Kernel Exploit Demo – Windows 10 privesc via WARBIRD
2017-12-02
In my previous post, I showed a number of ways of gaining SYSTEM privileges. The post ended up being a lot more successful than I thought it would, so thanksRead More →
National Credit Federation leaked US citizen data through unsecured AWS bucket
2017-12-01
Tens of thousands of customers of the credit repair service are believed to be affected. The National Credit Federation (NCF) has become the latest in a long list of companies to leaveRead More →
CISCO PATCHES CRITICAL PLAYBACK BUGS IN WEBEX PLAYERS
2017-12-01
Cisco Systems issued a Critical alert on Wednesday warning of multiple vulnerabilities in its popular WebEx player. Six bugs were listed in the security advisory, each of them relating to holesRead More →
Persistent drive-by cryptomining coming to a browser near you
2017-11-30
Since our last blog on drive-by cryptomining, we are witnessing more and more cases of abuse involving the infamous Coinhive service that allows websites to use their visitors to mine theRead More →
Shipping giant refuses to pay hackers ransom after data stolen
2017-11-30
Clarksons, the global shipping firm, has turned the tables on criminal hackers who attempted to extort a ransom payment after stealing confidential information from the company’s network. The business, whichRead More →
JUST A PAIR OF THESE $11 RADIO GADGETS CAN STEAL A CAR
2017-11-29
FOR YEARS, AUTOMAKERS and hackers have known about a clever attack that spoofs the signal from a wireless car key fob to open a vehicle’s doors, and even drive it away.Read More →
GOOGLE DETECTS AND BOOTS TIZI SPYWARE OFF GOOGLE PLAY
2017-11-29
The Google Play Protect team said it identified a new strain of Android spyware called Tizi found inside several apps previously available via the Google Play marketplace. The recent discoveryRead More →
macOS bug lets you log in as admin with no password required
2017-11-29
Here’s how to protect yourself until Apple patches bafflingly bad bug. In one of Apple’s biggest security blunders in years, a bug in macOS High Sierra allows untrusted users toRead More →
Fake WhatsApp Updater on the Google Play Store was Downloaded Over 1 Million Times, Served Malware Through Ads
2017-11-28
The Google Play Store is a little more open than its competition, such as the iOS App Store. With the uploading of applications being so cheap, a free SDK toRead More →
Terror exploit kit goes HTTPS all the way
2017-11-28
We’ve been following the Terror exploit kit during the past few months and observed notable changes in both its redirection mechanism and infrastructure, which have made capturing it in theRead More →
