Aggregator
斗象“世界五百强客户”案例| 私有化部署的资产暴露面测绘侦查体系
9 months 2 weeks ago
Утечка в Hot Topic: 25 миллионов карт под угрозой взлома в ближайшие дни
9 months 2 weeks ago
Информация о покупателях выставлена на онлайн-форуме.
CVE-2015-8023 | strongSwan up to 5.3.3 eap-mschapv2 Plugin input validation (USN-2811-1 / Nessus ID 86953)
9 months 2 weeks ago
A vulnerability was found in strongSwan up to 5.3.3 and classified as critical. This issue affects some unknown processing of the component eap-mschapv2 Plugin. The manipulation leads to improper input validation.
The identification of this vulnerability is CVE-2015-8023. The attack may be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2015-8025 | Xscreensaver up to 5.33 Monitor driver/subprocs.c access control (USN-2789-1 / Nessus ID 86720)
9 months 2 weeks ago
A vulnerability was found in Xscreensaver up to 5.33 and classified as problematic. This issue affects some unknown processing of the file driver/subprocs.c of the component Monitor Handler. The manipulation leads to improper access controls.
The identification of this vulnerability is CVE-2015-8025. The attack needs to be approached locally. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2015-8821 | Adobe Flash Player MPEG4 Data use after free (EDB-39042 / Nessus ID 87243)
9 months 2 weeks ago
A vulnerability classified as critical has been found in Adobe Flash Player. Affected is an unknown function of the component MPEG4 Data Handler. The manipulation leads to use after free.
This vulnerability is traded as CVE-2015-8821. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2015-8822 | Adobe Flash Player MPEG4 Data use after free (EDB-39042 / Nessus ID 87243)
9 months 2 weeks ago
A vulnerability classified as critical was found in Adobe Flash Player. Affected by this vulnerability is an unknown functionality of the component MPEG4 Data Handler. The manipulation leads to use after free.
This vulnerability is known as CVE-2015-8822. The attack can be launched remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2015-8823 | Adobe Flash Player TextField use after free (RHSA-2015:2593 / Nessus ID 87304)
9 months 2 weeks ago
A vulnerability was found in Adobe Flash Player. It has been classified as critical. Affected is an unknown function of the component TextField Handler. The manipulation leads to use after free.
This vulnerability is traded as CVE-2015-8823. It is possible to launch the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.
vuldb.com
CVE-2015-8820 | Adobe Flash Player MPEG4 Data memory corruption (EDB-39042 / Nessus ID 87243)
9 months 2 weeks ago
A vulnerability was found in Adobe Flash Player. It has been rated as critical. This issue affects some unknown processing of the component MPEG4 Data Handler. The manipulation leads to memory corruption.
The identification of this vulnerability is CVE-2015-8820. The attack may be initiated remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
黑客泄露亚马逊、大都会人寿、汇丰银行和其他大公司近300万员工数据
9 months 2 weeks ago
一名黑客在非法论坛上发布了包含数百万条记录的海量数据集,这些信息很可能是在去年的 MOVEit 漏洞黑客攻击狂潮中被窃取的。
金眼狗团伙近期活动跟踪
9 months 2 weeks ago
基于奇安信威胁雷达的测绘分析,从 2022 年以来,金眼狗一直是对国内攻击频率最高的几个组织之一。本文将对最近几年捕获到的金眼狗样本以及攻击手法进行介绍,并讨论金眼狗的常用攻击手法和样本演变。
«Прозрачный» рекрутинг от Alltech: 2,3 млн записей о кандидатах попали в открытый доступ
9 months 2 weeks ago
Не защищенная паролем база оказалась доступной для всех.
6 Things to Know About Improving Threat Intelligence Collection
9 months 2 weeks ago
Flare recently hosted our first Threat Intel Workshop with Senior Threat Intelligence Researche
聊一聊不一样的免杀手段
9 months 2 weeks ago
不一样的免杀手段
CVE-2001-0736 | pine/pico symlink (EDB-20493 / Nessus ID 13866)
9 months 2 weeks ago
A vulnerability has been found in pine and pico and classified as problematic. This vulnerability affects unknown code. The manipulation leads to symlink following.
