Windows (Page 2)

Unpatched severe vulnerability with CVVS score of 7.7 in VMware’s Cloud Foundation, ESXi, Fusion and Workstation platforms

On: January 7, 2022

Cybersecurity specialists report the detection of a critical vulnerability in some VMware products, including Cloud Foundation, Fusion and Workstation. According to the report, the successful exploitation of these flaws wouldRead More →

New exploit for critical vulnerabilities in Active Directory; Microsoft recommends that you patching ASAP

On: December 20, 2021

In: Vulnerabilities

In its latest security alert, Microsoft asked its customers to apply available updates to fix two privilege escalation vulnerabilities in Active Directory whose exploitation would allow threat actors to easilyRead More →

DarkWatchman: This advanced fileless malware only writes data in Windows Registry thus can’t be detected by security solutions

On: December 16, 2021

In: Malware

Prevailion security specialists report that a newly identified spear phishing campaign is distributing a new remote access Trojan (RAT) capable of manipulating Windows Registry in order to evade the mostRead More →

This 12Kb-sized ransomware can exploit Log4j critical vulnerability and encrypt your network

On: December 15, 2021

In: Malware

For days now, the cybersecurity community has been following the active exploitation of CVE-2021-44228, a critical vulnerability in the Log4j log library. Among the multiple reports that have appeared isRead More →

CVE-2021-24084: Critical zero-day vulnerability in Windows 10. No patch available

On: December 1, 2021

In: Vulnerabilities

A group of researchers has released unofficial security patches to address a zero-day vulnerability of local privilege escalation on Windows 10 systems versions 1809 and later. According to reports, thisRead More →

Zero-day vulnerability in Zoom affects Linux, Windows, Apple and Android users

On: November 30, 2021

In: Vulnerabilities

Zoom security teams announced the release of patches for two vulnerabilities that could affect Windows, iOS, macOS, Android and Linux users. Reported by Google Project Zero, the flaws reside inRead More →

Dangerous hacking group attacks vulnerable Docker servers in cryptocurrency mining campaign

On: November 10, 2021

In: Data Security

According to a report by Trend Micro, the hacking group identified as TeamTNT has been attacking Docker servers with exposed REST APIs as part of an ambitious exploitation campaign, resortingRead More →

CVE-2021-34484: Zero-day vulnerability affects billions of Windows users. No patch available

On: October 29, 2021

In: Vulnerabilities

A recent report details the steps to exploit a zero-day vulnerability in Windows systems whose exploitation would allow threat actors to escalate their privileges to system user under certain conditions.Read More →

TIME TO WORK FOR SYSADMINS: Adobe fixes 90 VULNERABILITIES in 19 of its products

On: October 26, 2021

In: Vulnerabilities

This week, Adobe announced the release of a huge set of security patches to address more than 90 vulnerabilities whose exploitation could put users of Windows, Linux and macOS systemsRead More →

3 malicious npm JavaScript libraries recently discovered can install crypto miners on Windows, Linux and Mac devices

On: October 22, 2021

In: Malware

The developers of Sonatype, an automated malware detection system, report the finding of a set of malicious packages in the npm registry; According to the report, these malicious payloads areRead More →

Windows (Page 2)

Unpatched severe vulnerability with CVVS score of 7.7 in VMware’s Cloud Foundation, ESXi, Fusion and Workstation platforms

New exploit for critical vulnerabilities in Active Directory; Microsoft recommends that you patching ASAP

DarkWatchman: This advanced fileless malware only writes data in Windows Registry thus can’t be detected by security solutions

This 12Kb-sized ransomware can exploit Log4j critical vulnerability and encrypt your network

CVE-2021-24084: Critical zero-day vulnerability in Windows 10. No patch available

Zero-day vulnerability in Zoom affects Linux, Windows, Apple and Android users

Dangerous hacking group attacks vulnerable Docker servers in cryptocurrency mining campaign

CVE-2021-34484: Zero-day vulnerability affects billions of Windows users. No patch available

TIME TO WORK FOR SYSADMINS: Adobe fixes 90 VULNERABILITIES in 19 of its products

3 malicious npm JavaScript libraries recently discovered can install crypto miners on Windows, Linux and Mac devices

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

Hacking with MagicDots: Exploiting Dots & Spaces in Filenames/Pathnames for Permanent Admin Rights

Compromising Cryptographic Key Security Through PuTTY: A Deep Dive into CVE-2024-31497

How to hack a LG Smart TV via vulnerabilities in LG WebOS?

How to Check if a Linux Distribution is Compromised by the XZ Utils Backdoor in 6 Steps

CVE-2023-5528: Kubernetes Flaw Jeopardizing Windows Node That Can’t Be Ignored

The 11 Essential Falco Cloud Security Rules for Securing Containerized Applications at No Cost

Hack-Proof Your Cloud: The Step-by-Step Continuous Threat Exposure Management CTEM Strategy for AWS & AZURE

Web-Based PLC Malware: A New Technique to Hack Industrial Control Systems

The API Security Checklist: 10 strategies to keep API integrations secure

11 ways of hacking into ChatGpt like Generative AI systems

How to send spoof emails from domains that have SPF and DKIM protections?

Silent Email Attack CVE-2023-35628 : How to Hack Without an Email Click in Outlook

How to Bypass EDRs, AV with Ease using 8 New Process Injection Attacks

Is Your etcd an Open Door for Cyber Attacks? How to Secure Your Kubernetes Clusters & Nodes

CVSS 4.0 Explained: From Complexity to Clarity in Vulnerability Assessment

Major Python Infrastructure Breach – Over 170K Users Compromised. How Safe Is Your Code?

How to exploit Windows Defender Antivirus to infect a device with malware

Inside the Scam: How Ransomware Gangs Fool You with Data Deletion Lies!

How to Bypass EDRs, AV with Ease using 8 New Process Injection Attacks

How hrserver.dll stealthy webshell can mimic Google’s Web Traffic to hide and compromise networks

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]