Lucene search
K

13 matches found

Malwarebytes
Malwarebytes
added 2022/09/27 11:0 a.m.28 views

Exchange servers abused for spam through malicious OAuth applications

Microsoft has published a security blog about an investigation into an attack in which threat actors used malicious OAuth applications to abuse Exchange servers for their spam campaign. The threat actor behind this attack has been active for many years, and has been running spam campaigns using...

0.7AI score
Exploits0
The Hacker News
The Hacker News
added 2022/09/23 5:14 a.m.57 views

Hackers Using Malicious OAuth Apps to Take Over Email Servers

Microsoft on Thursday warned of a consumer-facing attack that made use of rogue OAuth applications deployed on compromised cloud tenants to ultimately seize control of Exchange servers and spread spam. "The threat actor launched credential stuffing attacks against high-risk accounts that didn't...

0.4AI score
Exploits0
ThreatPost
ThreatPost
added 2019/12/06 7:34 p.m.82 views

Feds Crack Down on Money Mules, Warn of BEC Scams

The Justice Department said this week that it is cracking down on money mules, i.e., middlemen who assist in fraud schemes by receiving money from victims and forwarding proceeds to foreign-based perpetrators. So far, feds say they have halted more than 600 domestic money mules – exceeding the 40...

7.1AI score
Exploits0References16
Schneier on Security
Schneier on Security
added 2018/08/06 10:57 a.m.29 views

Hacking the McDonald's Monopoly Sweepstakes

Long and interesting story -- now two decades old -- of massive fraud perpetrated against the McDonald's Monopoly sweepstakes. The central fraudster was the person in charge of securing the winning tickets...

2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2018/05/08 8:47 a.m.6 views

sandals.com XSS vulnerability

Open Bug Bounty ID: OBB-613960 Description| Value ---|--- Affected Website:| sandals.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Exploits0
CISA
CISA
added 2017/07/06 12:0 a.m.9 views

FTC Releases Alert on Charity Scams

The Federal Trade Commission FTC has released an alert on charity scams. Recent acts of fraud include solicitations from scammers requesting payment to claim a sweepstakes prize. Anytime someone asks you to pay to obtain a prize, it is a scam. US-CERT encourages consumers to refer to the FTC Aler...

6.7AI score
Exploits0References2
CNVD
CNVD
added 2017/04/06 12:0 a.m.3 views

Sweepstakes Pro Software SQL Injection Vulnerability

Sweepstakes Pro Software is a suite of sweepstakes software to increase email lists, increase social networking, and drive sales by running sweepstakes software in conjunction with sweepstakes. A SQL injection vulnerability exists in the s parameter in both win.php and widgetlb.php in Sweepstakes...

7.6AI score
Exploits0References1
exploitpack
exploitpack
added 2017/04/05 12:0 a.m.6 views

Sweepstakes Pro Software - SQL Injection

Sweepstakes Pro Software - SQL Injection Exploit Title: Sweepstakes Pro Software - SQL Injection Google Dork: N/A Date: 05.04.2017 Vendor Homepage: http://bimedia.info/ Software: http://bimedia.info/sweepstakes-pro-software/ Demo: http://mysweepstakespro.com/demo/ Version: N/A Tested on: Win7 x64...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2017/04/05 12:0 a.m.23 views

Sweepstakes Pro Software SQL Injection

Exploit Title: Sweepstakes Pro Software - SQL Injection Google Dork: N/A Date: 05.04.2017 Vendor Homepage: http://bimedia.info/ Software: http://bimedia.info/sweepstakes-pro-software/ Demo: http://mysweepstakespro.com/demo/ Version: N/A Tested on: Win7 x64, Kali Linux x64 Exploit Author: Ihsan...

0.5AI score
Exploits0
0day.today
0day.today
added 2017/04/05 12:0 a.m.19 views

Sweepstakes Pro Software - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Sweepstakes Pro Software - SQL Injection Google Dork: N/A Date: 05.04.2017 Vendor Homepage: http://bimedia.info/ Software: http://bimedia.info/sweepstakes-pro-software/ Demo: http://mysweepstakespro.com/demo/ Version: N/A Tested...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2017/04/05 12:0 a.m.74 views

Sweepstakes Pro Software - SQL Injection

Exploit Title: Sweepstakes Pro Software - SQL Injection Google Dork: N/A Date: 05.04.2017 Vendor Homepage: http://bimedia.info/ Software: http://bimedia.info/sweepstakes-pro-software/ Demo: http://mysweepstakespro.com/demo/ Version: N/A Tested on: Win7 x64, Kali Linux x64 Exploit Author: Ihsan...

7.4AI score
Exploits0
Openbugbounty
Openbugbounty
added 2016/01/03 3:43 a.m.10 views

online-sweepstakes.com XSS vulnerability

Vulnerable URL: http://www.online-sweepstakes.com/search/?db==aids%22%3Cscript%3Ealert%28%27XSSPOSED%27%29%3C%2Fscript%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 36372 Googl...

6.3AI score
Exploits0
Cisco Threats
Cisco Threats
added 2015/03/05 6:11 p.m.12 views

Threat Outbreak Alert RuleID13827: Email Messages Distributing Malicious Software on March 5, 2015

Medium Alert ID: 37731 First Published: 2015 March 5 18:11 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID13827 may contain the following files: Name | Siz...

0.2AI score
Exploits0
Rows per page
Query Builder