead More →

Vulnerabilities (Page 208)

New Made-in-China Web Shell Threatens the Security of Web Servers Worldwide

Wave of business websites hijacked to deliver crypto-ransomware

Malware in the browser: how you might get hacked by a Chrome extension

Malicious macros arrive in phishing emails, steal banking information

HTTPoxy Vulnerability Affects CGI-Based Apps in PHP, Python, and Go

CVE-2015-1641 and CVE-2015-2545 Are Today’s Most Popular Microsoft Word Exploits

Ubuntu Linux forums hacked!

JUNIPER CRYPTO BUG LET ATTACKERS EAVESDROP ON ROUTER, SWITCH TRAFFIC

Foolishly Open-Sourced Internet Explorer Exploit Code Added to Neutrino EK

Microsoft silently kills dev backdoor that boots Linux on locked-down Windows RT slabs

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

Massive NVIDIA GPU Exploit Found. How Hackers Can Take Down 35% of AI Systems in Cloud!

Blast-RADIUS Attack Exploting Critical RADIUS Flaw Could Compromise Your Network

14 Million Servers Vulnerable to Critical OpenSSH Bug: Become Remote Admin with CVE-2024-6387

How Safe is Your TinyProxy? Step-by-Step Guide to Exploiting Tinyproxy’s Zero Day Vulnerability

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

WinRAR and ZIP File Exploits: This ZIP File Hack Could Let Malware Bypass Your Antivirus

5 Techniques Hackers Use to Jailbreak ChatGPT, Gemini, and Copilot AI systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hacking Pagers to Explosions: Israel’s Covert Cyber-Physical Sabotage Operation Against Hezbollah!

Five Techniques for Bypassing Microsoft SmartScreen and Smart App Control (SAC) to Run Malware in Windows

How Millions of Phishing Emails were Sent from Trusted Domains: EchoSpoofing Explained

How to implement Principle of Least Privilege(Cloud Security) in AWS, Azure, and GCP cloud

The 11 Essential Falco Cloud Security Rules for Securing Containerized Applications at No Cost

Hack-Proof Your Cloud: The Step-by-Step Continuous Threat Exposure Management CTEM Strategy for AWS & AZURE

Web-Based PLC Malware: A New Technique to Hack Industrial Control Systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hackers’ Guide to Rogue VM Deployment: Lessons from the MITRE hack

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

Major Python Infrastructure Breach – Over 170K Users Compromised. How Safe Is Your Code?

How to exploit Windows Defender Antivirus to infect a device with malware

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]