Navigation section

exploitation

  1. News

    AA20-014A: Critical Vulnerabilities in Microsoft Windows Operating Systems

    Original release date: January 14, 2020 Summary New vulnerabilities are continually emerging, but the best defense against attackers exploiting patched vulnerabilities is simple: keep software up to date. Timely patching is one of the most efficient and cost-effective steps an organization can...
    • News
    • Thread
    • certificate cryptoapi cve-2020-0601 cve-2020-0609 cve-2020-0610 cve-2020-0611 cybersecurity exploitation information technology malware mitigation network patch management patching rdp remote desktop security threats vulnerabilities windows
    • Replies: 0
    • Forum: Security Alerts
  2. News

    AA20-010A: Continued Exploitation of Pulse Secure VPN Vulnerability

    Original release date: January 10, 2020 Summary Unpatched Pulse Secure VPN servers continue to be an attractive target for malicious actors. Affected organizations that have not applied the software patch to fix a remote code execution (RCE) vulnerability, known as CVE-2019-11510, can become...
    • News
    • Thread
    • cisa cve-2019-11510 cyber attacks cybersecurity exploitation incident response malware mitigation network security patch management pulse secure rce remote access security advisory software update threat actors unauthorized access unpatched servers vpn vulnerability
    • Replies: 0
    • Forum: Security Alerts
  3. News

    Patch new wormable vulnerabilities in Remote Desktop Services (CVE-2019-1181/1182)

    Today Microsoft released a set of fixes for Remote Desktop Services that include two critical Remote Code Execution (RCE) vulnerabilities, CVE-2019-1181 and CVE-2019-1182. Like the previously-fixed ‘BlueKeep’ vulnerability (CVE-2019-0708), these two vulnerabilities are also ‘wormable’, meaning...
    • News
    • Thread
    • bluekeep cve-2019-1181 cve-2019-1182 exploitation fixes malware microsoft patch propagation rce remote desktop security vulnerabilities
    • Replies: 0
    • Forum: Security Alerts
  4. Neemobeer

    Tutorial: Analyzing Malicious PDFs

    Hi all, in this post we will be exploring malicious PDF files and how the bad guys leverage them to infect computer systems. I'm sure a lot of people are familiar with receiving a strange email often times seemingly from a known person containing an attachment. You open it and miraculously...
    • Neemobeer
    • Thread
    • analysis codeexecution computersecurity dataextraction embeddedfiles exploitation infection javascript macro maliciousfiles malware officedocuments oletools openaction payload pdf python security tutorial
    • Replies: 3
    • Forum: Windows Security
  5. News

    AA19-168A: Microsoft Operating Systems BlueKeep Vulnerability

    Original release date: June 17, 2019 Summary The Cybersecurity and Infrastructure Security Agency (CISA) is issuing this Activity Alert to provide information on a vulnerability, known as “BlueKeep,” that exists in the following Microsoft Windows Operating Systems (OSs), including both 32- and...
    • News
    • Thread
    • bluekeep cisa cve-2019-0708 cybersecurity end-of-life exploitation malware microsoft mitigation network authentication operating systems patch management patches rdp remote access security tcp port user rights vulnerability windows
    • Replies: 0
    • Forum: Security Alerts
  6. News

    TA18-106A: Russian State-Sponsored Cyber Actors Targeting Network Infrastructure Devices

    Original release date: April 16, 2018 Systems Affected Generic Routing Encapsulation (GRE) Enabled Devices Cisco Smart Install (SMI) Enabled Devices Simple Network Management Protocol (SNMP) Enabled Network Devices Overview This joint Technical Alert (TA) is the result of analytic efforts...
    • News
    • Thread
    • command and control critical infrastructure cybersecurity dhs espionage exploitation fbi hacking indicators of compromise infrastructure international security legacy protocols malware mitigation network devices russian actors smart install snmp telnet tftp
    • Replies: 0
    • Forum: Security Alerts
  7. kemical

    Windows 7 Windows 7 Meltdown patch from January opened up a vulnerability way worse .

    Total Meltdown? Is my system vulnerable? Only Windows 7 x64 systems patched with the 2018-01 or 2018-02 patches are vulnerable. If your system isn't patched since December 2017 or if it's patched with the 2018-03 2018-03-29 patches or later it will be secure. Reference and further...
    • kemical
    • Thread
    • 2018 updates exploitation in-process memory kernel memory meltdown memory access memory mapping patch performance process management read/write security software vulnerabilities system security unprivileged access updates user awareness vulnerability windows 7 windows security
    • Replies: 1
    • Forum: Windows Upgrade and Installation
  8. whoosh

    VIDEO WaPo: Four countries discussed exploiting Kushner

    :usa::andwhat:
    • whoosh
    • Thread
    • countries discussion exploitation kushner media politics
    • Replies: 1
    • Forum: The Water Cooler
  9. whoosh

    VIDEO We Need To Talk About The Trump Fake News War, Escalation, Exploitation, and Much More... 207,405 views

    :usa::razz:
    • whoosh
    • Thread
    • controversy discussion escalation exploitation fake news media politics trump
    • Replies: 1
    • Forum: The Water Cooler
  10. kemical

