Lucene search
K

94 matches found

Malwarebytes
Malwarebytes
added 2020/01/14 5:31 p.m.52 views

How to prevent a rootkit attack

If you're ever at the receiving end of a rootkit attack, then you'll understand why they are considered one of the most dangerous cyberthreats today. Rootkits are a type of malware designed to stay undetected on your computer. Cybercriminals use rootkits to remotely access and control your machin...

1.1AI score
Exploits0
Kitploit
Kitploit
added 2019/11/25 8:30 p.m.56 views

Antispy - A Free But Powerful Anti Virus And Rootkits Toolkit

AntiSpy is a free but powerful anti virus and rootkits toolkit. It offers you the ability with the highest privileges that can detect,analyze and restore various kernel modifications and hooks. With its assistance,you can easily spot and neutralize malwares hidden from normal detectors. Developme...

7.5AI score
Exploits0References6
Carbon Black Blog
Carbon Black Blog
added 2019/09/10 4:0 p.m.74 views

The 10 Most Common Attacks

This post is an excerpt from The Ultimate Cybersecurity Guide for the IT Professional. Common Attacks Today’s organizations face four main categories of adversaries. In order to fully defend against these four types, you must also understand what motivates them. This context will best position yo...

0.7AI score
Exploits0
ThreatPost
ThreatPost
added 2018/06/06 9:21 p.m.13 views

VPNFilter Malware Impact Larger Than Previously Thought

Researchers say the impact of the VPNFilter malware discovered last month is larger than originally reported. On Wednesday, Cisco Talos researchers said they now believe the malware has infected twice the number of router brands than previously stated. They added that VPNFilter also delivers a mo...

7.4AI score
Exploits0References2
Microsoft Secure
Microsoft Secure
added 2018/04/19 4:0 p.m.87 views

Introducing Windows Defender System Guard runtime attestation

At Microsoft, we want users to be in control of their devices, including knowing the security health of these devices. If important security features should fail, users should be aware. Windows Defender System Guard runtime attestation, a new Windows platform security technology, fills this need...

7.4AI score
Exploits0
Kitploit
Kitploit
added 2018/01/18 9:25 p.m.35 views

Vegile - Tool for Post exploitation Techniques in Linux

Vegile is a tool for Post exploitation Techniques in linux. Post Exploitation techniques will ensure that we maintain some level of access and can potentially lead to deeper footholds into our targets trusted network. How it works This tool will setting up your backdoor/rootkits when backdoor...

7.3AI score
Exploits0References1
n0where
n0where
added 2017/11/14 5:51 p.m.23 views

Linux Process Hunter: Prochunter

Prochunter aims to find hidden process with all userspace and most of the kernelspace rootkits. This tool is composed of a kernel module that prints out all running processes walking the taskstruct list and creates /sys/kernel/prochunter/set entry. A python script that invokes the kernel function...

1AI score
Exploits0References1
Lenovo
Lenovo
added 2017/10/24 12:0 a.m.16 views

Secure BIOS/UEFI Set-up Incomplete in Lenovo E95 and ThinkCentre M710s/M710t - Lenovo Support US

No description provided...

7.7AI score
Exploits0
The Hacker News
The Hacker News
added 2017/09/26 2:52 a.m.238 views

First Android Malware Found Exploiting Dirty COW Linux Flaw to Gain Root Privileges

Nearly a year after the disclosure of the Dirty COW vulnerability that affected the Linux kernel, cybercriminals have started exploiting the vulnerability against Android users, researchers have warned. Publicly disclosed last year in October, Dirty COW was present in a section of the Linux...

7.2CVSS7.2AI score0.83524EPSS
Exploits84
Carbon Black Blog
Carbon Black Blog
added 2017/09/06 5:0 p.m.49 views

“The 101” – Episode 9 – What Makes a Rootkit So Dangerous?

We’re back with another episode of The 101! This weekly security series aims to define endpoint security one question at a time. Tune in each week as we tackle a new term, concept, or comparison in our ongoing effort to provide clear definitions. In this week’s episode, we learn more about a...

6.8AI score
Exploits0
Malwarebytes
Malwarebytes
added 2017/07/28 3:30 p.m.16 views

Fireball arrests made

Following some arrests in China, we may see a decrease in the amount of adware and adfraud hailing from the Rafotech labs. According to some reports 250 million machines may have been infected with one variant or another of Rafotechs’ products. We have shared some information about the potential...

