Lucene search
K

131 matches found

Microsoft Malware Protection
Microsoft Malware Protection
added 2022/05/23 4:0 p.m.34 views

Beneath the surface: Uncovering the shift in web skimming

Microsoft security researchers recently observed that web skimming campaigns now employ various obfuscation techniques to deliver and hide skimming scripts. It’s a shift from earlier tactics where attackers conspicuously injected malicious scripts into e-commerce platforms and content management...

7.4AI score
Exploits0
Trellix
Trellix
added 2022/03/28 12:0 a.m.7 views

Nation-State Crosshairs: Australia, India & Japan

In The Nation-State Crosshairs: Australia, India & Japan By Trellix · March 28, 2022 Today Trellix and the Center for Strategic and International Studies CSIS released a global report, In the Crosshairs: Organizations and Nation-State Cyber Threats, examining security professionals’ mindsets...

7.5AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/02/23 2:54 p.m.26 views

Imperva Adds Active Attack Detection to its Data Security Platform

Protecting the data perimeter Organizations are in constant pursuit of technology that provides rapid insight into threats. Early visibility, in combination with context-rich alerting and efficient incident response workflows, streamline threat containment and remediation efforts. Identifying...

0.2AI score
Exploits0
CNVD
CNVD
added 2022/01/17 12:0 a.m.16 views

ZOHO ManageEngine Log360 has an unspecified vulnerability

ZOHO ManageEngine Log360 is an integrated log management and Active Directory auditing and alerting solution from ZOHO USA. The solution helps you mitigate security threats, detect persistent attack attempts, detect suspicious user activity and comply with regulatory? A security vulnerability...

9.8CVSS3.2AI score0.03427EPSS
Exploits0References1
Code423n4
Code423n4
added 2021/11/10 12:0 a.m.10 views

Unbounded for loops allows an attacker to freeze users' funds

Handle WatchPug Vulnerability details function claim external whenNotPaused nonReentrant requirebenRevocablemsg.sender1 == false, 'Account must not already be revoked.'; uint256 amount = claimableAmountmsg.sender.subbenClaimedmsg.sender; requireamount 0, "Claimable amount must be positive";...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2021/09/22 10:38 a.m.23 views

How Cynet's Response Automation Helps Organizations Mitigate Cyber Threats

One of the determining factors of how much damage a cyber-attack cause is how fast organizations can respond to it. Time to response is critical for security teams, and it is a major hurdle for leaner teams. To help improve this metric and enhance organizations' ability to respond to attacks...

0.4AI score
Exploits0
Code423n4
Code423n4
added 2021/09/07 12:0 a.m.7 views

The gravity.sol router should have pause/unpause functionality.

Handle tensors Vulnerability details In case a hack is occuring or an exploit is discovered, the team or validators in this case should be able to pause functionality until the necessary changes are made to the system. Additionally, the gravity.sol contract should be manged by proxy so that...

6.8AI score
Exploits0
Veracode
Veracode
added 2021/08/24 7:13 a.m.9 views

Cross-Site Request Forgery (CSRF)

grumpydictator/firefly-iii is vulnerable cross-site request forgery. An attacker who knows the IP address or hostname of the application running on localhost or anywhere can remove budgeted amount if the user is logged in and visited a malicious website...

6.5CVSS2.3AI score0.00501EPSS
Exploits1References2Affected Software1
Rapid7 Blog
Rapid7 Blog
added 2021/07/19 8:5 p.m.39 views

Rapid7 + XDR: Security that Moves as Fast as Your Business

Since launching InsightIDR almost six years ago, our mission has remained constant: make it possible for any security team to achieve fast, sophisticated threat detection and response programs that scale with their business. Making threat detection and response as agile and simple as possible...

6.9AI score
Exploits0
Github Security Blog
Github Security Blog
added 2021/05/25 6:42 p.m.57 views

In github.com/pion/webrtc, failed DTLS certificate verification doesn't stop data channel communication

Impact Data channel communication was incorrectly allowed with users who have failed DTLS certificate verification. This attack requires Attacker knows the ICE password. Only take place during PeerConnection handshake. This attack can be detected by monitoring PeerConnectionState in all versions ...

