Beware of Android Apps While Giving Access to Your Mobile Data
Have you ever thought about privacy while giving access to the app makers about your contact list, camera, recording, location,...
Month: March 2021
Malware Campaign Targets Telegram Desktop Application
An independent security researcher based in Basel, Switzerland, Jannis Kirschner, began to look for the widely known Telegram desktop version...
PRODAFT Accessed Servers of a SolarWinds Hacker
A Swiss cybersecurity firm says it has accessed servers utilized by a hacking group attached to the SolarWinds breach, uncovering...
ProxyLogon – PoC Exploit for Microsoft Exchange
PoC Exploit for Microsoft Exchange Launche Original PoC: https://github.com/testanullHow to use:python proxylogon.py <name or IP of server> <user@fqdn> Example:python proxylogon.py...
Netmap.Js – Fast Browser-Based Network Discovery Module
Fast browser-based network discovery module Descriptionnetmap.js provides browser-based host discovery and port scanning capabilities to allow you to map website...
SOC Automation with InsightIDR and InsightConnect: Three Key Use Cases to Explore to Optimize Your Security Operations
You probably already know that SOC automation with InsightIDR and InsightConnect can decrease your #MeanTimeToResponse. It may not be a...
RCE flaw in Apache OFBiz could allow to take over the ERP system
The Apache Software Foundation fixed a high severity remote code execution flaw in Apache OFBiz that could have allowed attackers...
Which is the Threat landscape for the ICS sector in 2020?
The Kaspersky ICS CERT published a report that provided details about the threat landscape for computers in the ICS engineering...
CVE-2021-27892
Summary: SSH Tectia Client and Server before 6.4.19 on Windows allow local privilege escalation. ConnectSecure on Windows is affected. Reference...
CVE-2021-25289
Summary: An issue was discovered in Pillow before 8.1.1. TiffDecode has a heap-based buffer overflow when decoding crafted YCbCr files...
CVE-2021-28295
Summary: Online Ordering System 1.0 is vulnerable to unauthenticated SQL injection through /onlineordering/GPST/admin/design.php, which may lead to database information disclosure....
CVE-2020-13949
Summary: In Apache Thrift 0.9.3 to 0.13.0, malicious RPC clients could send short messages which would result in a large...
CVE-2020-13949
Summary: In Apache Thrift 0.9.3 to 0.13.0, malicious RPC clients could send short messages which would result in a large...
CVE-2020-35654
Summary: In Pillow before 8.1.0, TiffDecode has a heap-based buffer overflow when decoding crafted YCbCr files because of certain interpretation...
A week in security (March 15 – 21)
Last week on Malwarebytes Labs, our podcast featured Adam Kujawa, who talked us through our 2021 State of Malware report....
Everthing You Need to Know About Ongoing TrickBot Attacks, US Agencies Warn
The Cybersecurity and Infrastructure Security Agency (CISA) in unison with the Federal Bureau of Investigation (FBI) published an advisory on...
Vajra – A Highly Customi zable Target And Scope Based Automated Web Hacking Framework To Automate Boring Recon Tasks
An automated web hacking framework for web applications Detailed insight about Vajra can be found athttps://hackwithproxy.medium.com/introducing-vajra-an-advanced-web-hacking-framework-bd8307a01aa8 About Vajra Vajra is an...
Subcert – An Subdomain Enumeration Tool, That Finds All The Subdomains From Certificate Transparency Logs
Subcert is a subdomain enumeration tool, that finds all the valid subdomains from certificate transparency logs. SetupStep 1: Install Python...
Mole – A Framework For Identifying And Exploiting Out-Of-Band Application Vulnerabilities
A framework for identifying and exploiting out-of-band (OOB) vulnerabilities. Installation & SetupMole InstallPython >= 3.6 virtualenv -p /usr/bin/python3 venv source...
CISA releases CHIRP, a tool to detect SolarWinds malicious activity
US CISA has released a new tool that allows detecting malicious activity associated with the SolarWinds hackers in compromised on-premises...
Swiss expert Till Kottmann indicted for conspiracy, wire fraud, and aggravated identity theft
Department of Justice announced that Swiss hacker Till Kottmann, 21, has been indicted for conspiracy, wire fraud, and aggravated identity...
Security Affairs newsletter Round 306
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
Microsoft Defender can now protect servers against ProxyLogon attacks
Microsoft announced that its Defender Antivirus and System Center Endpoint Protection now protects users against attacks exploiting Exchange Server vulnerabilities....
A threat actor exploited 11 zero-day flaws in 2020 campaigns
A hacking group has employed at least 11 zero-day flaws as part of an operation that took place in 2020...
