ScarCruft Uses Zoho WorkDrive and USB Malware to Breach Air-Gapped Networks

The North Korean threat actor known as ScarCruft has been attributed to a fresh set of tools, including a backdoor that uses Zoho WorkDrive for command-and-control C2 communications to fetch more payloads and an implant that uses removable media to relay commands and breach air-gapped networks. T...

EUVD-2016-2990

Malware in sbrugna...

Emerson 396804-01-2 Isolated Digital Input/Output module Detection

Binary data 756526.prm...

Emerson 396357-01-6 Digital Input module Detection

Binary data 756537.prm...

Emerson 396357-02-4 Digital Input module Detection

Binary data 756538.prm...

Emerson 396570-05-4 Non-isolated High Speed Counter Detection

Binary data 756514.prm...

Emerson 396568-01-7 Non-isolated Analog Input/Output module Detection

Binary data 756510.prm...

Emerson 396357-12-1 Digital Input module Detection

Binary data 756540.prm...

Emerson 396571-02-6 Isolated Digital Input module Detection

Binary data 756503.prm...

Chicken Jumper - Native code usage, SD-card access, Suspicious files vulnerabilities

HackApp vulnerability scanner discovered that application Chicken Jumper published at the 'play' market has multiple vulnerabilities...

Microsoft Windows - NetAPI32.dll Code Execution (Python) (MS08-067)

Microsoft Windows - NetAPI32.dll Code Execution Python MS08-067 import struct import time import sys from threading import Thread Thread is imported incase you would like to modify try: from impacket import smb from impacket import uuid from impacket import dcerpc from impacket.dcerpc.v5 import...

Lexmark Printer Competitive Conditions Vulnerability

Lexmark printer is a printer product from Lexmark, USA. A competitive condition vulnerability exists in the initialization process of the Lexmark printer. A remote attacker can bypass authentication via incorrect detection of security-jumper state...

CVE-2016-1896

Race condition in the initialization process on Lexmark printers with firmware ATL before ATL.02.049, CB before CB.02.049, PP before PP.02.049, and YK before YK.02.049 allows remote attackers to bypass authentication by leveraging incorrect detection of the security-jumper status...

CVE-2016-1896

Race condition in the initialization process on Lexmark printers with firmware ATL before ATL.02.049, CB before CB.02.049, PP before PP.02.049, and YK before YK.02.049 allows remote attackers to bypass authentication by leveraging incorrect detection of the security-jumper status...

CVE-2016-1896

Race condition in the initialization process on Lexmark printers with firmware ATL before ATL.02.049, CB before CB.02.049, PP before PP.02.049, and YK before YK.02.049 allows remote attackers to bypass authentication by leveraging incorrect detection of the security-jumper status...

Security Firm Reveals Flaw in Dirt Jumper Bot

A team of researchers has discovered a weakness in the command-and-control infrastructure of one of the major DDoS toolkits, Dirt Jumper, that enables them to stop attacks that are in progress. The command and control C&C servers of the Dirt Jumper DDoS toolkit can be compromised and, in principl...

Researchers Find Flaw in Dirt Jumper Bot

A team of researchers has discovered a weakness in the command-and-control infrastructure of one of the major DDoS toolkits, Dirt Jumper, that enables them to stop attacks that are in progress. The discovery gives the researchers the ability to access the back-end servers that control the attack...