12 matches found
Critical MikroTik RouterOS Vulnerability Exposes Over Half a Million Devices to Hacking
A severe privilege escalation issue impacting MikroTik RouterOS could be weaponized by remote malicious actors to execute arbitrary code and seize full control of vulnerable devices. Cataloged as CVE-2023-30799 CVSS score: 9.1, the shortcoming is expected to put approximately 500,000 and 900,000...
Another Israeli Firm, QuaDream, Caught Weaponizing iPhone Bug for Spyware
A now-patched security vulnerability in Apple iOS that was previously found to be exploited by Israeli company NSO Group was also separately weaponized by a different surveillance vendor named QuaDream to hack into the company's devices. The development was reported by Reuters, citing unnamed...
Tesla Remotely Hacked from a Drone
This is an impressive hack: Security researchers Ralf-Philipp Weinmann of Kunnamon, Inc. and Benedikt Schmotzle of Comsecuris GmbH have found remote zero-click security vulnerabilities in an open-source software component ConnMan used in Tesla automobiles that allowed them to compromise parked ca...
WhatsApp Vulnerability Fixed
WhatsApp fixed a devastating vulnerability that allowed someone to remotely hack a phone by initiating a WhatsApp voice call. The recipient didn't even have to answer the call. The Israeli cyber-arms manufacturer NSO Group is believed to be behind the exploit, but of course there is no definitive...
Counter-Strike 1.6 game client 0-day exploited to spread Belonard trojan
By Waqas Dr. Web’s cybersecurity researchers have identified an attacker is trying to exploit zero-day vulnerabilities in Counter-Strike 1.6 game specifically to distribute Belonard Trojan. Reportedly, about 39% of all the active servers of the game on Steam have been manipulated and compromised ...
Over 70,000 Memcached Servers Still Vulnerable to Remote Hacking
Nothing in this world is fully secure, from our borders to cyberspace. I know vulnerabilities are bad, but the worst part comes in when people just don't care to apply patches on time. Late last year, Cisco's Talos intelligence and research group discovered three critical remote code execution RC...
Tesla Fixes 'Critical' Remote Hack Vulnerability
Several models of the Tesla S cars were hacked by researchers who were able to abruptly stop the car in its tracks, pop open the trunk while the car was being driven, and remotely turn on and off the windshield wipers. The hacks demonstrated by China’s Keen Security Lab, a division of Tencent, we...
Hackers WIN $1 Million Bounty for Remotely Hacking latest iOS 9 iPhone
Well, here's some terrible news for all Apple iOS users… Someone just found an iOS zero-day vulnerability that could allow an attacker to remotely hack your iPhone running the latest version of iOS, i.e. iOS 9. Yes, an unknown group of hackers has sold a zero-day vulnerability to Zerodium, a...
Fiat Chrysler Recalls 1.4 million Cars After Software Bug is Revealed
A few days after issuing a patch and reassuring owners that the attack that shut down the transmission and other systems remotely on a Jeep was not a huge risk, Fiat Chrysler has decided to recall nearly 1.5 million vehicles as a result of the bug exposed in the research. The recall is the result...
E-Xoopport - Samsara <= v3.1 (Sections Module) Blind SQL Injection
Exploit for php platform in category web applications ================================================================== E-Xoopport - Samsara \r\n"; exit; $host = $ARGV0; $usr = $ARGV1; $pwd = $ARGV2; $anickde = $ARGV3; $anick = '0x'.EncHex$anickde; print "+ Logging In...\r\n"; my %postdata = una...
[SA17458] XMB "username" Cross-Site Scripting Vulnerability
TITLE: XMB "username" Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA17458 VERIFY ADVISORY: http://secunia.com/advisories/17458/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: XMB 1.x http://secunia.com/product/1491/ DESCRIPTION: HACKERS PAL has...
Claroline E-Learning 1.6 - Remote Hash SQL Injection (1)
Alphaprogrammer , Oilkarchack , DrCephaleX , Str0ke And Iranian Hacking & Security Teams : IHS TeaM , alphaST , Shabgard Security Team , Emperor Hacking Team , Crouz Security Team & Simorgh-ev Security Team Config : please replace your address : $url = "http:///www.example.com"; Please replace yo...