DEFCON 26 | use of the Fax function of the vulnerability to penetrate into the corporate network Faxploit-a vulnerability warning-the black bar safety net

! From the ancient times of the flying Pigeon pass book to the later postal courier, the author and the recipient between the physical message transfer mode gradually in the evolution, and after that Fax technology to some extent, help people get out of a letter delivered to the dark ages. Howeve...

Millions of Android Devices At Risk of Man-in-the-disk Attack

By Waqas Thanks to Ignorant App Developers At Defcon 2018, we have so far witnessed many innovative forms of compromising devices including electoral voting machines. However, this latest revelation "Man-in-the-disk Attack" is quite surprising and to a great extent concerning for Android users...

HP Ink Printers Multiple Vulnerabilities (HPSBHF03589)

The firmware version running on the remote host is vulnerable to multiple vulnerabilities. An unauthenticated remote attacker could gain system-level unauthorized access to the affected device. Note that Nessus has not tested for these issues but has instead relied only on the self-reported versi...

DEBIAN-CVE-2017-18344

The timercreate syscall implementation in kernel/time/posix-timers.c in the Linux kernel before 4.14.8 doesn't properly validate the sigevent-sigevnotify field, which leads to out-of-bounds access in the showtimer function called when /proc/$PID/timers is read. This allows userspace applications ...

UBUNTU-CVE-2017-18344

The timercreate syscall implementation in kernel/time/posix-timers.c in the Linux kernel before 4.14.8 doesn't properly validate the sigevent-sigevnotify field, which leads to out-of-bounds access in the showtimer function called when /proc/$PID/timers is read. This allows userspace applications ...

May 17, 2018—KB4103720 (OS Build 14393.2273)

May 17, 2018—KB4103720 OS Build 14393.2273 Windows 10, version 1607, reached end of service on April 10, 2018. Devices running Windows 10 Home or Pro editions will no longer receive monthly security and quality updates that contain protection from the latest security threats.To continue receiving...

BADPDF Malicious PDF Creator

This module can either creates a blank PDF file which contains a UNC link which can be used to capture NetNTLM credentials, or if the PDFINJECT option is used it will inject the necessary code into an existing PDF document if possible. This module requires Metasploit:...

Bad-Pdf - Steal NTLM Hashes With A PDF From Windows Machines

Bad-PDF create malicious PDF to steal NTLM Hashes from windows machines, it utilize vulnerability disclosed by checkpoint team to create the malicious PDF file. Bad-Pdf reads the NTLM hashes using Responder listener. This method work on all PDF readersAny version and java scripts are not required...

Drupal Core Critical RCE Vulnerability (SA-CORE-2018-002) - Windows, Version Check

Drupal is prone to a critical remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

PT-2018-6841 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.14.8 Description: The issue arises from improper validation of the sigevent-sigev notify field in the timer create syscall implementation. This leads to out-of-bounds access when the show timer function is...

Checkpoint Gaia Portal WebUI Detection

Binary data checkpointgaiawebuidetect.nbin...

Reaper: Calm Before the IoT Security Storm?

It's been just over a year since the world witnessed some of the world's top online Web sites being taken down for much of the day by "Mirai," a zombie malware strain that enslaved "Internet of Things" IoT devices such as wireless routers, security cameras and digital video recorders for use in...

Microsoft’s October Patch Batch Fixes 62 Flaws

Microsoft on Tuesday released software updates to fix at least 62 security vulnerabilities in Windows, Office and other software. Two of those flaws were detailed publicly before yesterday's patches were released, and one of them is already being exploited in active attacks, so attackers already...

Linux kernel elevation of privilege vulnerability (CNVD-2017-24353)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A q elevation of privilege vulnerability exists in the 'sanitycheckckpt' function in the fs/f2fs/super.c file in versions of Linux kernel prior to 4.12.4, which stems from the...

Nigerian Man Hacked Thousands of Global Oil & Gas and Energy Firms

By Uzair Amir The IT security researchers at CheckPoint cyber security firm headquartered in This is a post from HackRead.com Read the original post: Nigerian Man Hacked Thousands of Global Oil Gas and Energy Firms...

‘Fireball’ Malware Infected 250 Million Mac and Windows Devices

By Jahanzaib Hassan Since the spread of WannaCry ransomware attack the cyber security community is doing whatever it takes to identify new threats against unsuspecting users. The recent discovery by security researchers is a threat to both Windows and Mac users. Checkpoint has recently revealed a...

Judy Android Malware Infects Over 36.5 Million Google Play Store Users

Security researchers have claimed to have discovered possibly the largest malware campaign on Google Play Store that has already infected around 36.5 million Android devices with malicious ad-click software. The security firm Checkpoint on Thursday published a blog post revealing more than 41...

PT-2017-2769 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.12.4 Description: The issue is related to the sanity check ckpt function in fs/f2fs/super.c of the Linux kernel, which incorrectly checks the indexing of the blkoff and segno arrays. This can be exploited by a...

Microsoft Office Word Malicious Hta Execution

This module creates a malicious RTF file that when opened in vulnerable versions of Microsoft Word will lead to code execution. The flaw exists in how a olelink object can make a https request, and execute hta code in response. This bug was originally seen being exploited in the wild starting in...

No More Ransom — 15 New Ransomware Decryption Tools Available for Free

No More Ransom, so is the Ransomware Threat. Launched less than a year ago, the No More Ransom NMR project has increased its capacity with new partners and new decryption tools added to its now global campaign to combat Ransomware. Started as a joint initiative by Europol, the Dutch National...