Vulnerabilities (Page 202)

Navis WebAccess app used by US Ports is affected by a SQL injection flaw

On: August 24, 2016

The Navis WebAccess application used in the transportation sector worldwide is affected by a high severity SQL injection vulnerability. A software used in the US ports is affected by aRead More →

Critical Flaws Let Attackers Hijack Cellular Phone Towers

On: August 24, 2016

In: Important, Incidents, Mobile Security, Vulnerabilities

During the last weeks we’ve been investigating multiple aspects of GSM security such as protocol vulnerabilities as well as source auditing the world’s most common open source software products thatRead More →

NSA-linked Cisco exploit poses bigger threat than previously thought

On: August 24, 2016

In: Incidents, Vulnerabilities

With only a small amount of work, ExtraBacon will commandeer new versions of ASA. Recently released code that exploits Cisco System firewalls and has been linked to the National Security AgencyRead More →

Epic’s forums hacked again, with thousands of logins stolen

On: August 23, 2016

In: Incidents, Vulnerabilities

More than 800,000 usernames and email addresses were taken, but most of the passwords aren’t readable or easily crackable. The company later confirmed. A hacker has stolen hundreds of thousandsRead More →

OBIHAI PATCHES MEMORY CORRUPTION, DOS, CSRF VULNERABILITIES IN IP PHONES

On: August 23, 2016

In: Vulnerabilities

Obihai Technology recently patched vulnerabilities in its ObiPhone IP phones that could have led to memory corruption, buffer overflow, and denial of service conditions, among other outcomes. The California-based company manufacturesRead More →

New Alma Locker Ransomware being distributed via the RIG Exploit Kit

On: August 23, 2016

In: Malware, Vulnerabilities

A new ransomware called Alma Locker has been discovered by Proofpoint researcher Darien Huss that encrypts a victim’s data and then demands a ransom of 1 bitcoin within five days. There has been aRead More →

Smishing Campaign Uses Twilio to Deliver DroidJack Malware

On: August 22, 2016

In: Important, Incidents, Malware, Vulnerabilities

This week we’ve detected an unsophisticated piece of malware targeting mobile subscribers in North America. The malware termed a RAT (remote access tool) is being sent via SMS in theRead More →

How Bitcoin helped fuel an explosion in ransomware attacks

On: August 22, 2016

In: Incidents, Vulnerabilities

Secure payment system Bitcoin has many legitimate uses, but like other technologies, it’s also been beneficial to cybercriminals seeking new ways to extort money. Ransomware is booming. Be it Locky,Read More →

Multiple Vulnerabilities in BHU WiFi “uRouter”

On: August 22, 2016

In: Vulnerabilities

The BHU WiFi uRouter, manufactured and sold in China, looks great – and it contains multiple critical vulnerabilities. An unauthenticated attacker could bypass authentication, access sensitive information stored in itsRead More →

Around Four in Five DNSSEC Servers Can Be Hijacked for DDoS Attacks

On: August 22, 2016

In: Important, Incidents, Malware, Vulnerabilities

DNSSEC is the best tool to protect against DNS hijacking and DNS cache poisoning but can be hijacked for DDoS attacks. Network security firm Neustar says that around 80 percentRead More →

Vulnerabilities (Page 202)

Navis WebAccess app used by US Ports is affected by a SQL injection flaw

Critical Flaws Let Attackers Hijack Cellular Phone Towers

NSA-linked Cisco exploit poses bigger threat than previously thought

Epic’s forums hacked again, with thousands of logins stolen

OBIHAI PATCHES MEMORY CORRUPTION, DOS, CSRF VULNERABILITIES IN IP PHONES

New Alma Locker Ransomware being distributed via the RIG Exploit Kit

Smishing Campaign Uses Twilio to Deliver DroidJack Malware

How Bitcoin helped fuel an explosion in ransomware attacks

Multiple Vulnerabilities in BHU WiFi “uRouter”

Around Four in Five DNSSEC Servers Can Be Hijacked for DDoS Attacks

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

MFA? Irrelevant. CitrixBleed 2 Lets Hackers Take Over Without Logging In

MotW Bypassed: Zero Warning, Full Control – New WinRAR Flaw Silently Bypasses Windows Security

New Vulnerability in GCP Cloud Run Shows Why Least Privilege Isn’t Enough

Hackers Can Manipulate Your Heart Rate Monitor – Unbelievable Security Flaw!

FortiGate Firewalls Zero-Day Chaos: How Hackers Are Gaining Control of Firewalls Worldwide – Is Your Network at Risk?

How TokenBreak Technique Hacks OpenAI, Anthropic, and Gemini AI Filters — Step-by-Step Tutorial

Comparing Top 8 AI Code Assistants: Productivity Miracle or Security Nightmare. Can You Patent AI Code Based App?

No Login Required: How Hackers Hijack Your System with Just One Keystroke: utilman.exe Exploit Explained

How to Send DKIM-Signed, 100% Legit Phishing Emails — Straight from Google That Bypass Everything

A Malware That EDR Can’t See?If You Rely on Antivirus for Protection, Read This Before It’s Too Late!

WinRAR and ZIP File Exploits: This ZIP File Hack Could Let Malware Bypass Your Antivirus

5 Techniques Hackers Use to Jailbreak ChatGPT, Gemini, and Copilot AI systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hacking Pagers to Explosions: Israel’s Covert Cyber-Physical Sabotage Operation Against Hezbollah!

Five Techniques for Bypassing Microsoft SmartScreen and Smart App Control (SAC) to Run Malware in Windows

How Lynx Ransomware Extorts Millions from U.S. Companies

A Malware That EDR Can’t See?If You Rely on Antivirus for Protection, Read This Before It’s Too Late!

Top 2 Malicious Python Packages You Must Avoid! Zebo-0.1.0 & Cometlogger-0.1

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hackers’ Guide to Rogue VM Deployment: Lessons from the MITRE hack

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]