Vulnerabilities (Page 228)

Black Hat SEO Campaign Leverages SQL Injections to Boost Search Rankings

On: January 13, 2016

A new type of black hat SEO campaign has been uncovered in the last few months by Akamai’s experts, who have observed that an attacker is using SQL injection flawsRead More →

SSH Backdoor Identified in Fortinet Firewalls

On: January 13, 2016

In: Important, Vulnerabilities

Fortinet’s FortiOS operating system, deployed on the company’s FortiGate firewall networking equipment includes an SSH backdoor on versions from the 4.x series up to and including 4.3.16, and the 5.xRead More →

Intel Skylake Processors Affected By Bug That Can Freeze PCs During Complex Work

On: January 12, 2016

In: Vulnerabilities

Intel acknowledges that Skylake processors freeze in the middle of work. A bug has been found in the Intel processors that can freeze any system confirms Intel. Dubbed as Skylake, theRead More →

Experts warn Neutrino and RIG exploit kit activity spike

On: January 12, 2016

In: Data Security, Vulnerabilities

Security experts at Heimdal Security are warning a spike in cyber attacks leveraging the popular Neutrino and RIG exploit kit. Cyber criminals always exploit new opportunities and users’ bad habits, nowRead More →

A Flaw on eBay’s Site Allowed Hackers To Steal User’s Passwords

On: January 12, 2016

In: Vulnerabilities

A critical bug on eBay’s website opened the door for malicious hackers to create fake login pages to steal passwords and harvest credentials. An independent security researcher found the flawRead More →

Say “Cyber” again—Ars cringes through CSI: Cyber

On: January 12, 2016

In: Data Security, Vulnerabilities

CBS endangered cyber-procedural: Plane hacking! Software defined radio! White noise! OMG!. There are lots of cringeworthy technology moments on television, especially when the words “hacking” and “cyber” are introduced into theRead More →

CSRF Bug in Verizon’s API Left My FiOS Accounts Open to Attacks

On: January 11, 2016

In: Incidents, Vulnerabilities

API used a simple authentication scheme, exposing users to CSRF attacks that allowed third-parties to hijack accounts. Verizon fixed an issue in its My FiOS REST API that would haveRead More →

Uncooperative Russian ISP Prevents Cisco from Shutting Down Cybercriminal Gang

On: January 9, 2016

In: Incidents, Vulnerabilities

Russian ISP Eurobyte fails to answer Cisco’s emails, allows malvertising campaign to go on undisturbed. Cisco’s Talos research team has managed to identify and partially shut down a cyber-criminal group thatRead More →

GM embraces white-hat hackers with public vulnerability disclosure program

On: January 9, 2016

In: Vulnerabilities

First major automaker (aside from Tesla) to issue guidelines promising not to sue researchers. On January 5, General Motors quietly flipped the switch on Detroit’s first public security vulnerability disclosureRead More →

Remote Exploitation of Microsoft Office DLL Hijacking (MS15-132) via Browsers

On: January 7, 2016

In: Important, Vulnerabilities

A number of weeks back, security researcher Parvez Anwar posted a number of DLL hijacking vulnerabilities within Microsoft Office on Twitter [1]. The following week, Microsoft released MS15-132, which addressedRead More →

Vulnerabilities (Page 228)

Black Hat SEO Campaign Leverages SQL Injections to Boost Search Rankings

SSH Backdoor Identified in Fortinet Firewalls

Intel Skylake Processors Affected By Bug That Can Freeze PCs During Complex Work

Experts warn Neutrino and RIG exploit kit activity spike

A Flaw on eBay’s Site Allowed Hackers To Steal User’s Passwords

Say “Cyber” again—Ars cringes through CSI: Cyber

CSRF Bug in Verizon’s API Left My FiOS Accounts Open to Attacks

Uncooperative Russian ISP Prevents Cisco from Shutting Down Cybercriminal Gang

GM embraces white-hat hackers with public vulnerability disclosure program

Remote Exploitation of Microsoft Office DLL Hijacking (MS15-132) via Browsers

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

FortiGate Firewalls Zero-Day Chaos: How Hackers Are Gaining Control of Firewalls Worldwide – Is Your Network at Risk?

How Hackers Can Hijack Your Device Without You Knowing – MediaTek’s RCE Flaw Explained

Hacking Active Directory: Learn How LDAPNightmare Flaw Shuts Down AD Services

PAN-OS DoS Flaw: Is Your Network at Risk? Learn How to Secure It Now!

Don’t Get Hacked! Sophos Firewall Vulnerabilities Explained

WinRAR and ZIP File Exploits: This ZIP File Hack Could Let Malware Bypass Your Antivirus

5 Techniques Hackers Use to Jailbreak ChatGPT, Gemini, and Copilot AI systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hacking Pagers to Explosions: Israel’s Covert Cyber-Physical Sabotage Operation Against Hezbollah!

Five Techniques for Bypassing Microsoft SmartScreen and Smart App Control (SAC) to Run Malware in Windows

How Millions of Phishing Emails were Sent from Trusted Domains: EchoSpoofing Explained

How to implement Principle of Least Privilege(Cloud Security) in AWS, Azure, and GCP cloud

The 11 Essential Falco Cloud Security Rules for Securing Containerized Applications at No Cost

Hack-Proof Your Cloud: The Step-by-Step Continuous Threat Exposure Management CTEM Strategy for AWS & AZURE

Web-Based PLC Malware: A New Technique to Hack Industrial Control Systems

Top 2 Malicious Python Packages You Must Avoid! Zebo-0.1.0 & Cometlogger-0.1

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hackers’ Guide to Rogue VM Deployment: Lessons from the MITRE hack

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

Major Python Infrastructure Breach – Over 170K Users Compromised. How Safe Is Your Code?

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]