Caught in the payment fraud net: when, not if?
Sometimes, I think there are three certainties in life: death, taxes, and some form of payment fraud. Security reporter Danny...
Month: September 2020
A new Malware that can intercept your OTP and bypass Two Factor Authentication
For most of our accounts be it Bank accounts or social media accounts, we rely on two-factor authentication and OTP...
Why master YARA: from routine to extreme threat hunting cases. Follow-up
On 3rd of September, we were hosting our “Experts Talk. Why master YARA: from routine to extreme threat hunting cases“,...
Lil-Pwny – Auditing Active Directory Passwords Using Multiprocessing In Python
A multiprocessing approach to auditing Active Directory passwords using Python. About Lil PwnyLil Pwny is a Python application to perform...
Polypyus – Learns To Locate Functions In Raw Binaries By Extracting Known Functions From Similar Binaries
Polypyus learns to locate functions in raw binaries by extracting known functions from similar binaries. Thus, it is a firmware...
Re: Navy Federal Reflective Cross Site Scripting (XSS)
Posted by AdaptiveSecurity Consulting via Fulldisclosure on Sep 29Good evening. Because of the nature of the software and vulnerabilities we...
CVE-2020-24721: Corona Exposure Notifications API: risk of coercion/data leakage [vs]
Posted by Dirk-Willem van Gulik on Sep 29 (Corona) Exposure Notifications API for Apple iOS and Google Android risk of...
Microsoft Exchange 2010 End of Support and Overall Patching Study
Today's topic is Exchange 2010, which reaches end of support (EoS) on Oct. 13, 2020, as well as a survey...
2021 Detection and Response Planning, Part 1: Rapid7’s Jeffrey Gardner Breaks Down How CISOs Should Approach Security Planning for the New Year
In this four-part series, we’ll explore key considerations and strategies for 2021 detection and response planning, and ways InsightIDR, Managed...
Critical Information Disclosure on WP Courses plugin <= 2.0.29 exposes private course videos and materials
Posted by Red Timmy Security on Sep 29WP Courses is a Wordpress plugin allowing to define courses with lessons. The...
[SYSS-2020-025] DOMOS 5.8 – OS Command Injection
Posted by Patrick Hener on Sep 29Advisory ID: SYSS-2020-025 Product: DOMOS Manufacturer: Secudos GmbH Affected Version(s): <= DOMOS 5.8 Tested...
[SYSS-2020-024] Qiata FTA – Persistent Cross-Site Scripting
Posted by Patrick Hener on Sep 29Advisory ID: SYSS-2020-024 Product: Qiata FTA Manufacturer: Secudos GmbH Affected Version(s): <= Qiata FTA...
[SYSS-2019-049] Insufficient Session Expiration (CWE-613) in REDDOXX MailDepot (CVE-2019-19199)
Posted by Micha Borrmann on Sep 29Advisory ID: SYSS-2019-049 Product: MailDepot Manufacturer: REDDOXX GmbH Affected Version(s): 2032 SP2 (2.2.1242) Tested...
Regarding the semi-recent OnBase vulnerabilities
Posted by Ken on Sep 29In response to the recent OnBase v19.8.9.1000 and v18.0.0.32 vulnerability disclosures a few weeks ago,...
Lock and Code S1Ep16: Investigating digital vulnerabilities with Samy Kamkar
This week on Lock and Code, we discuss the top security headlines generated right here on Labs and around the...
Spying Malware Attacks Activists and Civil Societies in Egypt
Spying malware "FinSpy" has come back again in Egypt. This time in new campaigns is attacking activists and protestor organizations....
A Hacker Collective Based in Pakistan, Being Backed by China to Gather Intelligence Against India
In a rather coordinated attempt in order to steal strategic data and critical infrastructure by sending phishing mails a...
Every Organization Should Ask These 8 Questions Before Choosing Their Cybersecurity Provider
Being cybersecurity ready offers many advantages, but your organization can always target hackers unless you do not know critical details....
Overview Of Empire 3.4 Features
Its been about 2-weeks since we released Empire 3.4, and hopefully, everyone has had a chance to check out all...
NERVE – Network Exploitation, Reconnaissance & Vulnerability Engine
NERVE is a vulnerability scanner tailored to find low-hanging fruit level vulnerabilities, in specific application configurations, network services, and unpatched...
Cooolis-ms – A Server That Supports The Metasploit Framework RPC
Cooolis-ms is a server that supports Metasploit Framework RPC. It is used to work for Shellcode and PE loader, bypassing...
The official website of the Ministry of Internal Affairs of Belarus resumed its work after 19 days
The official website of the Ministry of Internal Affairs of Belarus, which has not worked for 19 days, is again...
Facebook Bans Suspicious Russian Accounts, Says Russian Spy Intelligence Interfering With U.S Presidential Election
Social networking giant Facebook says it terminated three fake account networks that could have been working for Russian intelligence. The...
Windows Source Code leaked Online
The source code for Windows XP SP1 was leaked online today as a torrent. The person behind the leak claims...
