Vulnerabilities (Page 200)

Web Scripting Language PHP-7 Vulnerable to Remote Exploits

On: August 27, 2016

In: Important, Incidents, Vulnerabilities

Exploiting server side bugs is a jackpot for hackers. Users tend to keep their data in one big pot – the server. This allows attackers to focus on one target,Read More →

Monitoring SSL traffic now everyone’s concern: A10 Networks

On: August 26, 2016

In: Important, Incidents, Vulnerabilities

As the uptake of SSL grows, Tim Blombery, systems engineer at A10 Networks, said threat actors are increasingly leveraging SSL-based encryption to hide malicious activity. As usage of Secure SocketsRead More →

SWEET32 Attack: 3DES and Blowfish Ciphers Considered Insecure

On: August 26, 2016

In: Incidents, Vulnerabilities

HTTPS and VPN traffic broken with new semi-practical attack. Two scientists from the French Institute for Research in Computer Science and Automation (INRIA) have published new research that details an attackRead More →

Linux.PNScan Trojan is back to compromise routers and install backdoors

On: August 25, 2016

In: Important, Incidents, Malware, Vulnerabilities

The Linux Trojan Linux.PNScan is back and it is actively targeting routers based on x86 Linux in an attempt to install backdoors on them. Yesterday I wrote about a new LinuxRead More →

Over 25 million accounts stolen after Mail.ru forums hacked

On: August 25, 2016

In: Incidents, Vulnerabilities

Two hackers were able to steal email addresses and easily crackable passwords from three separate forums in this latest hack. Over 25 million accounts associated with forums hosted by RussianRead More →

HTTPS and OpenVPN face new attack that can decrypt secret cookies

On: August 25, 2016

In: Important, Incidents, Vulnerabilities

More than 600 sites found to be vulnerable to demanding exploit called Sweet32. Researchers have devised a new attack that can decrypt secret session cookies from about 1 percent of theRead More →

Navis WebAccess app used by US Ports is affected by a SQL injection flaw

On: August 24, 2016

In: Vulnerabilities

The Navis WebAccess application used in the transportation sector worldwide is affected by a high severity SQL injection vulnerability. A software used in the US ports is affected by aRead More →

Critical Flaws Let Attackers Hijack Cellular Phone Towers

On: August 24, 2016

In: Important, Incidents, Mobile Security, Vulnerabilities

During the last weeks we’ve been investigating multiple aspects of GSM security such as protocol vulnerabilities as well as source auditing the world’s most common open source software products thatRead More →

NSA-linked Cisco exploit poses bigger threat than previously thought

On: August 24, 2016

In: Incidents, Vulnerabilities

With only a small amount of work, ExtraBacon will commandeer new versions of ASA. Recently released code that exploits Cisco System firewalls and has been linked to the National Security AgencyRead More →

Epic’s forums hacked again, with thousands of logins stolen

On: August 23, 2016

In: Incidents, Vulnerabilities

More than 800,000 usernames and email addresses were taken, but most of the passwords aren’t readable or easily crackable. The company later confirmed. A hacker has stolen hundreds of thousandsRead More →

Vulnerabilities (Page 200)

Web Scripting Language PHP-7 Vulnerable to Remote Exploits

Monitoring SSL traffic now everyone’s concern: A10 Networks

SWEET32 Attack: 3DES and Blowfish Ciphers Considered Insecure

Linux.PNScan Trojan is back to compromise routers and install backdoors

Over 25 million accounts stolen after Mail.ru forums hacked

HTTPS and OpenVPN face new attack that can decrypt secret cookies

Navis WebAccess app used by US Ports is affected by a SQL injection flaw

Critical Flaws Let Attackers Hijack Cellular Phone Towers

NSA-linked Cisco exploit poses bigger threat than previously thought

Epic’s forums hacked again, with thousands of logins stolen

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

Hacking with MagicDots: Exploiting Dots & Spaces in Filenames/Pathnames for Permanent Admin Rights

Compromising Cryptographic Key Security Through PuTTY: A Deep Dive into CVE-2024-31497

How to hack a LG Smart TV via vulnerabilities in LG WebOS?

How to Check if a Linux Distribution is Compromised by the XZ Utils Backdoor in 6 Steps

CVE-2023-5528: Kubernetes Flaw Jeopardizing Windows Node That Can’t Be Ignored

The 11 Essential Falco Cloud Security Rules for Securing Containerized Applications at No Cost

Hack-Proof Your Cloud: The Step-by-Step Continuous Threat Exposure Management CTEM Strategy for AWS & AZURE

Web-Based PLC Malware: A New Technique to Hack Industrial Control Systems

The API Security Checklist: 10 strategies to keep API integrations secure

11 ways of hacking into ChatGpt like Generative AI systems

How to send spoof emails from domains that have SPF and DKIM protections?

Silent Email Attack CVE-2023-35628 : How to Hack Without an Email Click in Outlook

How to Bypass EDRs, AV with Ease using 8 New Process Injection Attacks

Is Your etcd an Open Door for Cyber Attacks? How to Secure Your Kubernetes Clusters & Nodes

CVSS 4.0 Explained: From Complexity to Clarity in Vulnerability Assessment

Major Python Infrastructure Breach – Over 170K Users Compromised. How Safe Is Your Code?

How to exploit Windows Defender Antivirus to infect a device with malware

Inside the Scam: How Ransomware Gangs Fool You with Data Deletion Lies!

How to Bypass EDRs, AV with Ease using 8 New Process Injection Attacks

How hrserver.dll stealthy webshell can mimic Google’s Web Traffic to hide and compromise networks

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]