Energy-warning! Be wary EnMiner mining kill-vulnerability warning-the black bar safety net

Recently, sangfor found a high strength of the virus against the behavior of the new mining virus, its viral mechanisms and conventional mining large difference, once infected, the cleanup is extremely difficult. Currently the virus in the outbreak early, sangfor has this virus named EnMiner mini...

Apple's code signing vulnerability will allow malicious software to bypass the many Mac security products-vulnerability warning-the black bar safety net

Recently, from the security company Okta Rex research expert Josh Pitts in the macOS code signature mechanism found in a can take advantage of security vulnerabilities. This vulnerability lurks A A years, it allows an attacker inserts a malicious untrusted code masquerading as a trusted legal cod...

Axis cameras there are security flaws, three of the vulnerabilities can be taken over-vulnerability warning-the black bar safety net

Network security company VDOO researchers recently discovered several vulnerabilities affect the Axis nearly 400 security cameras. From the network security company VDOO researchers on IOT devices conducted a study and found that the axis company manufacturing the camera of the presence of seven...

FLASH zero-day Vulnerability CVE-2018-5002 in the Middle East directed network attacks exploit-vulnerability warning-the black bar safety net

! Recently, ICEBRG security research team SRT identified Adobe Flash 0 day Vulnerability CVE-2018-5002-directional network attack behavior, the 0-day vulnerability is an attacker for the Middle East region, important individuals and organizations of network penetration. An attacker use the...

Hacking Team to make a comeback it? CVE-2018-5002 Flash 0day vulnerability APT attack analysis and Association-bug warning-the black bar safety net

60 Enterprise Security Threat Intelligence Center recently captured an example of the use of the Flash 0day vulnerability with Microsoft Office documents initiated by the APT attack case, the attack of the samples used for the first time using the non-Flash file built-in technologies, the Office...

Pwn2Own Huawei HiApp vulnerability principle and the use of analysis of under-vulnerability warning-the black bar safety net

0×01 Preface Pwn2Own Huawei HiApp vulnerability principle and the use of the analysison Reading this article is the basis for understanding previous attacks construct the link. 0×02 vulnerability analysis I don't know if the attentive classmates found in my article analysis article left in the eg...

Wages table actually into hacking weapons Flash emergency patch-bug warning-the black bar safety net

6 month 7 day night, the official Adobe announcement, announced the emergency release security patches fix latest be found the Flash of high-risk vulnerabilities, and the discovery of this vulnerability using the 360 core security advanced Threat Response Team public Acknowledgements. As the...

CVE-2018-4990 Adobe Reader code execution exploit analysis-exploit warning-the black bar safety net

2018 5 on 15 September, ESET released the article“A tale of two zero-days”, the article disclosed this year 3 month ESET in malware scan engine VirusTotal on the capture of the one used to attack the test PDF document. The PDF document contains a sample of two pieces of 0-day Vulnerability,...

The block chain smart contracts vulnerability, wanted to say your not easy-bug warning-the black bar safety net

In recent days, the block chain platform EOS smart contract vulnerability event once again put on the block chain safe to push on the cusp. An attacker can release contains malicious code“smart contract”, after a series of after the operation, the control block chain, all nodes in the network, an...

Pwn2Own Huawei HiApp vulnerability principle and the use of analysis on-vulnerability warning-the black bar safety net

0×01 description ps:this article from the attacker's perspective to analyze how to find the Pwn2Own Huawei mobile phone vulnerabilities, but does not represent the vulnerabilities discoverer of the idea is the same, for informational purposes only. This series vulnerability analysis as it involve...

ZipperDown vulnerability, hype or imminent-vulnerability warning-the black bar safety net

! One, overview Recently, ZipperDown vulnerability is disclosed, the vulnerability affects Android and iOS two platform, including the iOS app market up to 10%of the application the vulnerability exists, and no shortage of many popular applications, triggering the industry's strong reaction...

See how do I find the value of 3 thousand 6 thousand USD Google RCE vulnerability-vulnerability warning-the black bar safety net

! This article tells the story of the Uruguayan public University, 18-year-old student Ezequiel Pereira found Google highest level RCE vulnerability-related process. In the beginning of the year, Ezequiel found Google Google App Engine GAEis a non-production environment of a vulnerability, exploi...

BMW multi models is the exposure of a common security vulnerability, a hacker remote attack-vulnerability warning-the black bar safety net

5 on 22 May, Tencent Cohen Laboratory released a BMW, many different models of 14 common security vulnerabilities, these vulnerabilities can be through physical contact and remote non-contact and other ways triggered, according to its official blog to reveal that at present all the vulnerability...