    Meltdown and Spectre: CPU vulnerabilities patched

    New vulnerabilities have recently been discovered with modern cpu's: It would seem Intel are more prone to attack than AMD: Meltdown and Spectre Microsoft have released patches which will be available via Windows update. If like me yours hasn't arrived then download the standalone...
    • kemical
    • Thread
    • amd cloud cpu data theft desktop exploitation hardware intel laptop meltdown patches privacy security spectre update vulnerabilities windows 10 windows 7 windows 8.1
    • Replies: 39
    • Forum: Windows Security
  11. News

    TA17-163A: CrashOverride Malware

    Original release date: June 12, 2017 | Last revised: July 27, 2017 Systems Affected Industrial Control Systems Overview The National Cybersecurity and Communications Integration Center (NCCIC) is aware of public reports from ESET and Dragos outlining a new, highly capable Industrial...
    • News
    • Thread
    • attack authentication authorization crashoverride cybersecurity detection exploitation ics industrial control systems infrastructure malware mitigation monitoring nccic remote access response risk evaluation threat ttps vulnerability
    • Replies: 0
    • Forum: Security Alerts
  12. News

    TA17-132A: Indicators Associated With WannaCry Ransomware

    Original release date: May 12, 2017 | Last revised: May 19, 2017 Systems Affected Microsoft Windows operating systems Overview According to numerous open-source reports, a widespread ransomware campaign is affecting various organizations with reports of tens of thousands of infections in...
    • News
    • Thread
    • backup bitcoins cybersecurity dhs exploitation fbi iocs malicious software malware microsoft ms17-010 network protection phishing prevention ransomware security update threat alert vulnerability wannacry windows
    • Replies: 0
    • Forum: Security Alerts
  13. whoosh

    VIDEO WaPo Investigation Finds Ivanka Brand Exploiting Foreign Labor

    :usa::eek:
    • whoosh
    • Thread
    • brand exploitation foreign investigation ivanka labor media wapo youtube
    • Replies: 1
    • Forum: The Water Cooler
  14. News

    4025685 - Guidance related to June 2017 security update release - Version: 1.0

    Revision Note: V1.0 (June 13, 2017): Advisory published Summary: Microsoft is announcing the availability of additional guidance for critical security updates, that are at heightened risk of exploitation due to past and threatened nation-state attacks and disclosures. Some of the releases are...
    • News
    • Thread
    • advisory critical disclosure exploitation guidance june 2017 microsoft nation-state older platforms patch management public availability risk security update versions 1.0 vulnerability
    • Replies: 0
    • Forum: Security Alerts
  15. pnamajck

    ssd-drives vulnerable to attacks …

    just wanting to run this past you guys … this post is straight from our good friends at bleepingcomputer.com … and the issue is in regards to the inherent vulnerabilities with current ssd-drives. i don't have much to say, since i do not own an ssd-drive …...
    • pnamajck
    • Thread
    • approach bleeping computer cybersecurity data corruption exploitation file advisory hardware information security pdf personal environment privacy research security ssd drives storage devices technical technical aspects user data virus scan vulnerabilities
    • Replies: 4
    • Forum: Windows Security
  16. whoosh

    VIDEO Trump To Give National Monuments Up For Oil Exploitation

    :usa::eek:
    • whoosh
    • Thread
    • conservation environment exploitation national monuments oil trump
    • Replies: 1
    • Forum: The Water Cooler
  17. News

    MS17-021 - Important: Security Update for Windows DirectShow (4010318) - Version: 1.0

    Severity Rating: Important Revision Note: V1.0 (March 14, 2017): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow an Information Disclosure if Windows DirectShow opens specially crafted media content that is hosted on...
    • News
    • Thread
    • 4010318 attack bulletin directshow exploitation information disclosure malicious website march 2017 media content microsoft patch revision note security security bulletin severity rating system compromise update version 1.0 vulnerability windows
    • Replies: 0
    • Forum: Security Alerts
  18. News

    MS16-153 - Important: Security Update for Common Log File System Driver (3207328) -...

    Severity Rating: Important Revision Note: V1.0 (December 13, 2016): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow Information Disclosure when the Windows Common Log File System (CLFS) driver improperly handles...
    • News
    • Thread
    • clfs common log file system december 2016 exploitation information disclosure local attack microsoft windows ms16-153 security update vulnerability
    • Replies: 0
    • Forum: Security Alerts
  19. News

    MS16-148 - Critical: Security Update for Microsoft Office (3204068) - Version: 1.0

    Severity Rating: Critical Revision Note: V1.0 (December 13, 2016): Bulletin published Summary: This security update resolves vulnerabilities in Microsoft Office. The most severe of the vulnerabilities could allow remote code execution if a user opens a specially crafted Microsoft Office file...
    • News
    • Thread
    • arbitrary code critical cybersecurity december 2016 exploitation information security malware prevention microsoft office ms16-148 patch remote code execution revision note security update software update system admin technical bulletin user impact user rights vulnerability
    • Replies: 0
    • Forum: Security Alerts
  20. News

    MS16-121 - Important: Security Update for Microsoft Office (3194063) - Version: 1.0

    Severity Rating: Important Revision Note: V1.0 (October 11, 2016): Bulletin published. Summary: This security update resolves a vulnerability in Microsoft Office. An Office RTF remote code execution vulnerability exists in Microsoft Office software when the Office software fails to properly...
    • News
    • Thread
    • arbitrary code bulletin cybersecurity exploitation microsoft microsoft office ms16-121 october 2016 office software patch remote code execution revision note rtf security severity rating software update threat prevention update user context vulnerability
    • Replies: 0
    • Forum: Security Alerts
Back
Top