SIGRed (CVE-2020-1350) is a wormable, critical vulnerability (CVSS base score of 10.0) in the Windows DNS server that affects Windows Server versions 2003 to 2019, and can be triggered by a malicious DNS response. As the service is running in elevated privileges (SYSTEM), if exploited successfully, an attacker is granted […]
Daily archives: July 14, 2020
16 posts
Join the Telegram channel On Friday, July 10, Google announced it would no longer allow advertising for spyware and similar surveillance technology—often referred to as “stalkerware”—on its platform. The change is a welcome step by one of the largest, most powerful companies in online advertising, but a close read of […]
Join the Telegram channel An open-source binary debugger for Windows, aimed at malware analysis and reverse engineering of executables you do not have the source code for. There are many features available and a comprehensive plugin system to add your own. You can find more information on the blog! Screenshots […]
Join the Telegram channel This blog post is part three of our three-part series on macro authentication. Be sure to catch up on part one and part two before reading, as this blog post will discuss advanced troubleshooting techniques and assume knowledge from the first two. In our previous post, […]
Join the Telegram channel Introduction Brazil is a well-known country with plenty of banking trojans developed by local crooks. The Brazilian criminal underground is home to some of the world’s busiest and most creative perpetrators of cybercrime. Like their counterparts’ in China and Russia, their cyberattacks have a strong local […]
Join the Telegram channel What once seemed like science fiction is now a reality: we are building smart homes. However, the more smart devices we buy, the more apps are overloading our mobile phones and tablets – so much clutter! The latest solution is the smart home hub. These smart […]
Join the Telegram channel A second tax software program associated with the Chinese banking industry has now been found to contain an embedded backdoor that secretly grants attackers SYSTEM-level privileges. In late June, researchers from Trustwave SpiderLabs reported that accounting software called Intelligence Tax, developed by Chinese information security company […]
Join the Telegram channel Last week on Malwarebytes Labs, we took an in-depth look at card skimmers targeting ASP sites, we released another episode of Lock and Code exploring the Internet of Things, and we dug into a Mac mystery. We also examined some pre-installed malware, and put out a […]
Join the Telegram channel Russia stopped blocking the popular Telegram messenger almost a month ago. However, the related Telegraph service continued to be blocked. Now Russia has also unblocked the Telegraph platform for publishing and creating articles. The Telegraph platform was launched by the Telegram team in November 2016. It […]
Join the Telegram channel Video and audio conferencing software, Zoom patched a zero-day vulnerability that was affecting users running old versions of Windows: Windows 7, Windows Server 2008 R2 and earlier. The flaw was detected on Thursday and later published in a blog post by security research organization ACROS Security.The […]
Join the Telegram channel According to a few recent surveys and analysis conducted by some well-known and influential cybersecurity agencies, there are approximately 3 top malwares that the users should be aware of. ‘Gate-crashing’ enterprises and users globally are Trojans, Backdoors, and Droppers which comprise 72 percent of the total […]
Join the Telegram channel A report from Sift on ‘Content Abuse and the Fraud Economy’ explores the rising arena of online frauds and content abuse in 2020, detailing how content abuse tricks users for falling for the fraud and giving it an air of legitimacy. The report also exposes a […]
Join the Telegram channel This CLI framework is based on sploitkit and is an attempt to gather hacking techniques and exploits especially focused on drone hacking. For the ease of use, the interface has a layout that looks like Metasploit.Black Hat Europe Arsenal 2019 presentationAlso see articles: Black Hat Europe: […]
Join the Telegram channel CLI tool and library to execute padding oracle attacks easily, with support for concurrent network requests and an elegant UI. InstallMake sure Node.js is installed, then run $ npm install --global padding-oracle-attacker or $ yarn global add padding-oracle-attacker CLI Usage Usage $ padding-oracle-attacker decrypt <url> hex:<ciphertext_hex> […]
Join the Telegram channel In our latest episode of Security Nation, we spoke with Nina Alli, executive director of the Biohacking Village, to discuss cybersecurity in the healthcare industry, from the role of informed medical consumerism to the influence of citizen science on patient advocacy and care. A growing interest […]
Join the Telegram channel Rapid7 joined a brief to the US Supreme Court on the chilling effect of the overbroad Computer Fraud and Abuse Act (CFAA) on independent security research. The “friend of the court” brief in the Van Buren v. US case, led by the Electronic Frontier Foundation, was […]