Lucene search
K

37 matches found

ThreatPost
ThreatPost
added 2018/09/12 8:7 p.m.14 views

PowerShell Obfuscation Ups the Ante on Antivirus

A new malware sample using a rare obfuscation technique has been spotted that uses the features of PowerShell, a tool that comes built in to Microsoft Windows. Analysis from Cylance shows that the tactic succeeds in bypassing most antivirus products. Cylance researchers stumbled across a malware...

0.5AI score
Exploits0References1
CVE
CVE
added 2018/05/04 12:0 a.m.56 views

CVE-2018-10722

CVE-2018-10722 concerns CylancePROTECT (pre-1470) where an unprivileged local user can escalate to SYSTEM due to overly permissive access to the log folder under %PROGRAMFILES%\Cylance\Desktop\log. The CyUpdate process grants users Modify rights to new files created there, allowing a symlink chai...

7.8CVSS7.5AI score0.0055EPSS
Exploits1References1Affected Software1
Krebs on Security
Krebs on Security
added 2017/08/10 3:40 p.m.43 views

Beware of Security by Press Release

On Wednesday, the security industry once again witnessed an all-too-familiar cycle: I call it "security by press release." It goes a bit like this: A security firm releases a report claiming to have unearthed a major flaw in a competitor's product; members of the trade press uncritically republis...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/06/19 12:0 a.m.25 views

openSUSE Security Update : lynis (openSUSE-2017-705)

This update for lynis fixes the following issues : Lynis 2.5.1 : - Improved detection of SSL certificate files - Minor changes to improve logging and results - Firewall tests: Determine if CSF is in testing mode The Update also includes changes from Lynis 2.5.0 : - CVE-2017-8108: symlink attack m...

7.8CVSS7.2AI score0.00426EPSS
Exploits0References2
ThreatPost
ThreatPost
added 2017/02/28 1:44 p.m.8 views

Unpatched SMB Zero Day Easily Exploitable

In what’s turning out to be the zero day that keeps on giving, researchers are still finding ways to exploit an unpatched denial of service vulnerability that exists in the way Windows implements the Server Message Block protocol. Details around the bug aren’t a mystery. Laurent Gaffié, the...

7.4AI score
Exploits0References6
myhack58
myhack58
added 2015/04/15 12:0 a.m.15 views

Cylance: Windows memory major security vulnerability affecting all versions of Windows-vulnerability warning-the black bar safety net

Recently, the business assets, the security firm Cylance released the news that on Windows platform there is a security breach or will result in the landing of the theft problem. Let people surprise, Cylance said that this security vulnerability affects almost all versions of Windows System,...

1.9AI score
Exploits0
myhack58
myhack58
added 2015/04/15 12:0 a.m.42 views

Windows exposure“redirect SMB”vulnerability, the impact of Win10, including all versions-bug warning-the black bar safety net

Recently Cylance company released a Windows System to serious vulnerability, the attacker via the exploit can steal user authentication information. The vulnerability includes the latest Windows 1 0 preview version, including all versions of Windows, as well as Adobe, Apple, Box, Oracle, Symantec...

7.2AI score
Exploits0
ThreatPost
ThreatPost
added 2015/04/13 10:49 a.m.12 views

New SMB Flaw Affects All Versions of Windows

There is a serious vulnerability in all supported versions of Windows that can allow an attacker who has control of some portion of a victim’s network traffic to steal users’ credentials for valuable services. The bug is related to the way that Windows and other software handles some HTTP request...

0.1AI score
Exploits0References1
ThreatPost
ThreatPost
added 2015/03/26 2:50 p.m.46 views

AntLabs InnGate security vulnerability patch

ANTLabs today is expected to roll out patches for a vulnerability in its InnGate Internet gateways that are popular in hospitality and convention locations. The gateways provide temporary Internet access to hotel guests or conference attendees using kiosks, for example. The vulnerability...

10CVSS1.3AI score0.0559EPSS
Exploits1References3
The Hacker News
The Hacker News
added 2014/12/04 9:22 p.m.23 views

Operation Cleaver — Iranian Hackers Targeting Critical Infrastructure Worldwide

For over past two years, Iranian hackers have infiltrated computer networks of some of the world's top organizations including airlines, defense contractors, universities, military installations, hospitals, airports, telecommunications firms, government agencies, and energy and gas companies,...

7.3AI score
Exploits0
ThreatPost
ThreatPost
added 2014/12/02 10:8 a.m.12 views

Operation Cleaver Critical Infrastructure Hacking Attacks

Iranian state-sponsored hackers have been singled out for attacks on critical infrastructure worldwide, including 10 targets in the United States. Security firm Cylance today released an 86-page report on Operation Cleaver that lays out Iran’s hacking capabilities and motivations to attack global...

0.7AI score
Exploits0References2
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.25 views

Madness Pro <= 1.14 - Persistent XSS

No description provided by source. !/usr/bin/env python2 -- coding: utf-8 -- Exploit Title: Madness Pro %3C%2Fscript%3E%3C%2Fa%3E" "%3Ca%20href%3D%22%23%22%20onclick%3D%5C%22setstatus\'12345".formatpanelindexurl, beefhookurl print f.read installbeefhookbeefhook, panelurl...

7.1AI score
Exploits0
ThreatPost
ThreatPost
added 2013/05/07 4:22 p.m.9 views

Researcher Hacks Google Office Management System

Industrial control minded researchers from the security firm Cylance launched a custom exploit against a building management system deployed at Google’s Sydney, Australia office, gaining access to a configuration file containing device administration passwords that could be used to gain complete...

0.7AI score
Exploits0References4
ThreatPost
ThreatPost
added 2013/02/11 4:25 p.m.11 views

VMware Fixes Privilege Escalation Vulnerability

Virtualization software maker VMware issued an update last Thursday resolving a virtual machine communication interface VMCI vulnerability in its ESX Server, Workstation, Fusion and View products that could lead to a privilege escalation if unpatched. According to the VMware security advisory, a...

2.6AI score
Exploits0References2
ThreatPost
ThreatPost
added 2013/02/05 5:23 p.m.12 views

SCADA, ICS Bug Brokering Mirrors IT Vulnerability Market

SAN JUAN, Puerto Rico – The world of SCADA and industrial control system vulnerabilities is starting to mirror that of IT security, not only in the demonstration and exploitation of zero-day vulnerabilities, but in the brokering of flaws and exploits between hackers and organizations interested i...

0.2AI score
Exploits0References2
ThreatPost
ThreatPost
added 2013/01/17 7:56 p.m.13 views

Researchers Highlight Medical Device Security at Annual ICS Conference

Two popular industrial control system ICS researchers this week demonstrated how easily medical devices, including a Philips-branded machine that regularly interacts with x-ray machines and other hospital equipment, can be hacked. At Digital Bond’s annual SCADA Security Scientific Symposium S4...

0.4AI score
Exploits0References9
VMware
VMware
added 2012/11/06 12:0 a.m.65 views

VMSA-2012-0015:VMware Hosted Products and OVF Tool address security issues

VMSA-2012-0015 VMware Hosted Products and OVF Tool address security issues VMware Security Advisory VMware Security Advisory Advisory ID: VMSA-2012-0015 VMware Security Advisory Synopsis: VMware Hosted Products and OVF Tool address security issues VMware Security Advisory Issue date: 2012-11-08...

9.3CVSS6.4AI score0.47719EPSS
Exploits12References1Affected Software3
Rows per page
Query Builder