Lucene search
+L

174 matches found

Carbon Black Blog
Carbon Black Blog
added 2019/01/10 4:12 p.m.14 views

TAU Threat Intelligence Notification: Israbye Wiper

Summary Israbye is a disk wiper first discovered by a researcher in August 2017, as reported by Bleeping Computer. A newer sample has since been discovered, which appears to timely coincide with a recent news story that references the Al-Aqsa mosque. This mosque is also referenced within the...

1AI score
Exploits0
Veeam
Veeam
added 2018/12/25 12:0 a.m.17 views

How to Move Veeam Backup for Nutanix AHV Backup Files

Purpose This article documents how to migrate Veeam Backup for Nutanix AHV backup files to a different Veeam Backup & Replication Repository. Solution Considerations and Limitations This process only works when moving backup files between Repositories of the same Veeam Backup & Replication server...

7AI score
Exploits0Affected Software1
NVD
NVD
added 2018/11/26 3:29 a.m.16 views

CVE-2018-19537

TP-Link Archer C5 devices through V2160201US allow remote command execution via shell metacharacters on the wandynhostname line of a configuration file that is encrypted with the 478DA50BF9E3D2CF key and uploaded through the web GUI by using the web admin account. The default password of admin ma...

9CVSS7.3AI score0.05984EPSS
Exploits1References1
CNVD
CNVD
added 2018/09/04 12:0 a.m.6 views

AttacheCase Arbitrary Code Execution Vulnerability (CNVD-2018-17324)

AttacheCase is a suite of file encryption software. An arbitrary code execution vulnerability exists in AttacheCase, which can be exploited by a remote, unauthenticated attacker to execute arbitrary scripts...

7.8CVSS8.2AI score0.01434EPSS
Exploits0References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2018/08/31 12:0 a.m.545 views

JVN#02037158: AttacheCase vulnerable to arbitrary script execution

AttacheCase is an open source file encryption software provided by HiBARA Software. If a setting file AtcCase.ini is specially crafted and it resides in the same folder where ATC file resides, it is leveraged to execute an arbitrary script when ATC file is decrypted. Impact A remote unauthenticat...

7.8CVSS7.7AI score0.01434EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2018/08/01 4:47 p.m.19 views

Security Bulletin: IBM Spectrum Scale and IBM GPFS are affected by a security vulnerability (CVE-2016-6115)

Summary A security vulnerability has been identified in IBM Spectrum Scale GPFS that could allow a remote authenticated attacker to overflow a buffer and execute arbitrary code on the system with root privileges or cause the server to crash. This vulnerability is only applicable if: - file...

9CVSS1AI score0.03954EPSS
Exploits0Affected Software1
Malwarebytes
Malwarebytes
added 2018/06/19 4:14 p.m.86 views

SamSam ransomware: controlled distribution for an elusive malware

SamSam ransomware has been involved in some high profile attacks recently, and remains a somewhat elusive malware. In its time being active, SamSam has gone through a slight evolution, adding more features and alterations into the mix. These changes do not necessarily make the ransomware more...

7.3AI score
Exploits0
The Hacker News
The Hacker News
added 2018/06/18 2:50 p.m.63 views

Apple macOS Bug Reveals Cache of Sensitive Data from Encrypted Drives

Security researchers are warning of almost a decade old issue with one of the Apple's macOS feature which was designed for users' convenience but is potentially exposing the contents of files stored on password-protected encrypted drives. Earlier this month, security researcher Wojciech Regula fr...

0.2AI score
Exploits0
ThreatPost
ThreatPost
added 2018/05/10 8:23 p.m.11 views

GandCrab Ransomware Found Hiding on Legitimate Websites

The GandCrab ransomware continues to virulently spread and adapt to shifting cyber-conditions, most recently crawling back into relevance on the back of several large-scale spam campaigns. What’s interesting is that GandCrab payload was found hiding on legitimate but compromised websites. These,...

0.5AI score
Exploits0References3
Kitploit
Kitploit
added 2017/11/24 8:36 p.m.21 views

EmbedInHTML - Embed and hide any file in an HTML file

What this tool does is taking a file any type of file, encrypt it, and embed it into an HTML file as ressource, along with an automatic download routine simulating a user clicking on the embedded ressource. Then, when the user browses the HTML file, the embedded file is decrypted on the fly, save...

