Purple Fox EK Relies on Cloudflare for Stability
We’ve talked about Purple Fox malware being delivered by the Rig exploit kit. Other researchers later found evidence that it...
OSINT
Exposed Docker Server Abused to Drop Cryptominer, DDoS Bot
Malicious actors continue to target environments running Docker containers. We recently encountered an attack that drops both a malicious cryptocurrency...
This Week in Security News: 09/04/2020
This week, learn about Trend Micro’s midyear roundup report which found that published vulnerabilities in the first half of 2020...
Patch Tuesday – September 2020
129 Vulnerabilities Patched in Microsoft's September 2020 Update Tuesday (2020-Sep Patch Tuesday)Despite maintaining the continued high volume of vulnerabilities disclosed...
DDoS attacks from the USA, UK, Ukraine were recorded during the voting in the Russian Federation
Andrey Krutskikh, special representative of the President of Russia for international cooperation in the field of information security, said on...
Iranian Threat Actors Have Modified Their Strategies, Attacks Now More Effective
Since the dawn of the digital age, Iranian hackers have been infamous for their attacks on critical infrastructures, targeting governments,...
Empire: Malleable C2 Profiles
Empire 3.4.0 is our next major release and is packed with one of the most advanced features to-date, Malleable C2....
Browsertunnel – Surreptitiously Exfiltrate Data From The Browser Over DNS
Browsertunnel is a tool for exfiltrating data from the browser using the DNS protocol. It achieves this by abusing dns-prefetch,...
Bpytop – Linux/OSX/FreeBSD Resource Monitor
Resource monitor that shows usage and stats for processor, memory, disks, network and processes.Python port of bashtop.FeaturesEasy to use, with...
Hyland OnBase 19.x and below – XML External Entity (XXE) Injection
Posted by AdaptiveSecurity Consulting via Fulldisclosure on Sep 08CVSSv3.1 Score ------------------------------------------------- AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H Vendor ------------------------------------------------- Hyland Software - (https://www.hyland.com/en/ and https://www.onbase.com/en/)...
Hyland OnBase 19.x and below – Insecure Deserialization
Posted by AdaptiveSecurity Consulting via Fulldisclosure on Sep 08CVSSv3.1 Score ------------------------------------------------- AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H Vendor ------------------------------------------------- Hyland Software - (https://www.hyland.com/en/ and https://www.onbase.com/en/)...
A week in security (August 31 – September 6)
Last week on Malwarebytes Labs, we dug into security hubris on the Lock and Code podcast, explored ways in which...
Chinese hackers targeted about five Russian developers of banking software
Chinese hacker group Winnti attacked at least five Russian developers of banking software, as well as a construction company. According...
Flying V: the futuristic and sustainable drone aircraft makes it’s first maiden flight
The Flying V took to air for the first time in July at a German Airbase with a successful flight...
A New Set of Cybersecurity Principles Issued By the White House
A new set of cybersecurity principles were recently issued by the White House to ensure its commercial and critical infrastructure...
New Wave of Cryptocurrency Misappropriation, Hacking, Theft and Fraud Targeting Users Massively in 2020
Crypto criminals have ramped up cryptocurrency theft, hacking, and fraud by a significant margin in the year 2020. They have...
Hackers broke into the system of the Georgian Ministry of Health to steal data on the Russian nerve agent Novichok
According to the Georgian Ministry of Internal Affairs, the purpose of infiltrating the Ministry of Health's database was to get...
PurpleCloud – An Infrastructure As Code (IaC) Deployment Of A Small Active Directory Pentest Lab In The Cloud
Pentest Cyber Range for a small Active Directory Domain. Automated templates for building your own Pentest/Red Team/Cyber Range in the...
OpenRedireX – Asynchronous Open redirect Fuzzer for Humans
A Fuzzer For OpenRedirect Issues.Key Features :Takes a url or list of urls and fuzzes them for Open redirect issuesYou...
Hyland OnBase 19.x and below – Path Traversal
Posted by AdaptiveSecurity Consulting via Fulldisclosure on Sep 07CVSSv3.1 Score ------------------------------------------------- AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H Vendor ------------------------------------------------- Hyland Software - (https://www.hyland.com/en/ and https://www.onbase.com/en/)...
Hyland OnBase 19.x and below – DLL Hijacking
Posted by AdaptiveSecurity Consulting via Fulldisclosure on Sep 07CVSSv3.1 Score ------------------------------------------------- AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H Vendor ------------------------------------------------- Hyland Software - (https://www.hyland.com/en/ and https://www.onbase.com/en/)...
Hyland OnBase 19.x and below – Unity Client Malformed Image Denial Of Service
Posted by AdaptiveSecurity Consulting via Fulldisclosure on Sep 07CVSSv3.1 Score ------------------------------------------------- AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L Vendor ------------------------------------------------- Hyland Software - (https://www.hyland.com/en/ and https://www.onbase.com/en/)...
Hyland OnBase 19.x and below – Hardcoded PKI Certificates And AES Key Material
Posted by AdaptiveSecurity Consulting via Fulldisclosure on Sep 07CVSSv3.1 Score ------------------------------------------------- AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N Vendor ------------------------------------------------- Hyland Software - (https://www.hyland.com/en/ and https://www.onbase.com/en/)...
Hyland OnBase 19.x and below – Log Injection And Denial Of Service
Posted by AdaptiveSecurity Consulting via Fulldisclosure on Sep 07CVSSv3.1 Score ------------------------------------------------- AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H Vendor ------------------------------------------------- Hyland Software - (https://www.hyland.com/en/ and https://www.onbase.com/en/)...
