TCP Bind Shell in Assembly (ARM 32-bit)
2017-12-29
In this tutorial, you will learn how to write TCP bind shellcode that is free of null bytes and can be used as shellcode for exploitation. When I talk aboutRead More →
How Memory Leaks Happen in a Java Application
2017-12-29
Introduction to Memory Leaks In Java Apps One of the core benefits of Java is the JVM, which is an out-of-the-box memory management. Essentially, we can create objects and the Java Garbage Collector willRead More →
Russia Might Be Hacking FBI And Stealing Fingerprints Of Millions, Says Report
2017-12-28
If a mere speculation is to be believed, the biometric data of millions of Americans could be at the risk of being compromised by Russian hackers. They could “even compromiseRead More →
HACKERS CAN RICKROLL THOUSANDS OF SONOS AND BOSE SPEAKERS OVER THE INTERNET
2017-12-28
PERHAPS YOU’VE BEEN hearing strange sounds in your home—ghostly creaks and moans, random Rick Astley tunes, Alexa commands issued in someone else’s voice. If so, you haven’t necessarily lost your mind.Read More →
The Wildly Popular Christmas Game That Got Mistaken for Spyware
2017-12-27
How ‘Elf Bowling,’ the incredibly popular viral game from 1999, became an early victim of what we might now call “fake news.” I know this sounds pretty crazy and dangerous,Read More →
THE WIFI REPEATER YOU PROBABLY HAVE ON YOUR BENCH
2017-12-27
Few things are as frustrating as a WiFi signal that drops in and out. On a public network it is bad enough but at home? Even if you can liveRead More →
BadRabbit Ransomware Decided to Avoid One Antivirus Vendor
2017-12-26
Security researchers are noticing something curious about Tuesday’s BadRabbit ransomware outbreak. Apparently, the malicious code is built to avoid encrypting PCs running antivirus from a certain vendor. Researchers at FireEye noticed the issueRead More →
Sednit update: How Fancy Bear Spent the Year
2017-12-26
The Sednit group — also known as Strontium, APT28, Fancy Bear or Sofacy — is a group of attackers operating since 2004, if not earlier, and whose main objective is to stealRead More →
CVE-2017-7344 Fortinet FortiClient Windows privilege escalation at logon
2017-12-25
A setting, disabled by default, enables FortiClient on the logon screen to allow users to connect to a VPN profile before logon. An attacker, with physical, or remote (e.g. throughRead More →
HUAWEI ROUTER VULNERABILITY USED TO SPREAD MIRAI VARIANT
2017-12-23
Researchers have identified a vulnerability in a Huawei home router model that is being exploited by an adversary to spread a variant of the Mirai malware called Okiku, also knownRead More →
