Lucene search
K

20 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-5787

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.0175EPSS
Exploits1References6
Github Security Blog
Github Security Blog
added 2022/05/24 5:48 p.m.41 views

Metasploit Framework user exposes Metasploit to same deserialization issue that is exploited by that module

By launching the drbremotecodeexec exploit, a Metasploit Framework user will inadvertently expose Metasploit to the same deserialization issue that is exploited by that module, due to the reliance on the vulnerable Distributed Ruby class functions. Since Metasploit Framework typically runs with...

8.8CVSS8.2AI score0.0175EPSS
Exploits1References5Affected Software1
Rapid7 Blog
Rapid7 Blog
added 2021/08/10 1:32 p.m.34 views

Hack Back Is Still Wack

Every year or two, we see a policy proposal around authorizing private-sector hack back. The latest of these is legislation from two U.S. Senators, Daines and Whitehouse, and it would require the U.S. Department of Homeland Security DHS to “conduct a study on the potential benefits and risks of...

0.3AI score
Exploits0
OSV
OSV
added 2021/04/23 4:15 p.m.5 views

CVE-2020-7385

By launching the drbremotecodeexec exploit, a Metasploit Framework user will inadvertently expose Metasploit to the same deserialization issue that is exploited by that module, due to the reliance on the vulnerable Distributed Ruby class functions. Since Metasploit Framework typically runs with...

8.8CVSS5.8AI score0.0175EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2020/01/14 12:0 a.m.24 views

Remote Desktop Client remote code execution vulnerability

A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka ‘Remote Desktop Client Remote Code Execution Vulnerability’. Recent assessments: busterb at January 15, 2020 2:29am UTC reported: This is a client-side exploit, which...

7.5CVSS2.4AI score0.0808EPSS
Exploits0References2
Trend Micro Simply Security
Trend Micro Simply Security
added 2019/06/14 1:25 p.m.329 views

This Week in Security News: Spam Campaigns and Cryptocurrency Miners

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn about advanced targeted attack tools being used to distribute cryptocurrency miners as well as a spam campaign targeting European user...

9.3CVSS8.7AI score0.99964EPSS
Exploits66
Richard Bejtlich's blog
Richard Bejtlich's blog
added 2018/06/25 7:3 p.m.69 views

Bejtlich on the APT1 Report: No Hack Back

Before reading the rest of this post, I suggest reading Mandiant/FireEye's statement Doing Our Part -- Without Hacking Back. I would like to add my own color to this situation. First, at no time when I worked for Mandiant or FireEye, or afterwards, was there ever a notion that we would hack into...

0.4AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2018/06/01 2:16 p.m.42 views

This Week in Security News: ePrivacy and Hack Back

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, the Council of the European Union reviewed a bill dubbed the “ePrivacy” Regulation, which targets message-sharing services like WhatsApp and...

8.4AI score
Exploits0
Malwarebytes
Malwarebytes
added 2018/05/18 4:0 p.m.70 views

Why tech companies wanted Senate Bill 315 vetoed

When Georgia Senate Bill 315 SB-315 was introduced, people in the tech world anxiously awaited its fate, regardless of their geographic location. They knew that some laws initially restricted to single states become more widespread after politicians set precedents. And they knew that this law cou...

Exploits0
ThreatPost
ThreatPost
added 2018/05/09 4:8 p.m.9 views

Georgia Governor Vetoes Controversial Hack-Back Bill

Recognizing the concerns of tech giants and security researchers alike, Georgia Gov. Nathan Deal has vetoed a controversial “hack-back” bill that would have allowed companies in the state to perform offensive cyber-actions in the face of an attack. “Certain components of the legislation have led ...

0.9AI score
Exploits0References3
ThreatPost
ThreatPost
added 2018/05/02 8:13 p.m.13 views

Hacktivists, Tech Giants Protest Georgia’s ‘Hack-Back’ Bill

As Georgia Governor Nathan Deal considers whether to sign a controversial piece of legislation that would allow companies to “hack back” with offensive initiatives in the face of a cyberattack, companies from across the tech spectrum are lining up to protest the measure. Also, a hacktivist group...

