Satellite – Easy-To-Use Payload Hosting
Satellite is an web payload hosting service which filters requests to ensure the correct target is getting a payload. This...
Phpvuln – Audit Tool To Find Common Vulnerabilities In PHP Source Code
phpvuln is an open source OWASP penetration testing tool written in Python 3, that can speed up the the process...
Cisco Patches Recently Disclosed “sudo” Vulnerability (CVE-2021-3156) in Multiple Products
The “sudo” advisory is officially presented as “Sudo Privilege Escalation Vulnerability Affecting Cisco Products: January 2021” and affects pretty much...
Hackers accessed Stormshield data, including source code of ANSSI certified products
The provider of network security products Stormshield discloses data breach, threat actors stole information on some of its clients. Stormshield...
SonicWall released patch for actively exploited SMA 100 zero-day
SonicWall has released a security patch to address the zero-day flaw actively exploited in attacks against the SMA 100 series...
Cisco fixes critical remote code execution issues in SMB VPN routers
Cisco addressed multiple pre-auth remote code execution (RCE) flaws in small business VPN routers that allow executing arbitrary code as...
TIM’s Red Team Research (RTR) discovered 2 new zero-day vulnerabilities in WordPress Plugin Limit Login Attempts Reloaded
Researchers from TIM’s Red Team Research (RTR) discovered 2 new zero-day vulnerabilities in WordPress Plugin Limit Login Attempts Reloaded Italy...
Alleged China-linked hackers used SolarWinds bug to breach National Finance Center
Alleged China-linked hackers have exploited a flaw in the SolarWinds Orion software to hack systems at the U.S. National Finance...
CVE-2020-15834
Summary: An issue was discovered on Mofi Network MOFI4500-4GXeLTE 4.1.5-std devices. The wireless network password is exposed in a QR...
CVE-2020-15832
Summary: An issue was discovered on Mofi Network MOFI4500-4GXeLTE 4.1.5-std devices. The poof.cgi script contains undocumented code that provides the...
CVE-2020-13860
Summary: An issue was discovered on Mofi Network MOFI4500-4GXeLTE 4.0.8-std devices. The one-time password algorithm for the undocumented system account...
CVE-2021-3345
Summary: _gcry_md_block_write in cipher/hash-common.c in Libgcrypt version 1.9.0 has a heap-based buffer overflow when the digest final function sets a...
CVE-2020-13857
Summary: An issue was discovered on Mofi Network MOFI4500-4GXeLTE 3.6.1-std and 4.0.8-std devices. They can be rebooted by sending an...
Would real identities make social media safer?
“Use real identities to reduce abuse online” is a talking point you’ve almost certainly seen down the years. It also...
Browser sync—what are the risks of turning it on?
Modern browsers include synchronization features (like Google Chrome’s Sync) so that all your browsers, on all your devices, share the...
The number of crimes with bank cards in Russia has increased by 5.5 times
Last year, 510.4 thousand crimes committed using information and telecommunications technologies were registered in Russia. According to the data of...
Chinese Firms Infiltrates into U.S. Healthcare Data
The gulf between the two most powerful nations has widened after the United States National Counterintelligence and Security Center (NCSC)...
Rasmus Myhrberg Won The Award For #1 “New Tool of the Year”!
Simple, a time tracking software wins #1 New Tool of the Year (2020). Major tech website "Stackshare" recently announced its...
Wind River Security Incident Exposed Personnel Records, SSNs, Passport Numbers
Wind River Systems, on Friday, cautioned of a "security incident" that had exposed personnel records. Wind River Systems, otherwise called...
Sprite Spider Emerging as One of The Most Destructive Ransomware Threat Actors
Recently, two CrowdStrike cybersecurity leads during a Cyber Threat Intelligence Summit at the SANS – Senior Security Researcher Sergei Frankoff, and Senior...
SonicWall SNWLID-2021-0001 Zero-Day and SolarWinds’ 2021 CVE Trifecta: What You Need to Know
Not content with the beating it laid down in January, 2021 continues to deliver with an unpatched zero-day exposure in...
Vulnerability Scanning With the Metasploit Remote Check Service (Beta Release)
InsightVM and Nexpose customers can now harness the power of the Metasploit community to assess their exposure to the latest...
Hack the Box: Emdee five for life
Description: Can you encrypt fast enough? So lets get into it. Start the instance for this challenge and visit the...
Linux-Chrome-Recon – An Information Gathering Tool Used To Enumerate All Possible Data About An User From Google-Chrome Browser From Any Linux Distribution
"linux-chrome-recon" is a Information gathering tool used to enumerate all possible data about an user from Google-Chrome browser from any...