Intel the reproduction of new vulnerabilities or be subjected to hackers implant attack script-vulnerability warning-the black bar safety net

5 on 22, reported,yesterday, Intel and Microsoft announced a Spectre and Meltdown security vulnerability, the new variant-the“variant 4”. The new variant is the use of“Speculative Store Bypass”, the defect enables the Processor chip to a potential unsafe area to disclose sensitive information...

The Logitech smart home management system, the Logitech Harmony Hub vulnerability analysis-vulnerability warning-the black bar safety net

! Recently, fireeye Mandiant Red Team team found that the Logitech smart IOT home management system the Logitech Harmony Hub, the presence of a plurality of available vulnerability, an attacker can exploit these vulnerabilities to bypass system restrictions, through SSH access to the device Syste...

DLINK DCS-5020L wireless cloud camera remote code execution vulnerability analysis-vulnerability warning-the black bar safety net

This article is mainly to demonstrate, how to find IOT device vulnerability. Look for the following commands of the injection process can be divided into 3 steps, somewhat similar to the 100 point CTF challenge: download the binary file, run the string, the tracking system calls to the origin of...

How to use Struts2 vulnerabilities to bypass firewall get Root permissions-bug warning-the black bar safety net

This article I want to share is about the Apache struts2 CVE-2013–2251 vulnerability, since the vulnerability can lead to remote code execution, had once been widely abused. The vulnerability principle is that, by manipulating the prefix“action:”/”redirect:”/”redirectAction:”parameter in the Stru...

Office 365 in the 0-day vulnerability baseStriker appear in the wild examples of the use-vulnerability warning-the black bar safety net

5 October 1, Avanan the researchers found that Office 365 appears in a named baseStriker of 0-day vulnerabilities. An attacker can exploit this vulnerability to send malicious mail, bypassing the Office 365 account security mechanisms. ! baseStriker vulnerability of the code to use the less...

Vulnerability to cause a Windows system crash, hardware experts published PoC exploit code-exploit warning-the black bar safety net

Bitdefender company researcher Marius Tivadar on GitHub released a PoC code, even if the computer is locking the case in a few seconds cause Windows computers to crash. ! The PoC code is the use of Microsoft processing an NTFS file system image process in the presence of a vulnerability, the code...

See how I found to Have a cloud storage platform session mechanisms of vulnerability-vulnerability warning-the black bar safety net

! Recently in contrast to cloud storage solutions, I was surprised to find that many companies are still offering unlimited cloud data storage service solution, like Have the company that such note and don't Have a format specification confusion, and Have the company designed for individuals,...

Java deserialization vulnerability the principles of the analysis-vulnerability warning-the black bar safety net

In the world there are three things most difficult: Put someone else's money stuffed into their own pockets Put their ideas put into someone else's head. To let own code run on someone else's server Foreword Java deserialization vulnerability is nearly a period of time has been focused on the...

Use the password reset functions to achieve account-hijacking-vulnerability warning-the black bar safety net

Recently, I attended a platform to invite vulnerability testing project, in which the discovery of a unique account hijacking vulnerability, the entire vulnerability discovery process very unexpected but also very lucky, by the password reset function can be achieved account hijacking, and I will...

Sea Lotus APT groups use CVE-2017-8570 vulnerability of the new sample and Association analysis-vulnerability warning-the black bar safety net

Sea Lotus（OceanLotus）APT gang is a highly organized, professional foreign national hacker group, the oldest by 360 days eye Labs discovered and disclosed. The organization since at least 2012 and 4 January will be for the Chinese government, research institutes, Maritime institutions, Maritime...

SMT smart contract integer overflow vulnerability-vulnerability warning-the black bar safety net

! Vulnerability overview SmartMesh Token is based on the Ethereum contract tokens, referred to as SMT. Ethereum is an open source, public, distributed computing platform, SmartMesh tokens contract SmartMeshTokenContract based on ERC20Token standards. The vulnerability occurs in the transfer...

The Switch was heavy! Tegra kernel vulnerabilities cannot be fixed, the jailbreak is just around the corner-vulnerability warning-the black bar safety net

! The researchers released a Fusée Gelée vulnerability PoC code, the vulnerability is Nintendo Switch the host in the embedded processor relates to the Nvidia Tegra code. This vulnerability is named“FuséeGelée”, is a cold start to crack, you can allow the user to bypass the device lock in the...

Mining of the virus through the Flash vulnerability propagation, a careful computer becomes mine machine-vulnerability warning-the black bar safety net

4 on 24 May, tinder the security team Alarm, the virus groups the use of Adobe Flash vulnerability propagation mining viruses. Virus gang the mining program implanted to the game download Station“52pk”, www.52pk.com when the user visits the website, the poison page to show after, without any...