7.1AI score
Exploits0References5
Securelist
Securelist
added 2017/07/04 6:22 p.m.113 views

In ExPetr/Petya’s shadow, FakeCry ransomware wave hits Ukraine

While the cyber-world was still shaking under the destructive ExPetr/Petya attack that hit on June 27, another ransomware attack targeting Ukraine at the same time went almost unnoticed. So far, all theories regarding the spread of ExPetr/Petya point into two directions: Distribution via trojaniz...

6.8AI score
Exploits0
ThreatPost
ThreatPost
added 2017/06/01 10:9 a.m.17 views

WannaCry Development Errors Enable File Recovery

WannaCry may have caused worldwide havoc on May 12 when it rode the coattails of the NSA’s weaponized EternalBlue exploit to infect computers in 150 countries, but that doesn’t mean it was a quality piece of ransomware. A number of programming errors in the code are floating to the surface and...

6.9AI score
Exploits0References10
Imperva Blog
Imperva Blog
added 2017/05/16 3:42 p.m.28 views

What’s Next for Ransomware: Data Corruption, Exfiltration and Disruption

Ransomware’s popularity continues to skyrocket, due to its successful business model and the significant profit paid by its victims. Unlike other malware business models – where attackers steal data and then sell it on the darknet; hackers who utilize ransomware as their attack vector receive...

8.1AI score
Exploits0
The Hacker News
The Hacker News
added 2017/05/12 6:19 a.m.15 views

Botnet Sending 5 Million Emails Per Hour to Spread Jaff Ransomware

A massive malicious email campaign that stems from the Necurs botnet is spreading a new ransomware at the rate of 5 million emails per hour and hitting computers across the globe. Dubbed "Jaff," the new file-encrypting ransomware is very similar to the infamous Locky ransomware in many ways, but ...

6.8AI score
Exploits0
CNVD
CNVD
added 2017/05/09 12:0 a.m.5 views

Google Android File Encryption Information Disclosure Vulnerability

Google Android is a Linux-based operating system for smartphone devices. An information disclosure vulnerability exists in Google Android file encryption, which can be exploited by remote attackers to build malicious applications that can be parsed by users and can access sensitive information...

5.5CVSS6.2AI score0.00338EPSS
Exploits0References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2017/01/16 12:0 a.m.41 views

JVN#83917769: AttacheCase vulnerable to directory traversal

AttacheCase is an open source file encryption software provided by HiBARA Software. AttacheCase contains a directory traversal vulnerability CWE-22 due to a flaw in processing filenames in ATC files. Impact Decrypting a crafted ATC file may result in creation of an arbitrary file or overwriting o...

5.5CVSS5.5AI score0.02605EPSS
Exploits0
Trellix
Trellix
added 2016/12/19 12:0 a.m.14 views

‘Popcorn Time’ Ransomware Sure to Cause Indigestion

ARCHIVED STORY ‘Popcorn Time’ Ransomware Sure to Cause Indigestion By Tim Hux · December 19, 2016 In early December the new ransomware “Popcorn Time” was discovered. It gives the victim the option of paying the ransom or infecting two other individuals and getting them to pay. “Popcorn Time” is a...

7.5AI score
Exploits0
Packet Storm
Packet Storm
added 2016/11/18 12:0 a.m.62 views

PowerShellEmpire Arbitrary File Upload (Skywalker)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule 'PowerShellEmpire Arbitrary File Upload Skywalker', 'Description' = %q A vulnerability existed in the PowerShellEmpire server...

0.4AI score
Exploits0
myhack58
myhack58
added 2016/11/02 12:0 a.m.33 views

Swiss Star: extortion virus is a new variant after the poisoning 1 0 5 4 full file encryption-vulnerability warning-the black bar safety net

Recently, the rising“cloud security”system intercepted a new type of blackmail Virus, the virus encrypts files up to 1 0 5 4, file Unified encryption for. encrypted format, thus a ransom of 1 bitcoinabout RMB 4 5 0 0 Yuan. If the user is not within the prescribed time hack payment, the encrypted...

6.9AI score
Exploits0
The Hacker News
The Hacker News
added 2016/10/18 1:1 a.m.232 views

VeraCrypt Audit Reveals Critical Security Flaws — Update Now

After TrueCrypt mysteriously discontinued its service, VeraCrypt became the most popular open source disk encryption software used by activists, journalists, as well as privacy conscious people. First of all, there is no such thing as a perfect, bug-free software. Even the most rigorously tested...

7.3AI score
Exploits0
Rows per page
Query Builder