Targeted Attacks against Banks in the Middle East

Introduction In the first week of May 2016, FireEye’s DTI identified a wave of emails containing malicious attachments being sent to multiple banks in the Middle East region. The threat actors appear to be performing initial reconnaissance against would-be targets, and the attacks caught our...

Targeted Attacks against Banks in the Middle East

UPDATE Dec. 8, 2017: We now attribute this campaign to APT34, a suspected Iranian cyber espionage threat group that we believe has been active since at least 2014. Learn more about APT34 and their late 2017 targeting of a government organization in the Middle East. Introduction In the first week ...

FileMaker server issue where PHP source code may be viewable

Overview FileMaker server contains an issue where PHP source code may be viewable when Custom Web Publishing with PHP is enabled. Atsushi Matsuo of Emic Corporation reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership...

kernel security and bug fix update

3.10.0-327.18.2.OL7 - Oracle Linux certificates Alexey Petrenko 3.10.0-327.18.2 - lib keys: Fix ASN.1 indefinite length object parsing David Howells 1308814 1308815 CVE-2016-0758 3.10.0-327.18.1 - scsi bnx2fc: Fix FCP RSP residual parsing Maurizio Lombardi 1322279 1306342 - mm madvise: fix...

M-Drill - Suspicious files, WebView JavaScript enabled, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application M-Drill published at the 'play' market has multiple vulnerabilities...

CVE-2016-4065

The ConvertToPDF plugin in Foxit Reader and PhantomPDF before 7.3.4 on Windows, when the gflags app is enabled, allows remote attackers to cause a denial of service out-of-bounds read and application crash via a crafted 1 JPEG, 2 GIF, or 3 BMP image...

SAS Scandinavian Airlines - Base64 encoded String, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application SAS Scandinavian Airlines published at the 'play' market has multiple vulnerabilities...

マゼラニカ クロニクル S ～『つなげて×まぜて』RPG ～ - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application マゼラニカ クロニクル S ～『つなげて×まぜて』RPG ～ published at the 'play' market has multiple vulnerabilities...

Toilet Training - Baby's Potty - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application Toilet Training - Baby's Potty published at the 'play' market has multiple vulnerabilities...

Jump Steeve minecraft style - External URLs, Unsafe deleting, WebView JavaScript enabled vulnerabilities

HackApp vulnerability scanner discovered that application Jump Steeve minecraft style published at the 'play' market has multiple vulnerabilities...

Vacation Vexation (Free) - Customized SSL, WebView SSL handling enabled, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Vacation Vexation Free published at the 'play' market has multiple vulnerabilities...

BheemandGaneshaActionComic - External URLs, WebView JavaScript enabled, WebView files access vulnerabilities

HackApp vulnerability scanner discovered that application BheemandGaneshaActionComic published at the 'play' market has multiple vulnerabilities...

Word Search Free - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application Word Search Free published at the 'play' market has multiple vulnerabilities...

메가폴리스 for Kakao - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application 메가폴리스 for Kakao published at the 'play' market has multiple vulnerabilities...

Guns'n'Glory WW2 - Customized SSL, WebView SSL handling enabled, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Guns'n'Glory WW2 published at the 'play' market has multiple vulnerabilities...

Skiing Yeti Mountain - Base64 encoded String, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application Skiing Yeti Mountain published at the 'play' market has multiple vulnerabilities...

Airport Police Dog Duty Sim - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application Airport Police Dog Duty Sim published at the 'play' market has multiple vulnerabilities...

Terra Battle - Base64 encoded String, Customized SSL, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application Terra Battle published at the 'play' market has multiple vulnerabilities...

Moto Extreme - Motor Rider - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application Moto Extreme - Motor Rider published at the 'play' market has multiple vulnerabilities...

Crazy Driver Police Duty 3D - Customized SSL, WebView SSL handling enabled, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Crazy Driver Police Duty 3D published at the 'play' market has multiple vulnerabilities...