Lucene search
K

121 matches found

ThreatPost
ThreatPost
added 2021/09/14 5:21 p.m.45 views

ZLoader’s Back, Abusing Google AdWords, Disabling Windows Defender

A targeted campaign delivering the ZLoader banking trojan is spreading via Google AdWords, and is using a mechanism to disable all Windows Defender modules on victim machines, researchers have found. That’s according to SentinelLabs, which said that to lower the rates of detection, the infection...

7.3AI score
Exploits0References5
The Hacker News
The Hacker News
added 2021/07/30 7:36 a.m.65 views

A New Wiper Malware Was Behind Recent Cyberattack On Iranian Train System

A cyber attack that derailed websites of Iran's transport ministry and its national railway system earlier this month, causing widespread disruptions in train services, was the result of a never-before-seen reusable wiper malware called "Meteor." The campaign — dubbed "MeteorExpress" — has not be...

1.1AI score
Exploits0
The Hacker News
The Hacker News
added 2021/07/20 8:41 a.m.145 views

This New Malware Hides Itself Among Windows Defender Exclusions to Evade Detection

Cybersecurity researchers on Tuesday lifted the lid on a previously undocumented malware strain dubbed "MosaicLoader" that singles out individuals searching for cracked software as part of a global campaign. "The attackers behind MosaicLoader created a piece of malware that can deliver any payloa...

1.2AI score
Exploits0
CNNVD
CNNVD
added 2021/05/18 12:0 a.m.5 views

Bitdefender Endpoint Security Tool 安全漏洞

Bitdefender Endpoint Security Tool is an endpoint security management tool from the Romanian company Bitdefender. A security vulnerability exists in versions prior to Bitdefender Endpoint Security Tools 6.6.23.320, which stems from the presence of improper access control that allows a normal user...

4CVSS4.9AI score0.00474EPSS
Exploits0References2
Kitploit
Kitploit
added 2020/08/01 12:30 p.m.70 views

Cloudsplaining - An AWS IAM Security Assessment Tool That Identifies Violations Of Least Privilege And Generates A Risk-Prioritized Report

Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized HTML report. Example report Documentation For full documentation, please visit the project on ReadTheDocs. Installation Cheat sheet Example report Overview...

7.5AI score
Exploits0References10
Veeam
Veeam
added 2020/05/07 12:0 a.m.415 views

Veeam Recovery Media Shows Command Line Only

Challenge When booting from the Veeam Recovery Media, the Veeam Agent machine displays the command line interface instead of the Veeam Recovery Media screen. Cause Comodo Firewall , Comodo Antivirus Software, or Central Management Software for Comodo may block some of the Veeam Agent processes,...

6.8AI score
Exploits0
Veeam
Veeam
added 2019/12/24 12:0 a.m.35 views

Antivirus Exclusions for Veeam Backup for Microsoft 365

Purpose This article documents antivirus exclusions that may be created to reduce the impact that antivirus software has on the functionality of Veeam Backup for Microsoft 365. These antivirus exclusions may be applied to the Windows built-in antivirus or third-party antivirus software. Note:...

6.6AI score
Exploits0Affected Software1
OSV
OSV
added 2019/10/28 3:15 p.m.6 views

CVE-2019-3636

A File Masquerade vulnerability in McAfee Total Protection MTP version 16.0.R21 and earlier in Windows client allowed an attacker to read the plaintext list of AV-Scan exclusion files from the Windows registry, and to possibly replace excluded files with potential malware without being detected...

7.8CVSS7.1AI score0.00225EPSS
Exploits0References1
ArchLinux
ArchLinux
added 2019/10/16 12:0 a.m.6 views

[ASA-201910-9] sudo: privilege escalation

Arch Linux Security Advisory ASA-201910-9 ========================================= Severity: High Date : 2019-10-16 CVE-ID : CVE-2019-14287 Package : sudo Type : privilege escalation Remote : No Link : https://security.archlinux.org/AVG-1047 Summary ======= The package sudo before version 1.8.28...

9CVSS5.8AI score0.63917EPSS
Exploits10References4
Kitploit
Kitploit
added 2019/10/04 8:30 p.m.428 views

Fenrir - Simple Bash IOC Scanner

Fenrir is a simple IOC scanner bash script. It allows scanning Linux/Unix/OSX systems for the following Indicators of Compromise IOCs: Hashes MD5, SHA1 and SHA256 using md5sum, sha1sum, sha -a 256 File Names string - checked for substring of the full path, e.g. "temp/p.exe" in "/var/temp/p.exe"...

