50 matches found
A week in security (October 15 – 21)
Last week on Malwarebytes Labs, we went over how to build your own motion-activated security camera, wondered whether FIDO is the future instrument to replace passwords and usernames, informed you about information operations on Twitter, and released our Q3 Malwarebytes Labs Cybercrime Tactics an...
How to build your own motion-activated security camera
Attention makers! Are you looking for a challenging project that not only gets your gears grinding but helps to keep you secure while traveling? Welcome to the build-your-own security camera tutorial. The impetus for this project originated from events that took place at Defcon 26, where hotel...
“Unbreakable” Smart Lock Tapplock Issues Critical Security Patch
Tapplock, a smart padlock that received positive reviews and media hype when it was released earlier this year, has issued a critical patch after researchers discovered several security issues enabling them to easily hack into and unlock the device. The $100 lock is Bluetooth-based and can be...
Intel® SSD 540s, Intel® SSD Pro 5400s, Intel® SSD E 5400s, and Intel® SSD DC S3100 data corruption vulnerability
Summary: A vulnerability was identified in the Intel® Solid-State Drive 540s Series, Intel® Solid State Drive Pro 5400s Series, Intel® Solid State Drive E 5400s Series and Intel® Solid State Drive DC S3100 Series leading to a potential data corruption issue. Description: In the Intel® SSD 540s,...
Uber: Privilege escalation to allow non activated users to login and use uber partner ios app
Hi It is possible for non activated users to login to partner app and use its full features! Steps: 1- download uber partner iOS app 2- intercept the login request with burp suite and change “allowNotActivated":false to "allowNotActivated":true 3- Login failed because the server responded with...
Fedora 22 : icecat-38.3.0-10.fc22 (2015-bbb6a72996)
icecat-38.3.0-10.fc23 - Rebuild with RPMLDFLAGS - Activated hardenedbuild icecat-38.3.0-10.fc22 - Rebuild with RPMLDFLAGS - Activated hardenedbuild icecat-38.3.0-10.fc21 - Rebuild with RPMLDFLAGS - Activated hardenedbuild Note that Tenable Network Security has extracted the preceding description...
YourTube 1.0 - CSRF Vulnerability (Add User)
No description provided by source. YourTube v1.0 CSRF Vulnerability Add User ==================================================================== .:. Author : AtT4CKxT3rR0r1ST [email protected] .:. Script : http://www.ac4p.com/ .:. Dork : inurl:Powered by YourTube v1.0 === Exploit === form method=POST...
Updated dbus packages fix security vulnerability
Updated dbus packages fix security vulnerability: A denial of service vulnerability in D-Bus before 1.6.20 allows a local attacker to cause a bus-activated service that is not currently running to attempt to start, and fail, denying other users access to this service Additionally, in highly unusu...
Windows OS Not Activated (WMI)
Binary data wmiwindowsnotactivated.nbin...
DEBIAN-CVE-2005-2411
Cross-Site Request Forgery CSRF vulnerability in tDiary 2.1.1, and tDiary 2.0.1 and earlier, allows remote attackers to conduct actions as another user, and execute commands on the server, via a URL that is activated by the user...