CVE-2015-2545: overview of current threats
...SP1. The error enables an attacker to execute arbitrary code using a specially crafted EPS image file. The exploit uses PostScript and can evade Address Space Layout Randomization (ASLR) and... more…
Website Cross-contamination: Blackhat SEO Spam Malware
...nokia mobil dawnload xnx nokia games e72 wap download game prince of persia320x240 vxp games nokia 216 satamatka134 samsung gt s5222 foot ball games download pes 2018 for nokia 216... more…SYSCON Backdoor Uses FTP as a C&C Channel
...same threat actor. Decoding each Base64 string results in a cabinet file. One string contains a 32-bit version of the malware; the other contains a 64-bit version. The appropriate version... more…Unfolding the Mystery of Cerber Ransomware’s Random File Extension
...(.caz) that contains code to decrypt the Cerber file. A component of NSIS follows: The file .ch is the encrypted Cerber file. The first DWORD of the file is the... more…The Ventir Trojan: assemble your MacOS spy
...We got an interesting file (MD5 9283c61f8cce4258c8111aaf098d21ee) for analysis a short while ago. It turned out to be a sample of modular malware for MacOS X. Even after preliminary... more…Backdoor-carrying Emails Set Sights on Russian-speaking Businesses
...dynamic-link library (DLL) file related to these attacks was uploaded to VirusTotal last June 6, 2017. This somewhat coincides with the spate of emails we saw during the period between... more…Janus Android App Signature Bypass Allows Attackers to Modify Legitimate Apps
...other apps and access the information of the user. Vulnerability analysis The installation packages of Android apps (.APK files) are actually .ZIP files. The .ZIP file format has several characteristics... more…McAfee Uncovers Operation Honeybee, a Malicious Document Campaign Targeting Humanitarian Aid Groups
...the implants described in our analysis. Technical Analysis Let’s start with an overview of the attack: We continue with the components involved in this operation. The malicious Word file is... more…Polyglot – the fake CTB-locker
...infected file is launched, nothing appears to happen. However, the cryptor copies itself under random names to a dozen or so places, writes itself to the autostart folder and to... more…ChessMaster Adds Updated Tools to Its Arsenal
...an email with an attached malicious document using the doc, docx, rtf, csv and msg formats. The email title and attached file name were written in Japanese and contain general... more…Tinymce PHP file Manager, Remote File upload vulnrablity
...Title :Tinymce PHP file Manager, Remote File upload vulnrablity server : LinuxAuthor: NoentryPHC Type : webapp Exploit Hamr : remote shell upload Dork : inurl:/file_manager.php?type=img Goto google.com and type... more…Facebook malware: tag me if you can
...worldwide. The first stage of the attack started when the user clicked on the “mention”. A malicious file seized control of their browsers, terminating their legitimate browser session and replacing... more…A malicious pairing of cryptor and stealer
...there: some versions of RAA also include a Pony Trojan file, which steals confidential information from the infected computer. Using the stolen data, the cybercriminals can gain access to the... more…Timeline of Sandworm Attacks
...attacker can control two external variables to invoke different paths inside the affected component package.dll. The variables are: OLE Verbs and Embedded File Type. Vulnerability time cycle Looking at the... more…Want to Break Into a Locked Windows 10 Device? Ask Cortana (CVE-2018-8140)
...begin this analysis with a quick look into Windows indexing. If you have ever opened the advanced view of the Windows Indexing control panel, and navigated to the File Types... more…Analyzing Operation GhostSecret: Attack Seeks to Steal Data Worldwide
...two days after it was compiled. This Korean-language file used the control server IP address 203.131.222.83. The implant is nearly identical to an unknown 2017 sample (8f2918c721511536d8c72144eabaf685ddc21a35) except that the... more…Kam dál?
- Hacking is Sexy, But Defending is the Grown-up Thing To Do
- IoT security threats and how to handle them
- Wikimedia: Right to be forgotten results in ‘Internet riddled with memory holes’
- Attacker grabs data for 3.6 million South Carolina taxpayers; governor wants to see culprit "brutalized"
- Fastest magnetic read/write ever is incredibly energy efficient
- F-Secure Explains Why It Missed Spotting Flame, Despite Having Seen It Two Years Ago
- Facebook reports a 24 percent rise in government requests for user data
- Sabotage suspected in Egypt submarine cable cut
- Microsoft Internet Explorer CVE-2015-6044 Remote Privilege Escalation Vulnerability
- Google says Gmail users can’t expect privacy