Data Security (Page 2)

Data Security News | Infosec Blog | Information Security Tutorials

Source Code Gone Missing: Microsoft Baffled by Stealthy Hack

On: March 11, 2024

In a significant cybersecurity incident, Russian state-backed hackers gained access to some of Microsoft’s core software systems. This breach, first disclosed in January, marks a critical escalation in cyber-espionage activitiesRead More →

Web-Based PLC Malware: A New Technique to Hack Industrial Control Systems

On: March 8, 2024

In: Data Security, Tutorials

In a significant development that could reshape the cybersecurity landscape of industrial control systems (ICS), a team of researchers from the Georgia Institute of Technology has unveiled a novel formRead More →

How to Infiltrate Industrial OT Networks and Stay Undetected for Half a Decade

On: February 8, 2024

In: Data Security, Important

The Cybersecurity and Infrastructure Security Agency (CISA), in collaboration with the National Security Agency (NSA), Federal Bureau of Investigation (FBI), and international partners, has issued a critical advisory warning aboutRead More →

Hacking Debian, Ubuntu, Redhat& Fedora servers using a single vulnerability in 2024

On: February 1, 2024

In: Data Security, Vulnerabilities

The recent discovery of a significant flaw in the GNU C Library (glibc), a fundamental component of major Linux distributions, has raised serious security concerns. This flaw grants attackers rootRead More →

Exploit code: How the New Jenkins Vulnerability Could Compromise Your Data

On: January 29, 2024

In: Data Security, Vulnerabilities

Recent news about a critical vulnerability in Jenkins, identified as CVE-2024-23897, has raised significant concerns in the cybersecurity community. This vulnerability has been highlighted due to the publication of aRead More →

How to steal Windows password via Outlook email exploiting vulnerabilities in Windows Performance Analyzer (WPA) and File Explorer

On: January 22, 2024

In: Data Security, Forensics, Vulnerabilities

Varonis Threat Labs has uncovered a significant vulnerability in Microsoft Outlook (CVE-2023-35636) that allows attackers to access NTLM v2 hashed passwords. This discovery also includes vulnerabilities in Windows Performance AnalyzerRead More →

How to exploit Windows Defender Antivirus to infect a device with malware

On: January 15, 2024

In: Data Security, Incidents, Malware

Trend Micro’s recent threat hunting efforts have uncovered active exploitation of CVE-2023-36025, a vulnerability in Microsoft Windows Defender SmartScreen, by a new strain of malware known as Phemedrone Stealer. ThisRead More →

11 ways of hacking into ChatGpt like Generative AI systems

On: January 8, 2024

In: Data Security, Important, Tutorials

In the rapidly evolving landscape of artificial intelligence, generative AI systems have become a cornerstone of innovation, driving advancements in fields ranging from language processing to creative content generation. However,Read More →

How to hack Google Kubernetes Engine (GKE)? Securing against GKE threats

On: December 28, 2023

In: Important, Vulnerabilities

A recent investigation by Unit 42 of Palo Alto Networks has uncovered a dual privilege escalation chain in Google Kubernetes Engine (GKE). This vulnerability, stemming from specific configurations in GKE’sRead More →

How to send spoof emails from domains that have SPF and DKIM protections?

On: December 20, 2023

In: Data Security, Important, Tutorials

SMTP stands for Simple Mail Transfer Protocol. It’s a protocol used for sending emails across the Internet. SMTP operates on a push model, where the sending server pushes the emailRead More →

Data Security (Page 2)

Source Code Gone Missing: Microsoft Baffled by Stealthy Hack

Web-Based PLC Malware: A New Technique to Hack Industrial Control Systems

How to Infiltrate Industrial OT Networks and Stay Undetected for Half a Decade

Hacking Debian, Ubuntu, Redhat& Fedora servers using a single vulnerability in 2024

Exploit code: How the New Jenkins Vulnerability Could Compromise Your Data

How to steal Windows password via Outlook email exploiting vulnerabilities in Windows Performance Analyzer (WPA) and File Explorer

How to exploit Windows Defender Antivirus to infect a device with malware

11 ways of hacking into ChatGpt like Generative AI systems

How to hack Google Kubernetes Engine (GKE)? Securing against GKE threats

How to send spoof emails from domains that have SPF and DKIM protections?

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

Hacking with MagicDots: Exploiting Dots & Spaces in Filenames/Pathnames for Permanent Admin Rights

Compromising Cryptographic Key Security Through PuTTY: A Deep Dive into CVE-2024-31497

How to hack a LG Smart TV via vulnerabilities in LG WebOS?

How to Check if a Linux Distribution is Compromised by the XZ Utils Backdoor in 6 Steps

CVE-2023-5528: Kubernetes Flaw Jeopardizing Windows Node That Can’t Be Ignored

The 11 Essential Falco Cloud Security Rules for Securing Containerized Applications at No Cost

Hack-Proof Your Cloud: The Step-by-Step Continuous Threat Exposure Management CTEM Strategy for AWS & AZURE

Web-Based PLC Malware: A New Technique to Hack Industrial Control Systems

The API Security Checklist: 10 strategies to keep API integrations secure

11 ways of hacking into ChatGpt like Generative AI systems

How to send spoof emails from domains that have SPF and DKIM protections?

Silent Email Attack CVE-2023-35628 : How to Hack Without an Email Click in Outlook

How to Bypass EDRs, AV with Ease using 8 New Process Injection Attacks

Is Your etcd an Open Door for Cyber Attacks? How to Secure Your Kubernetes Clusters & Nodes

CVSS 4.0 Explained: From Complexity to Clarity in Vulnerability Assessment

Major Python Infrastructure Breach – Over 170K Users Compromised. How Safe Is Your Code?

How to exploit Windows Defender Antivirus to infect a device with malware

Inside the Scam: How Ransomware Gangs Fool You with Data Deletion Lies!

How to Bypass EDRs, AV with Ease using 8 New Process Injection Attacks

How hrserver.dll stealthy webshell can mimic Google’s Web Traffic to hide and compromise networks

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]