Siemens SIMATIC and SCALANCE Devices Improper Restriction of Communication Channel to Intended Endpoints (CVE-2022-2663)

An issue was found in the Linux kernel in nfconntrackirc where the message handling can be confused and incorrectly matches the message. A firewall may be able to be bypassed when users are using unencrypted IRC with nfconntrackirc configured. This plugin only works with Tenable.ot. Please visit...

10-Year-Old 'RUBYCARP' Romanian Hacker Group Surfaces with Botnet

A threat group of suspected Romanian origin called RUBYCARP has been observed maintaining a long-running botnet for carrying out crypto mining, distributed denial-of-service DDoS, and phishing attacks. The group, believed to be active for at least 10 years, employs the botnet for financial gain,...

MOAB-16-01-2007.rb.txt

!/usr/bin/ruby c Copyright 2006 Lance M. Havok Makes use of the Colloquy INVITE format string vulnerability. require 'socket' targetchannel = ARGV0 || "whatever" targetserver = ARGV1 || "irc.server.org" targetport = ARGV2 || 6667 randnick = "spongebo" channeljoined = false readytogo = false...

psyBNC 2.3 Beta - encrypted text "spoofable" in others' irc terminal

BACKGROUND: psyBNC http://www.psychoid.lam3rz.de is an IRC bouncer with a variety of fantastic features. one of these features in encryption of irc text, with keys set on a per-channel basis. SUMMARY: someone call them person A in an irc channel where psyBNC users are chatting encrypted can...