Vulnerabilities (Page 212)

ADVANTECH PATCHES WEBACCESS REMOTE CODE EXECUTION FLAWS

On: June 23, 2016

Advantech has published a new version of its WebAccess product to address vulnerabilities that put installations at risk to remote code execution attacks. Exploiting the vulnerabilities would be a challenge,Read More →

3 Million Strong Botnet Grows Right Under Twitter’s Nose

On: June 22, 2016

In: Data Security, Vulnerabilities

There’s something fishy about this botnet. Social media and advertising fraud investigations firm Sadbottrue has discovered a botnet of three million Twitter accounts, along with two smaller botnets of 100,000 botsRead More →

‘GODLESS’ Mobile Malware Uses Multiple Exploits to Root Devices

On: June 22, 2016

In: Important, Malware, Mobile Security, Vulnerabilities

We came across a family of mobile malware called Godless (detected as ANDROIDOS_GODLESS.HRX) that has a set of rooting exploits in its pockets. By having multiple exploits to use, GodlessRead More →

Apple Disables Old Flash Player Versions Due to Security Vulnerabilities

On: June 21, 2016

In: Vulnerabilities

Users are now prompted to update to the latest version. Apple is now blocking older versions of Adobe’s Flash Player because of security vulnerabilities that were patched in the most recentRead More →

Exploiting Recursion in the Linux Kernel

On: June 21, 2016

In: Important, Vulnerabilities

On June 1st, I reported an arbitrary recursion bug in the Linux kernel that can be triggered by a local user on Ubuntu if the system was installed with homeRead More →

Hacker breached the Canadian Quebec Liberal Party’s video conferencing software

On: June 20, 2016

In: Data Security, Important, Incidents, Vulnerabilities

An unnamed hacker hacked the video conferencing software used by the Quebec Liberal Party and shared the news with the media. Politicians are a privileged target of hackers, in manyRead More →

Tor Browser Integrates Tool to Fend Off Deanonymization Exploits

On: June 20, 2016

In: Important, Vulnerabilities

Selfrando is an alternative to ASLR memory randomization. At the start of June, the Tor Project released version 6.5a1 of the Tor Browser, but compared to previous releases, this one alsoRead More →

FBI’s facial recognition system can access 411 million photos including foreigners

On: June 18, 2016

In: Important, Incidents, Vulnerabilities

Today the federal Government Accountability Office (GAO) finally published its exhaustive report on the FBI’s face recognition capabilities. The takeaway: FBI has access to hundreds of millions more photos thanRead More →

Advisory: HTTP Header Injection in Python urllib

On: June 17, 2016

In: Vulnerabilities

Python’s built-in URL library (“urllib2” in 2.x and “urllib” in 3.x) is vulnerable to protocol stream injection attacks (a.k.a. “smuggling” attacks) via the http scheme. If an attacker could convinceRead More →

Attackers bundle an old version of TeamViewer to exploit vulnerability

Unsupported TeamViewer Versions Exploited For Backdoors, Keylogging

On: June 17, 2016

In: Vulnerabilities

Users of the TeamViewer remote-access service have beencomplaining in recent weeks about how their systems have been hacked into, unauthorized purchases made on their cards, their bank accounts emptied. Initially itRead More →

Vulnerabilities (Page 212)

ADVANTECH PATCHES WEBACCESS REMOTE CODE EXECUTION FLAWS

3 Million Strong Botnet Grows Right Under Twitter’s Nose

‘GODLESS’ Mobile Malware Uses Multiple Exploits to Root Devices

Apple Disables Old Flash Player Versions Due to Security Vulnerabilities

Exploiting Recursion in the Linux Kernel

Hacker breached the Canadian Quebec Liberal Party’s video conferencing software

Tor Browser Integrates Tool to Fend Off Deanonymization Exploits

FBI’s facial recognition system can access 411 million photos including foreigners

Advisory: HTTP Header Injection in Python urllib

Unsupported TeamViewer Versions Exploited For Backdoors, Keylogging

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

Massive NVIDIA GPU Exploit Found. How Hackers Can Take Down 35% of AI Systems in Cloud!

Blast-RADIUS Attack Exploting Critical RADIUS Flaw Could Compromise Your Network

14 Million Servers Vulnerable to Critical OpenSSH Bug: Become Remote Admin with CVE-2024-6387

How Safe is Your TinyProxy? Step-by-Step Guide to Exploiting Tinyproxy’s Zero Day Vulnerability

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

WinRAR and ZIP File Exploits: This ZIP File Hack Could Let Malware Bypass Your Antivirus

5 Techniques Hackers Use to Jailbreak ChatGPT, Gemini, and Copilot AI systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hacking Pagers to Explosions: Israel’s Covert Cyber-Physical Sabotage Operation Against Hezbollah!

Five Techniques for Bypassing Microsoft SmartScreen and Smart App Control (SAC) to Run Malware in Windows

How Millions of Phishing Emails were Sent from Trusted Domains: EchoSpoofing Explained

How to implement Principle of Least Privilege(Cloud Security) in AWS, Azure, and GCP cloud

The 11 Essential Falco Cloud Security Rules for Securing Containerized Applications at No Cost

Hack-Proof Your Cloud: The Step-by-Step Continuous Threat Exposure Management CTEM Strategy for AWS & AZURE

Web-Based PLC Malware: A New Technique to Hack Industrial Control Systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hackers’ Guide to Rogue VM Deployment: Lessons from the MITRE hack

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

Major Python Infrastructure Breach – Over 170K Users Compromised. How Safe Is Your Code?

How to exploit Windows Defender Antivirus to infect a device with malware

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]