Malicious code in fontawesome-1 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ff495c6fc65ef7548f0b56a04f0efd1d0c2877ee7b200e306156166e1263f644 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in wlwz-2312-2208 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware dc84c8e5a7c87205db7156dff96be9507a921656da247dbeaa7c234a6931fb48 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in requsets-toolbelt (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 2d0e15c87f5ed0cfdb2aaf2237d721367f2d8205773f543d296f9bf843903215 Attacker distributed 900+ malicious packages via PyPi, infecting local browsers with malicious extension to manipulate clipboard and replace crypto wallet...

Malicious code in purple_team_midway_3 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e40f181749a8f708b27116a5ebf463e016a429d79b88a02dce3c38bbdeb65f38 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Insights from one year of tracking a polymorphic threat

A little over a year ago, in October 2018, our polymorphic outbreak monitoring system detected a large surge in reports, indicating that a large-scale campaign was unfolding. We observed as the new threat attempted to deploy files that changed every 20-30 minutes on thousands of devices. We gave...

2011 will be Stuxnet-like viruses year !

Known to successfully slow down the Iranian nuclear program, the Stuxnet cyber worm is now expected to spawn variations that are predicted to disrupt non-traditional IT targets, from power grids to electronic voting stations. The Stuxnet cyber worm is a very complex, efficient and stealthy string...

[STANKOINFORMZASCHITA-10-01] Netbiter® webSCADA multiple vulnerabilities

STANKOINFORMZASCHITA-10-01 Netbiter® webSCADA – multiple vulnerabilities Authors: Eugene Salov [email protected], Andrej Komarov [email protected] Product: Netbiter® webSCADA CVSS v2 Base Score: 9.0 AV:N/AC:L/Au:R/C:C/I:C/A:C Impact Subscore: 10.0 Exploitability Subscore: 8.0 Availability of...

Netbiter webSCADA Disclosure

STANKOINFORMZASCHITA-10-01 Netbiter® webSCADA – multiple vulnerabilities Authors: Eugene Salov [email protected], Andrej Komarov [email protected] Product: Netbiter® webSCADA CVSS v2 Base Score: 9.0 AV:N/AC:L/Au:R/C:C/I:C/A:C Impact Subscore: 10.0 Exploitability Subscore: 8.0 Availability of...

Multiple Firefox / Netscape / SeaMonkey vulnerabilities

Crossite scripting, memory corruptions, buffer overflows, array overflows, integer overflows. Can be exploited to silently install malware code...

Internet Explorer Help ActiveX Control Local Zone Security Restriction Bypass Vulnerability (updated)

I appologize for the previous vulnerability longnamevuln because it was incomplete. After realizing my mistake, longnamevuln looked useless. However, it was just incomplete, not useless. What longnamevuln did was open a local file in the browser window. To execute active content, it needed to be...