This vulnerability was named CVE-2001-0736. The attack needs to be approached locally. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.
vuldb.com
Synology 紧急发布 Pwn2Own 零日漏洞补丁
9 months 2 weeks ago
网络附加存储 (NAS) 设备制造商 Synology 已修复了 Pwn2Own 黑客竞赛中被利用的两个关键零日漏洞。
Midnight Blue 安全研究员在该公司的 Synology Photos 和 BeePhotos for BeeStation 软件中发现了关键的零点击漏洞(一起追踪为 CVE-2024-10443,并称为 RISK:STATION)。
正如 Synology 在 Pwn2Own Ireland 2024 上演示这些漏洞劫持 Synology BeeStation BST150-4T 设备,两天后发布的安全公告中所解释的那样,这些安全漏洞使远程攻击者能够以 root 身份在在线暴露的易受攻击的 NAS 设备上获得远程代码执行。
Midnight Blue 表示:“该漏洞最初是在几个小时内被发现的,作为另一个 Pwn2Own 提交的替代品。演示后立即向 Synology 披露了该问题,并在 48 小时内提供了解决该漏洞的补丁。”
Synology 表示,它解决了以下软件版本中的漏洞;但是,它们不会自动应用于易受攻击的系统,建议客户尽快更新以阻止潜在的传入攻击:
·BeePhotos for BeeStation OS 1.1:升级到1.1.0-10053或更高版本。
·BeePhotos for BeeStation OS 1.0:升级到1.0.2-10026或更高版本。
·Synology Photos 1.7 for DSM 7.2:升级到 1.7.0-0795 或更高版本。
·Synology Photos 1.6 for DSM 7.2:升级到 1.6.2-0720 或更高版本。
另一家 NAS 设备制造商 QNAP 在一周内修复了在黑客竞赛中被利用的两个更关键的零日漏洞(在该公司的 SMB 服务和混合备份同步灾难恢复和数据备份解决方案中)。
虽然 Synology 和 QNAP 匆忙推出安全更新,但供应商有 90 天的时间可以更新。
NAS 设备通常被家庭和企业客户用来存储敏感数据,并且它们也经常暴露在互联网上以进行远程访问。然而,这使得它们成为网络犯罪分子的目标,他们利用弱密码或漏洞来破坏系统、窃取数据、加密文件,并通过索要赎金来勒索所有者以提供对丢失文件的访问权限。
Midnight Blue 安全研究人员在 Pwn2Own Ireland 2024 期间演示了 Synology 零日漏洞,他们在美国和欧洲的警察部门网络上发现了暴露于互联网的 Synology NAS 设备,以及来自韩国、意大利和加拿大的关键基础设施承包商。
QNAP 和 Synology 多年来一直提醒客户,在线暴露的设备正在成为勒索软件攻击的目标。例如,eCh0raix 勒索软件(也称为 QNAPCrypt)于 2016 年 6 月首次出现,一直定期针对此类系统,其中 2019 年 6 月(针对 QNAP 和 Synology 设备)和 2020 年 6 月报告的两起大规模勒索软件尤为突出。
在最近的攻击浪潮中,威胁者还使用其他恶意软件菌株,包括 DeadBolt 和 Checkmate 勒索软件,以及各种安全漏洞来加密暴露于互联网的 NAS 设备。
胡金鱼
10 Best DNS Management Tools – 2025
9 months 2 weeks ago
Best DNS Management Tools play a crucial role in efficiently managing domain names and their associated DNS records. These tools enable users to make necessary changes and updates to DNS records, ensuring seamless website performance and accessibility. These tools are crucial to the smooth operation of the Internet, including web traffic, email delivery, and web […]
The post 10 Best DNS Management Tools – 2025 appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
The post 10 Best DNS Management Tools – 2025 appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Balaji
上海站看点|极兔、得物安全专家实战分享,黑产武器库、黑话挑战等你来!
9 months 2 weeks ago
11月21日,上海不见不散!
Sweet Security Announces Availability of its Cloud Native Detection & Response Platform on the AWS Marketplace
9 months 2 weeks ago
TEL AVIV, Israel, November 11th, 2024, CyberNewsWireCustomers can now easily integrate Sweet’s
CVE-2024-51189 | TRENDnet TEW-651BR/TEW-652BRU /filters.htm macList_Name_1.1.1.0.0 cross site scripting
9 months 2 weeks ago
A vulnerability classified as problematic has been found in TRENDnet TEW-651BR and TEW-652BRU. This affects an unknown part of the file /filters.htm. The manipulation of the argument macList_Name_1.1.1.0.0 leads to cross site scripting.
This vulnerability is uniquely identified as CVE-2024-51189. It is possible to initiate the attack remotely. There is no exploit available.
vuldb.com