114 matches found
w3tw0rk / Pitbul IRC Bot Remote Code Execution
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'w3tw0rk / Pitbul IRC Bot Remote Code Execution', 'Description' = %q This module allows remote command execution on the w3tw0rk /...
Russian Hackers Hijack Satellite To Steal Data from Thousands of Hacked Computers
A group of Russian hackers, most notably the Turla APT Advanced Persistent Threat is hijacking commercial satellites to hide command-and-control operations, a security firm said today. Turla APT group, which was named after its notorious software Epic Turla, is abusing satellite-based Internet...
Turla APT Group Abusing Satellite Internet Links
Poorly secured satellite-based Internet links are being abused by nation-state hackers, most notably by the Turla APT group, to hide command-and-control operations, researchers at Kaspersky Lab said today. Active for close to a decade, Turla’s activities were exposed last year; the Russian-speaki...
w3tw0rk / Pitbul IRC Bot Remote Code Execution
This module allows remote command execution on the w3tw0rk / Pitbul IRC Bot. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'w3tw0rk / Pitbul IRC Bot Remote Code Execution', 'Description' = %q...
DreamBox DM500s Cross Site Scripting
DreamBox DM500s Reflected XSS Vendor: Dream Multimedia GmbH Product web page: http://www.dream-multimedia-tv.de Summary: The Dreambox DM500s is a Linux-powered DVB satellite, terrestrial and cable digital television receivers set-top box. Tested on: Linux Kernel 2.6.9, The Gemini Project, Enigma...
Linux Modules Connected to Turla APT Attacks Discovered
The Turla APT campaigns have a broader reach than initially anticipated after the recent discovery of two modules built to infect servers running Linux. Until now, every Turla sample in captivity was designed for either 32- or 64-bit Windows systems, but researchers at Kaspersky Lab have discover...
Powerful Linux Trojan 'Turla' Infected Large Number of Victims
Security researchers have discovered a highly nasty Linux trojan that has been used by cybercriminals in state sponsored attack in order to steal personal, confidential information from government institutions, military and pharmaceutical companies around the world. A previously unknown piece of ...
Russian APT28 Group Linked to NATO, Political Attacks
A Russian APT group tied to ongoing attacks against military and political targets in Eastern Europe and against NATO could also have ties to the MiniDuke espionage campaign uncovered more than a year ago. Dubbed APT28 by FireEye in a report published last night, the Russian hackers have targeted...
Epic Operation Kicks Off Multistage Turla APT Campaign
The Turla APT campaign has baffled researchers for months as to how its victims are compromised. Peaking during the first two months of the year, Turla has targeted municipal governments, embassies, militaries and other high-value targets worldwide, with particular concentrations in the Middle Ea...
Agent.btz Malware May Have Served as Starting Point for Red October, Turla
Researchers looking into the recently uncovered Turla, or Snake, cyber espionage campaign have discovered some similarities connecting it to older pieces of malware such as Agent.btz, the worm that several years ago infected U.S. military networks and eventually caused the Department of Defense t...
Sophisticated Russian Malware 'SNAKE' and 'Turla' targets Governments and Military Networks
Last week, the Researchers at the German security company G Data Software have reported about the most complex and sophisticated rootkit malware, Uroburos which is designed to steal data from secure facilities and has ability to take control of an infected machine, execute arbitrary commands and...
PHP IRC Bot pbot eval() Remote Code Execution
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'PHP IRC Bot pbot eval Remote Code...
PHP IRC Bot pbot - 'eval()' Remote Code Execution (Metasploit)
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'PHP IRC Bot pbot eval Remote Code...
PHP IRC Bot pbot eval() Remote Code Execution
This module allows remote command execution on the PHP IRC bot pbot by abusing the usage of eval in the implementation of the .php command. In order to work, the data to connect to the IRC server and channel where find pbot must be provided. The module has been successfully tested on the version ...