This Week in Spring - August 13th, 2024

Hi, Spring fans! Welcome to another installment of This Week in Spring! It's Tuesday and work is well underway to prepare for the huge SpringOne event in Las Vegas in just a few short week's time! I'm elated! So, let's get this roundup on the road so I can get back to the preparation frenzy...

A child sent out gibberish tweet from official US Nuclear-agency account

By Deeba Ahmed A Child’s Gibberish Tweet from US Nuclear-agency Account Sends Twitter into Frenzy - Sparks Debates on National Security. This is a post from HackRead.com Read the original post: A child sent out gibberish tweet from official US Nuclear-agency account...

It’s Not the Trump Sex Tape, It’s a RAT

As outgoing President Donald Trump continues to dominate headlines, cybercriminals have decided to horn in on the much-gossiped-about — and yet to materialize — Trump sex tape as a lure for malware delivery. A campaign has been uncovered that labels a malware downloader with the filename...

Phishing-Frenzy - Ruby On Rails Phishing Framework

Phishing Frenzy is an Open Source Ruby on Rails application that is leveraged by penetration testers to manage email phishing campaigns. The project was started in 2013 by the founder Brandon "zeknox" McCann. Brandon identified inefficiencies in the way that many penetration testers were conducti...

Security News: Bluetooth Bug Triggers Patch Frenzy, as Ransomware Attack Hits Global Shipper

A scary Bluetooth bug. A crippling ransomware attack. A cyber threat to the U.S. electrical grid. A data leak of trade secrets from major car makers such as Tesla and GM. These were some of the security industry news that caught our eye last week. Bluetooth vulnerability rattles vendors, end user...

Phishing Frenzy - Ruby on Rails Phishing Framework

Phishing Frenzy is an Open Source Ruby on Rails application that is leveraged by penetration testers to manage email phishing campaigns. The project was started in 2013 by the founder Brandon "zeknox" McCann. Brandon identified inefficiencies in the way that many penetration testers were conducti...

Soccer Frenzy 2016 - Base64 encoded String, Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Soccer Frenzy 2016 published at the 'play' market has multiple vulnerabilities...

Snow Holiday: Parking Frenzy - Customized SSL, WebView SSL handling enabled, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Snow Holiday: Parking Frenzy published at the 'play' market has multiple vulnerabilities...

Parking Frenzy 2.0 - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application Parking Frenzy 2.0 published at the 'play' market has multiple vulnerabilities...

Cookie Blast Frenzy - Customized SSL, WebView SSL handling enabled, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Cookie Blast Frenzy published at the 'play' market has multiple vulnerabilities...

Candy Frenzy 2 - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application Candy Frenzy 2 published at the 'play' market has multiple vulnerabilities...

CVE-2014-5830

The Farm Frenzy Gold aka com.herocraft.game.farmfrenzy.gold application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-5830

The Farm Frenzy Gold aka com.herocraft.game.farmfrenzy.gold application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-5830

CVE-2014-5830 affects the Android app Farm Frenzy Gold (com.herocraft.game.farmfrenzy.gold) version 1.0.1. The vulnerability is a failure to verify X.509 certificates from SSL servers, enabling man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

SIDA University System SQL Injection Vulnerability

No description provided by source. Author: K053 K053.dev0te3 at gmail Vendor : SIDA http://91.98.156.224/ Version: All below 1389 are vulberable ==================================================================================== Note: Seems vendor patched this vulnerability in newest update 1389...

Facebook Game - Fruit Ninja Frenzy Detected (deprecated)

Binary data 6422.prm...

Stuxnet Finger Pointing

Stuxnet debuted with a frenzy in 2010 after researchers exposed the malware already busily disrupting Iran’s nuclear enrichment program. That was followed this past year by continued speculation, finger pointing and even some dismissive attitudes about the worm, which targets Siemens-made...

linux/x86 eject/close cd-rom loop (follows /dev/cdrom symlink) 45 bytes

Exploit for linux/x86 platform in category shellcode ======================================================================= linux/x86 eject/close cd-rom loop follows /dev/cdrom symlink 45 bytes ======================================================================= / linux/x86 eject & close cd-r...

linux/x86 eject/close cd-rom loop follows /dev/cdrom symlink 45 bytes

linux/x86 eject/close cd-rom loop follows /dev/cdrom symlink 45 bytes. Shellcode exploit for linx86 platform / linux/x86 eject & close cd-rom frenzy loop follows "/dev/cdrom" symlink - 45 bytes - izik / char shellcode = "\x6a\x05" // push $0x5 "\x58" // pop %eax "\x31\xc9" // xor %ecx,%ecx "\x51"...