1.6AI score
Exploits0References4
Malwarebytes
Malwarebytes
added 2017/11/13 8:47 p.m.59 views

A week in security (November 6 – November 12)

After coming out victorious in a case against PUPs, Malwarebytes CEO Marcin Kleczynski has this to say: We fought for our users and we won. -- Marcin Kleczynski @mkleczynski November 9, 2017 And my, do we feel like champions! You can read more about this here. Last week, we looked into the...

6.6AI score
Exploits0
Carbon Black Blog
Carbon Black Blog
added 2017/10/26 1:46 p.m.37 views

October 26, 2017 – Morning Cyber Coffee Headlines – “Continental Congress” Edition

Good morning! Sit with Carbon Black this morning over a cup of coffee or tea and browse a few industry headlines to get the day started. We’ve got just enough information below to get you through that first cup…enjoy! October 26, 2017 - Headlines Carbon Black in the News: Protecting elections fro...

6.7AI score
Exploits0
Carbon Black Blog
Carbon Black Blog
added 2017/10/23 1:37 p.m.33 views

October 21, 2017 – Morning Cyber Coffee Headlines – “British Parliament” Edition

Good morning! Sit with Carbon Black this morning over a cup of coffee or tea and browse a few industry headlines to get the day started. We’ve got just enough information below to get you through that first cup…enjoy! October 21, 2017 - Headlines Carbon Black in the News: Not good: Ransomware is...

6.6AI score
Exploits0
Malwarebytes
Malwarebytes
added 2017/06/12 4:58 p.m.17 views

A week in security (Jun 05 – Jun 11)

Last week, we interviewed our very own Pieter Arntz to get to know him a little better. We also touched on the importance of HTTPS and focused on a new social engineering scheme that triggers on mouse movement. We also took a deeper look at LatentBot, a Trojan that is being distributed by the RIG...

7AI score
Exploits0
seebug.org
seebug.org
added 2008/11/19 12:0 a.m.30 views

Free Directory Script 1.1.1 (API_HOME_DIR) RFI Vulnerability

No description provided by source. Directory v1.1.1 APIHOMEDIR RFI Vulnerablity © Ghost Hacker , Real Hack Back : Author : Ghost Hacker Homepage : www.Real-h.com Real Hack Back Contact Me : Ghost-r00tatHotmaildotcom Bug : RFI From : Kingdom Saudi Arabia Name Script : Directory v1.1.1 Download :...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2008/11/19 12:0 a.m.31 views

directory-rfi.txt

Directory v1.1.1 APIHOMEDIR RFI Vulnerablity © Ghost Hacker , Real Hack Back : Author : Ghost Hacker Homepage : www.Real-h.com Real Hack Back Contact Me : Ghost-r00tatHotmaildotcom Bug : RFI From : Kingdom Saudi Arabia Name Script : Directory v1.1.1 Download :...

7.4AI score
Exploits0
0day.today
0day.today
added 2008/11/18 12:0 a.m.37 views

Free Directory Script 1.1.1 (API_HOME_DIR) RFI Vulnerability

Exploit for unknown platform in category web applications ============================================================ Free Directory Script 1.1.1 APIHOMEDIR RFI Vulnerability ============================================================ Directory v1.1.1 APIHOMEDIR RFI Vulnerablity © Ghost Hacker...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2008/11/18 12:0 a.m.22 views

Free Directory Script 1.1.1 - API_HOME_DIR Remote File Inclusion

Free Directory Script 1.1.1 - APIHOMEDIR Remote File Inclusion Directory v1.1.1 APIHOMEDIR RFI Vulnerablity © Ghost Hacker , Real Hack Back : Author : Ghost Hacker Homepage : www.Real-h.com Real Hack Back Contact Me : Ghost-r00tatHotmaildotcom Bug : RFI From : Kingdom Saudi Arabia Name Script :...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2008/10/09 12:0 a.m.198 views

News Manager Remote SQL Injection Vulnerability

News Manager Remote SQL Injection Vulnerability © Ghost Hacker , Real Hack Back : Author : Ghost Hacker Home page : www.Real-h.com Real Hack Back Contact Me : [email protected] Bug : SQL Injection From : Kingdom Saudi Arabia Name Script : News Manager Download :...

1.4AI score
Exploits0
Rows per page
Query Builder