Malicious code in source-registry-storage-adapter (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a58e938437093f6d5a08c8a6adccfdf20c7352f33de3443cb19ae4f665a87928 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Spear Phishing Techniques Used in Attacks Targeting the Mongolian Government

Introduction FireEye recently observed a sophisticated campaign targeting individuals within the Mongolian government. Targeted individuals that enabled macros in a malicious Microsoft Word document may have been infected with Poison Ivy, a popular remote access tool RAT that has been used for...

New Banking Malware with Network Sniffer Spreading Rapidly Worldwide

The hike in the banking malware this year is no doubt almost double compared to the previous one, and so in the techniques of malware authors. Until now, we have seen banking Trojans affecting devices and steal users’ financial credentials in order to run them out of their money. But nowadays,...

SafeNet SoftRemote VPN client weak password encryption

Password is stored in registry in reversable encryption and in memory in cleartext...

Webroot Spy Sweeper weak encryption

Password is stored in registry uencrypted...

Imailpwdump.cpp

/ IpSwitch IMail Server IpSwitch IMail Server uses weak encryption algorithm to encrypt its user passwords. It uses polyalphabetic Vegenere cipher to encrypt its user passwords. This encryption scheme is relatively easy to break. In order to decrypt user password we need a key. IMail uses usernam...

IPSwitch IMail Server 8.1 - Local Password Decryption Utility

IPSwitch IMail Server 8.1 - Local Password Decryption Utility / IpSwitch IMail Server IpSwitch IMail Server uses weak encryption algorithm to encrypt its user passwords. It uses polyalphabetic Vegenere cipher to encrypt its user passwords. This encryption scheme is relatively easy to break. In...

IPSwitch IMail Server <= 8.1 Local Password Decryption Utility

Exploit for unknown platform in category local exploits ============================================================== IPSwitch IMail Server IpSwitch IMail Server uses weak encryption algorithm to encrypt its user passwords. It uses polyalphabetic Vegenere cipher to encrypt its user passwords. Th...

STAT Security Advisory: Trend Micro&#39;s ScanMail for Exchange stores passwords in registry unprotected

================================================================================ == STAT Security Advisory http://www.statonline.com/ Software Vendor: Trend Micro www.antivirus.com Software Package: ScanMail for Exchange Versions Affected: 3.5 Evaluation possibly others Synopsis: Account names an...

netscape.passwd.txt

Possible Netscape Crypto Security Flaw Haze [email protected] Sun, 14 Feb 1999 21:13:46 -0600 When you go into Netscape Messenger and check your mail, the software stores the password you used in the registry and encrypts it. It remains there for as long as netscape is open. The login and password is...