AllaKore RAT’s Grip Tightens on Mexican Financial Institutions

Summary: A threat actor has been targeting Mexican banks and cryptocurrency trading since at least 2021. Using custom installers, the actor distributes a modified version of the AllaKore RAT, an open-source remote access tool. The campaign cleverly mimics the Mexican Social Security Institute IMS...

AllaKore RAT Malware Targeting Mexican Firms with Financial Fraud Tricks

Mexican financial institutions are under the radar of a new spear-phishing campaign that delivers a modified version of an open-source remote access trojan called AllaKore RAT. The BlackBerry Research and Intelligence Team attributed the activity to an unknown Latin America-based financially...

caribbeansecurityinstitute.com Cross Site Scripting vulnerability OBB-3397742

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Lenovo Notebook now UEFI zero-day vulnerabilities the hacker can be attack-vulnerability warning-the black bar safety net

According to foreign media reports, the Security Institute Dymtro Oleksiuk said that hackers can bypass Windows basic security Protocol of the United Nations want the computer to attack, the reason is Lenovo PC drivers from Intel directly copy and paste. And other OEM vendors such as HP also exis...

Avi Rubin on Hacking All Sorts of Devices

Avi Rubin is the technical director of the Information Security Institute at Johns Hopkins University, and in this talk from the TEDxMidAtlantic conference in November he discusses the history of hacks on various devices, including implanted medical devices, cars and virtually anything else with ...

NCTAVIFile File Creation / Execution

""""""""""""""""""""""""""""""""""""""""""""""""""""""""""" """ :::::: :: :: :: :: :: :::: """ """ :: :: :: :: :::::: .. :::: :: """ """ ::::: ::: ::::: :: :: :: :: :: :::: """ """ :: :: :: :: : :: :: :: :: :: :: """ """ :::::: :: :: ::::: :: :::::: :: :: :::: rs.ir """ """ :: """ """ """...

FotoTagger 2.12.0.0 (.XML File) Buffer Overflow PoC

No description provided by source. """"""""""""""""""""""""""""""""""""""""""""""""""""""""""" """ :::::: :: :: :: :: :: :::: """ """ :: :: :: :: :::::: .. :::: :: """ """ ::::: ::: ::::: :: :: :: :: :: :::: """ """ :: :: :: :: : :: :: :: :: :: :: """ """ :::::: :: :: ::::: :: :::::: :: :: ::::...

Batch Picture Watemark 1.0 (.jpg File) Local Crash PoC

Exploit for unknown platform in category dos / poc ====================================================== Batch Picture Watemark 1.0 .jpg File Local Crash PoC ====================================================== Anti-Security Research Team & Security Institute + Bug : Batch Picture Watemark v1....

FotoTagger 2.12.0.0 (.XML File) Buffer Overflow PoC

Exploit for unknown platform in category dos / poc =================================================== FotoTagger 2.12.0.0 .XML File Buffer Overflow PoC =================================================== Anti-Security Research Team & Security Institute + Bug : FotoTagger v2.12.0.0 Buffer Overflo...

WebWiz Products 1.03.06 - Authentication Bypass SQL Injection

WebWiz Products 1.03.06 - Authentication Bypass SQL Injection WebWiz Scripts Login Bypass PoC - site news , journal , weekly poll - Kapda s advisory Discovery and exploit by devilbox at kapda.ir Kapda - Security Science Researchers Institute of Iran WebWiz Login Bypass PoC - Database login - Kapd...

[KAPDA::#6] Punbb SQL Injection Vulnerability

KAPDA::6 Punbb SQL Injection Vulnerability Punbb search.php SQL Injection Vulnerability KAPDA New advisory Vulnerable products : Punbb V 1.2.8 and 1.2.7 are tested,Hopefully all other versions Vendor: http://www.punbb.org/ Vulnerability: Sql injection About Punbb -------------------- PunBB is a...