7.3AI score
Exploits0References3
Veeam
Veeam
added 2019/02/11 9:33 a.m.18 views

Service Provider guide on troubleshooting slow merge in Cloud Connect jobs

Challenge During synthetic operations, data processing is handled solely by a Cloud repository. This article provides troubleshooting recommendations which may help to correctly identify the cause of slowness, increase performance and shorten backup window. Solution 1 Storage performance The firs...

6.5AI score
Exploits0
Hacker One
Hacker One
added 2019/01/24 3:4 p.m.17 views

Rockstar Games: Flash injection vulnerability on /IV/imgPlayer/imageEmbed.swf

In this report, the researcher identified a vulnerability in a Flash file that could be exploited with Open Redirect and XSS attacks. With their help we identified the root cause and we put out an update to the impacted page to cause attempted attacks to redirect to a 404 page, rather than succee...

1.4AI score
Exploits0
OpenVAS
OpenVAS
added 2018/09/19 12:0 a.m.36 views

Microsoft Windows Defender AV: Turn off Auto Exclusions

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winavautoexclusions.nasl 11495 2018-09-20 10:06:25Z emoss $ Check value for Turn off Auto Exclusions Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net This program is free...

7.3AI score
Exploits0
OpenVAS
OpenVAS
added 2018/09/19 12:0 a.m.11 views

Microsoft Windows Defender AV: Process Exclusions

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winavprocessexclusions.nasl 11495 2018-09-20 10:06:25Z emoss $ Check value for Process Exclusions Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net This program is free...

7.3AI score
Exploits0
OpenVAS
OpenVAS
added 2018/09/19 12:0 a.m.20 views

Microsoft Windows Defender AV: Path Exclusions

This test checks the setting for policy OpenVAS Vulnerability Test $Id: winavpathexclusions.nasl 11495 2018-09-20 10:06:25Z emoss $ Check value for Path Exclusions Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; yo...

7.3AI score
Exploits0
Veeam
Veeam
added 2018/09/13 12:0 a.m.18 views

Antivirus Exclusions for Veeam Recovery Orchestrator

Cause This article documents antivirus exclusions that may be created to reduce the impact that antivirus software has on the functionality of $product.title.vdro. These antivirus exclusions may be applied to the Windows built-in antivirus or third-party antivirus software. Note: Antivirus will n...

6.7AI score
Exploits0Affected Software1
Veeam
Veeam
added 2018/04/30 12:0 a.m.19 views

Antivirus Exclusions for Veeam Service Provider Console

Purpose This article documents antivirus exclusions that may be created to reduce the impact that antivirus software has on the functionality of Veeam Service Provider Console. These antivirus exclusions may be applied to the Windows built-in antivirus or third-party antivirus software. Note:...

5.8AI score
Exploits0
Schneier on Security
Schneier on Security
added 2017/04/26 11:14 a.m.16 views

Analyzing Cyber Insurance Policies

There's a really interesting new paper analyzing over 100 different cyber insurance policies. From the abstract: In this research paper, we seek to answer fundamental questions concerning the current state of the cyber insurance market. Specifically, by collecting over 100 full insurance policies...

6.7AI score
Exploits0
Microsoft KB
Microsoft KB
added 2017/03/14 7:0 a.m.188 views

March 14, 2017—KB4013198 (OS Build 10586.839)

March 14, 2017—KB4013198 OS Build 10586.839 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addressed a known issue with KB3192441 that was rendering DFS-N mapped network drives inaccessib...

9.3CVSS7.5AI score0.99693EPSS
Exploits130
Citrix
Citrix
added 2016/09/27 12:0 a.m.14 views

How to Troubleshoot Virtual Delivery Agent (VDA) Registration Issues

Cloud Admins: Run the Cloud Health Check InstructionsandInstallationSelect Cloud Health Check from the dropdown OnPrem Admins: Run the Citrix Scout Health Introduction to Citrix Scout After running the CHC or Scout depending on your environment begin troubleshooting common root causes: 1. Check V...

6.8AI score
Exploits0
Rows per page
Query Builder