Vulnerabilities (Page 233)

XSS in Hidden Input Fields

On: November 17, 2015

At PortSwigger, we regularly run pre-release builds of Burp Suite against an internal testbed of popular web applications to make sure it’s behaving properly. Whilst doing this recently,Liam found aRead More →

RCE Vulnerability Fully Compromises Deutsche Telekom Server

On: November 16, 2015

In: Vulnerabilities

Attackers could have had full control over DT’s Web server. Independent Egyptian security researcher Ebrahim Hegazy has found another vulnerability, and this one affected the Web servers of Deutsche Telekom, Germany’sRead More →

PNG pongs: critical bug patched in ubiquitous libpng

On: November 16, 2015

In: Vulnerabilities

Crafted image crashes apps, server processes. This will not be fun: the graphics processing library libpng has a vulnerability and needs to be patched. The problem for that is thatRead More →

Oil and Gas Companies Indirectly Put at Risk by Vulnerabilities in ERP Systems

On: November 13, 2015

In: Vulnerabilities

Vulnerabilities in SAP and Oracle products expose companies to crippling attacks, oil market fraud or equipment sabotage. A talk delivered at the Black Hat Europe 2015 security conference in Amsterdam showsRead More →

Chrome for Android Has a Hidden Vulnerability, Quite Simple to Exploit

On: November 13, 2015

In: Vulnerabilities

Google’s Chrome staff got in contact with the security researcher and has already started working on a fix A Chinese security researcher has found a security vulnerability in Google’s ChromeRead More →

SAP Patches 12 SQL Injection, XSS Vulnerabilities in HANA

SAP Security Patch for November 2015 Released

On: November 12, 2015

In: Data Security, Vulnerabilities

This post by SAP Product Security Response Team shares information on Patch Day Security Notes* that are released on second Tuesday of every month and fix vulnerabilities discovered in SAPRead More →

Author of Linux.Encoder Fails for the Third Time, Ransomware Is Still Decryptable

Flaw in Linux.Encoder1 ransomware reveals the decryption key

On: November 11, 2015

In: Data Security, Malware, Vulnerabilities

Experts at Bitdefender have discovered a flaw in Linux Encryption Ransomware Linux.Encoder1 that exposes the decryption Key used to lock the files. Last week security experts at Russian antivirus firmRead More →

Canonical Patches Linux Kernel Vulnerability in Ubuntu 15.10, 15.04, 14.04 and 12.04 LTS

On: November 10, 2015

In: Vulnerabilities

All Ubuntu users are urged to update as soon as possible. Canonical has just published four Ubuntu Security Notices that detail a recent Linux kernel vulnerability discovered in the kernel packagesRead More →

The Vulnerability That Will Rock the Entire Java World

On: November 7, 2015

In: Vulnerabilities

Major bug goes unnoticed in one of Java’s most popular libraries, despite getting a CVSS vulnerability score of 10 Back in late January, two security researchers (Gabriel Lawrence and ChrisRead More →

Google Project Zero Turns Over 11 Bugs in Galaxy S6 Edge

On: November 4, 2015

In: Vulnerabilities

Google’s Nexus Android devices are considered the most secure by default since they’re guaranteed to receive all security patches for vulnerabilities found internally and those disclosed by third parties. Google’sRead More →

Vulnerabilities (Page 233)

XSS in Hidden Input Fields

RCE Vulnerability Fully Compromises Deutsche Telekom Server

PNG pongs: critical bug patched in ubiquitous libpng

Oil and Gas Companies Indirectly Put at Risk by Vulnerabilities in ERP Systems

Chrome for Android Has a Hidden Vulnerability, Quite Simple to Exploit

SAP Security Patch for November 2015 Released

Flaw in Linux.Encoder1 ransomware reveals the decryption key

Canonical Patches Linux Kernel Vulnerability in Ubuntu 15.10, 15.04, 14.04 and 12.04 LTS

The Vulnerability That Will Rock the Entire Java World

Google Project Zero Turns Over 11 Bugs in Galaxy S6 Edge

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

Hackers Can Manipulate Your Heart Rate Monitor – Unbelievable Security Flaw!

FortiGate Firewalls Zero-Day Chaos: How Hackers Are Gaining Control of Firewalls Worldwide – Is Your Network at Risk?

How Hackers Can Hijack Your Device Without You Knowing – MediaTek’s RCE Flaw Explained

Hacking Active Directory: Learn How LDAPNightmare Flaw Shuts Down AD Services

PAN-OS DoS Flaw: Is Your Network at Risk? Learn How to Secure It Now!

A Malware That EDR Can’t See?If You Rely on Antivirus for Protection, Read This Before It’s Too Late!

WinRAR and ZIP File Exploits: This ZIP File Hack Could Let Malware Bypass Your Antivirus

5 Techniques Hackers Use to Jailbreak ChatGPT, Gemini, and Copilot AI systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hacking Pagers to Explosions: Israel’s Covert Cyber-Physical Sabotage Operation Against Hezbollah!

Five Techniques for Bypassing Microsoft SmartScreen and Smart App Control (SAC) to Run Malware in Windows

How Millions of Phishing Emails were Sent from Trusted Domains: EchoSpoofing Explained

How to implement Principle of Least Privilege(Cloud Security) in AWS, Azure, and GCP cloud

The 11 Essential Falco Cloud Security Rules for Securing Containerized Applications at No Cost

Hack-Proof Your Cloud: The Step-by-Step Continuous Threat Exposure Management CTEM Strategy for AWS & AZURE

A Malware That EDR Can’t See?If You Rely on Antivirus for Protection, Read This Before It’s Too Late!

Top 2 Malicious Python Packages You Must Avoid! Zebo-0.1.0 & Cometlogger-0.1

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hackers’ Guide to Rogue VM Deployment: Lessons from the MITRE hack

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]