5.3CVSS5.4AI score0.00677EPSS
Exploits1References7Affected Software1
Kitploit
Kitploit
added 2021/05/10 12:30 p.m.86 views

CyberBattleSim - An Experimentation And Research Platform To Investigate The Interaction Of Automated Agents In An Abstract Simulated Network Environments

CyberBattleSim is an experimentation research platform to investigate the interaction of automated agents operating in a simulated abstract enterprise network environment. The simulation provides a high-level abstraction of computer networks and cyber security concepts. Its Python-based Open AI G...

7.7AI score
Exploits0References18
Github Security Blog
Github Security Blog
added 2021/04/30 5:28 p.m.69 views

HTTP Request Smuggling in Undertow

A flaw was found in Undertow in versions before 2.1.1.Final, regarding the processing of invalid HTTP requests with large chunk sizes. This flaw allows an attacker to take advantage of HTTP request smuggling...

6.5CVSS2.6AI score0.01005EPSS
Exploits0References4Affected Software1
Microsoft Malware Protection
Microsoft Malware Protection
added 2021/04/01 6:0 p.m.18 views

Automating threat actor tracking: Understanding attacker behavior for intelligence and contextual alerting

As seen in recent sophisticated cyberattacks, especially human-operated campaigns, it’s critical to not only detect an attack as early as possible but also to rapidly determine the scope of the compromise and predict how it will progress. How an attack proceeds depends on the attacker’s goals and...

1.2AI score
Exploits0
Information Security Automation
Information Security Automation
added 2021/02/19 11:56 p.m.268 views

Microsoft Defender for Endpoint: Why You May Need It and How to Export Hosts via API in Python

Hello everyone! In this episode, I want to talk about Microsoft Defender for Endpoint. It’s not a well-known free Defender antivirus built in Windows 10, but an enterprise level solution with the similar name. Yes, the naming is pretty confusing. I will not repeat Microsofts marketing thesis. Jus...

7.1AI score
Exploits0
Akamai Blog
Akamai Blog
added 2021/01/27 5:0 a.m.14 views

When Destiny is Knocking on Your Door Again - Data Mining CDN Logs to Refine and Optimize Web Attack Detection

A few years ago, I wrote a blog post trying to explain, with humor, why choosing application security as a career path is destiny derived by my parents calling me "Or", and why a personal name that is a conditional word can sometimes be challenging in daily routines, since some attack payloads...

1.7AI score
Exploits0
NVD
NVD
added 2020/12/18 9:15 a.m.22 views

CVE-2020-35553

An issue was discovered on Samsung mobile devices with Q10.0 and R11.0 Qualcomm SM8250 chipsets software. They allows attackers to cause a denial of service unlock failure by triggering a power-shortage incident that causes a false-positive attack detection. The Samsung ID is SVE-2020-19678...

7.8CVSS7.5AI score0.00436EPSS
Exploits0References1
OSV
OSV
added 2020/12/18 9:15 a.m.6 views

CVE-2020-35553

An issue was discovered on Samsung mobile devices with Q10.0 and R11.0 Qualcomm SM8250 chipsets software. They allows attackers to cause a denial of service unlock failure by triggering a power-shortage incident that causes a false-positive attack detection. The Samsung ID is SVE-2020-19678...

7.5CVSS7.1AI score0.00436EPSS
Exploits0References1
Prion
Prion
added 2020/12/18 9:15 a.m.15 views

Code injection

An issue was discovered on Samsung mobile devices with Q10.0 and R11.0 Qualcomm SM8250 chipsets software. They allows attackers to cause a denial of service unlock failure by triggering a power-shortage incident that causes a false-positive attack detection. The Samsung ID is SVE-2020-19678...

7.8CVSS7.4AI score0.00436EPSS
Exploits0References1Affected Software1
Akamai Blog
Akamai Blog
added 2020/12/15 2:0 p.m.98 views

Stopping Active Attacks with Penalty Box

A web application firewall WAF is most often used by organizations for external security controls to detect and block individual attack attempts against target web application assets. Open Web Application Security Project OWASP risk rating methodology Unfortunately, today's sophisticated web...

7.7AI score
Exploits0
Akamai Blog
Akamai Blog
added 2020/12/07 2:0 p.m.85 views

Add Security Events to Your Monitoring Tools

Real-time monitoring is important in every organization because it enables stakeholders to understand what is happening at any given time and react quickly. There are a lot of systems and devices we can and should monitor using tools such as application performance monitoring, digital performance...

0.4AI score
Exploits0
Rows per page
Query Builder