“Chaos” gives attackers, and follow-on attackers, full control over infected boxes. A stealthy backdoor undetected by antimalware providers is giving unknown attackers complete control over at least 100 Linux servers thatRead More →
The free VPN of Facebook called Onavo has been dedicated for five years to collect private information of its users, such as installed applications or Internet browsing habits, according toRead More →
Last week companies specialized in cyber security discovered the existence of a new Persistent Advanced Threat APT, supposedly sponsored by Dark Caracal, an organization dedicated to espionage. Since 2012, he has performedRead More →
Google has launched an ad-blocker for its Chrome web browser that is designed by information security experts to prevent “annoying” and “intrusive” ads being shown to users. Sites will have 30 daysRead More →
If you’ve ever run across insecure PXE boot deployments during a pentest, you know that they can hold a wealth of possibilities for escalation. Gaining access to PXE boot imagesRead More →
Hackers have been taking advantage of the Word macro, the small pieces of code are injected into documents to automate certain tasks, to hide malware within the documents that, whenRead More →
This note will explore the life cycle of an attack, how a victim may be infected and what an attacker could do to avoid detection by antivirus systems (AV). GeneralRead More →
A security flaw in the Skype update process can allow an attacker to gain system-level privileges on a vulnerable computer. “…the error, if exploited, can derive a local user whoRead More →
Lizard Squad is a group of hackers that was dedicated to cause damage through DDoS attacks. Throughout their career they came to knock down many of the most popular services,Read More →
OnePlus has confirmed that more than 40,000 customers have been affected by an attack on the payment page by a malicious code has been operating capturing and sending information fromRead More →