7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2017/06/28 3:0 p.m.16 views

Adware the series, part 6

In this series of posts, we will be using the flowchart below to follow the process of determining which adware we are dealing with. Our objective is to give you an idea of how many different types of adware are around for Windows systems. Though most are classified as PUPs, you will also see the...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2017/06/22 6:49 p.m.14 views

New GhostHook Attack Bypasses Windows 10 PatchGuard Protections

Vulnerabilities discovered in Microsoft PatchGuard kernel protection could allow hackers to plant rootkits on computers running the company's latest and secure operating system, Windows 10. Researchers at CyberArk Labs have developed a new attack technique which could allow hackers to completely...

7.6AI score
Exploits0
ThreatPost
ThreatPost
added 2017/06/22 11:25 a.m.145 views

GhostHook Attack Bypasses Windows 10 PatchGuard

A bypass of PatchGuard kernel protection in Windows 10 has been developed that brings rootkits for the latest version of the OS within reach of attackers. Since the introduction of PatchGuard and DeviceGuard, very few 64-bit Windows rootkits have been observed; Windows 10’s security, in particula...

9.3CVSS8.3AI score0.99945EPSS
Exploits33References1
CERT
CERT
added 2017/03/31 12:0 a.m.46 views

GIGABYTE BRIX UEFI firmware fails to implement write protection and is not cryptographically signed

Overview GIGABYTE BRIX UEFI firmware for the GB-BSi7H-6500 and GB-BXi7-5775 platforms, versions vF6 and vF2 respectively, fails to properly set the BIOSWE, BLE, SMMBWP, and PRx bits to enforce write protection. It also is not cryptographically signed. These issues may permit an attacker to write...

10CVSS9.6AI score0.05641EPSS
Exploits2References6
The Hacker News
The Hacker News
added 2016/07/20 8:36 a.m.22 views

What is Strictly Enforced Verified Boot in Android 7.0 Nougat?

As far as security is concerned, Google is going very strict with the newest version of its mobile operating system. Until now, Google has not done more than just alerting you of the potential threats when your Android device runs the check as part of the boot process. Android Marshmallow 6.0 doe...

7.1AI score
Exploits0
ThreatPost
ThreatPost
added 2016/07/12 1:51 p.m.12 views

Little Snitch Bug Leaves Some Mac Systems Open to Attack

Trusted Mac OS X firewall Little Snitch is vulnerable to local privilege escalation attacks that could give criminals the ability plant rootkits and keyloggers on some El Capitan systems. The Little Snitch firewall vulnerability was found by Synack Director of Research and well-known OS X hacker...

0.2AI score
Exploits0
myhack58
myhack58
added 2016/06/22 12:0 a.m.34 views

Wget Vulnerability CVE-2 0 1 6-4 9 7 1-way analysis-vulnerability warning-the black bar safety net

Vulnerability description Recently, the CVE-2 0 1 6-4 9 7 1 bug was officially disclosed, the vulnerabilities affect all older versions of wget, a hacker can exploit this vulnerability to programmers and operations engineers for fishing, so as to obtain its host authority or implant rootkits...

7.5AI score
Exploits0
ThreatPost
ThreatPost
added 2016/05/23 5:33 p.m.17 views

Unraveling Turla APT Attack Against Swiss Defense Firm

Ever since hackers targeted Swiss defense contractor RUAG, government officials have been tight lipped about the breach. But on Monday Switzerland’s CERT Computer Emergency Readiness Team spilled the beans on the attack against the firm and the how perpetrators pulled it off. While Monday’s repor...

7.1AI score
Exploits0References4
Exploit DB
Exploit DB
added 2014/10/25 12:0 a.m.94 views

Magento Server MAGMI Plugin 0.7.17a - Remote File Inclusion

Exploit found date: 10/24/2014 Security Researcher name: Parvinder Bhasin Contact info: [email protected] twitter: @parvinderb - scorpio Currently tested version: Magento version: Magento CE - 1.8 older MAGMI version: v0.7.17a older Download software link: Magento server:...

7AI score
Exploits0
Rows per page
Query Builder