CVE-2021-41017
Summary: Multiple heap-based buffer overflow vulnerabilities in some web API controllers of FortiWeb 6.4.1, 6.4.0, and 6.3.0 through 6.3.15 may...
1.6 million WordPress sites targeted in the last couple of days
Wordfence experts detected a massive wave of attacks in the last couple of days that targeted over 1.6 million WordPress sites. Wordfence...
DInjector – Collection Of Shellcode Injection Techniques Packed In A D/Invoke Weaponized DLL
This repository is an accumulation of my code snippets for various shellcode injection techniques using fantastic D/Invoke API by @TheWover...
CVE-2021-42008 – Linux Foundation / Linux kernel – Out-of-bounds write
Summary: CVE-2021-42008 is an out-of-bounds write vulnerability impacting Linux kernel versions 5.13.12 and earlier. An exploit was observed in open...
CVE-2021-43267 – Linux Foundation / Linux kernel – Improper input validation
Summary: CVE-2021-43267 is an improper input validation vulnerability impacting Linux kernel versions 5.14.15 and earlier. An exploit was observed in...
BlackCat ransomware, a very sophisticated malware written in Rust
BlackCat is the first professional ransomware strain that was written in the Rust programming language, researchers reported. Malware researchers from...
The life cycle of phishing pages
Introduction In this study, we analyzed how long phishing pages survive as well as the signs they show when they...
Cobalt Stike Beacon Detected – 103[.]214[.]18[.]230:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 106[.]52[.]236[.]88:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 164[.]90[.]154[.]97:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 8[.]141[.]151[.]190:8080
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 218[.]253[.]251[.]74:8089
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 209[.]141[.]52[.]93:4443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 23[.]227[.]203[.]217:88
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 23[.]227[.]202[.]97:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 155[.]138[.]129[.]131:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Dark Mirai botnet spreads targeting RCE on TP-Link routers
A botnet tracked as Dark Mirai spreads by exploiting a new vulnerability affecting TP-Link TL-WR840N EU V5 home routers. Dark...
AFLTriage – Tool To Triage Crashing Input Files Using A Debugger
AFLTriage is a tool to triage crashing input files using a debugger. It is designed to be portable and not...
Mozilla fixed high-severity bugs in Firefox and Thunderbird mail client
Mozilla released security updates for the Firefox browser and Thunderbird mail client to address multiple vulnerabilities. Mozilla released security updates...
Fake job interviews plague major game developers like Riot Games and Rockstar
If you’re job hunting at the moment, be on your guard. The pandemic is still around. Lots of people are...
Has your WordPress site been backdoored by a skimmer?
Skimmers and other threat actors are backdooring websites, and WordPress instances in particular, according to a recently released report. Researchers...
CVE-2021-43175
Summary: The GOautodial API prior to commit 3c3a979 made on October 13th, 2021 exposes an API router that accepts a...
CVE-2021-26110
Summary: An improper access control vulnerability in FortiOS autod daemon 7.0.0, 6.4.6 and below, 6.2.9 and below, 6.0.12 and below...
CVE-2021-37054
Summary: There is an Identity spoofing and authentication bypass vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service...
