Metarget – Framework Providing Automatic Constructions Of Vulnerable Infrastructures
1 IntroductionMetarget = meta- + target, a framework providing automatic constructions of vulnerable infrastructures, used to deploy simple or complicated...
1 IntroductionMetarget = meta- + target, a framework providing automatic constructions of vulnerable infrastructures, used to deploy simple or complicated...
Abuse of Google Colab for fun and profit. What is it ?Penglab is a ready-to-install setup on Google Colab for...
China-linked APT breached New York City’s Metropolitan Transportation Authority (MTA) network in April using a Pulse Secure zero-day. China-linked threat...
PrivacyAffairs released the Dark Web Index 2021, the document provides the prices for illegal services/products available in the black marketplaces....
Trend Micro disclosed technical details of a patched privilege escalation issue, tracked as CVE-2021-30724, that impacts macOS, iOS and iPadOS....
Cisco addressed multiple security flaws, including high-severity vulnerabilities, in Webex Player, SD-WAN software, and ASR 5000 series software. Cisco has...
Summary: IBM Cognos Analytics 11.0 and 11.1 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML...
Summary: Improper Verification of Cryptographic Signature vulnerability exists in homeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior which could...
Summary: Improper Verification of Cryptographic Signature vulnerability exists inhomeLYnk (Wiser For KNX) and spaceLYnk V2.60 and prior which could allow...
Summary: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in homeLYnk (Wiser For KNX) and...
Summary: In VOS user session identifier (authentication token) is issued to the browser prior to authentication but is not changed...
Since the initial lockdown, we have seen the rise of certain types of cybercrime, including scams and fraud campaigns that...
After the attacks on Colonial Pipeline and JBS, many may have been wondering, as we did, what the next ransomware...
As offices start to slowly open back up, the theoretically post-pandemic world is changing its threat landscape once again, and...
A seller on a famous cybercrime website claims to be selling source code and a database that they claim belongs...
A cyber-espionage hacking gang is suspected of breaking into the Myanmar president's office website and injecting a backdoor trojan into...
Voentelecom has started implementing SIM cards that should create a "trusted environment" on smartphones. The transition to such SIM cards...
According to Rostelecom-Solar research, every 10th critical information infrastructure (CII) in the Russian Federation is compromised by malware. Even hackers...
Industrial switches that were given by the vendors have been affected by a same vulnerability, the reason being they all...
Introduction In a nutshell, email spoofing is the creation of fake emails that seem legitimate. This article analyzes the spoofing...
Helper plugin for analyzing UEFI firmware. This plugin contains the following features: Apply the correct prototype to the entry point...
Fuzz 403ing endpoints for bypasses Follow on twitter! @intrudirThis tool will check the endpoint with a couple of headers such...
Researchers found multiple flaws in the Realtek RTL8170C Wi-Fi module that could be exploited to elevate privileges and hijack wireless...
The US FBI announced that REvil ransomware gang (also known as Sodinokibi) is behind the attack that hit JBS Foods....