Router vulnerability analysis the sixth bullet: CVE-2018-7445 MikroTik router system buffer overflow vulnerability-vulnerability warning-the black bar safety net

A. Vulnerability overview CVE-2018-7445 MikroTik RouterOS SMB buffer overflow Reference information: https://www.coresecurity.com/advisories/mikrotik-routeros-smb-buffer-overflow Vulnerability firmware version: mikrotik-6.40.6.iso the x86 version Download: https://mikrotik.com/download Mikrotik...

Router vulnerability analysis the fifth bomb: CVE-2018-5767 router remote code execution-vulnerability warning-the black bar safety net

Vulnerability overview CVE-2018-5767 TENDA AC15 router right remote code execution Reference information: https://www.fidusinfosec.com/remote-code-execution-cve-2018-5767/ Vulnerability firmware version: Tenda cn Ac15firmware:15.03.1.16 2. The vulnerability analysis. Vulnerabilities file is...

Router vulnerability reproduce the analysis of the fourth bomb: CVE-2018-7034-vulnerability warning-the black bar safety net

TrendNET router permission bypass vulnerability, an attacker by setting$AUTHORIZEDGROUP = 1 to bypass permission verification Vulnerability reference information:https://blogs. securiteam. com/index. php/archives/3627 The affected version of the router TEW-751DR – v1. 03B03 TEW-752DRU – v1. 03B01...

Router vulnerability reproduce the analysis of the second bomb: CNVD-2018-01084-vulnerability warning-the black bar safety net

Vulnerability information: D-Link DIR 615/645/815 router 1. 03 and previous firmware version is the presence of a remote command execution vulnerability. The vulnerability is due to service. the cgi in the splicing of the HTTP POST request data, causing background commands splicing, leading to...

By CVE-2017-17215 learning router vulnerability analysis, from into the pit to give up-vulnerability warning-the black bar safety net

Basic information: 2017/11/27, Check Point Software Technologies sector reported a Huawei HG532 product remote commands execution vulnerabilityCVE-2017-17215, the Mirai an upgraded version of the variant has been used in the vulnerability. Looks like a very simple vulnerabilities, and the book...

See how I exploit changes in Google search ranking-loophole warning-the black bar safety net

! Just a $ 12 Registration Buy a domain name, I will be able to in the Google search results achieved with Amazon, Wal-Mart and other high value keywords in the same ad rank. According to Google Adwords Google paid advertising for business point of view, similar to Amazon and Walmart such keyword...

New vulnerability: hackers can use the iTunes Wi-Fi sync feature to take over your iPhone-bug warning-the black bar safety net

United States Time 4 May 19, according to foreign media reports, Symantec researchers found that the Apple eco in a loophole, as long as the user of the iPhone with the Mac workstation or laptop pairing, the hacker could use the vulnerability Trustjacking）surreptitiously“take over”the user...

RSA 2018 | via iOS Trustjacking vulnerability remote penetration iPhone-vulnerability warning-the black bar safety net

! Symantec researchers found a iPhone and Mac workstation and laptop pairing vulnerability. They stated that an attacker can use this is called Trustjacking of Vulnerability, in the no information case to take over the device. Trustjacking vulnerability from iTunes comes with the“iTunes Wi-Fi...

WebLogic WLS core components deserialization Vulnerability, CVE-2018-2628-a vulnerability warning-the black bar safety net

Vulnerability/event summary Beijing Time 4 month 18 days morning, Oracle officially released 4 months a critical patch update CPU CriticalPatchUpdate,which contains a high risk of the Weblogic deserialization VulnerabilityCVE-2018-2628, by the vulnerability, the attacker may unauthorized remote...

Linux server discovered bitcoin extortion event, do a good Four Points from a loss-vulnerability warning-the black bar safety net

Following the Windows encountered ransomware virus after the Linux server was bitcoin extortion cases have occurred, you think to pay a ransom just to end? Important warning Recently, Tencent cloud security team monitoring to the cloud on a Linux server began to appear bitcoin extortion event, th...

360 security browser to fix more Chrome kernel vulnerabilities and plugging the hacking of door-vulnerability warning-the black bar safety net

Recently, a new version of 360 browser first to fix the Google Chrome kernel exposed a number of security vulnerabilities, of which more than half of the vulnerabilities are high-risk vulnerability that could be used for arbitrary code execution or DoS attacks. Since the 360 browser uses IE and...

CVE-2018-4878 case: for a Hong Kong Telecommunications Company website is intrusion investigations-vulnerability and early warning-the black bar safety net

! Earlier, a researchers found that a Hong Kong Telecommunications Company website hacking attack, 3 May 21, Morphisec laboratory on the site of attack to carry out the investigation, investigators eventually found that the telecommunications company of the Group's official website was hacked, th...

Exim Off-by-One RCE vulnerability of CVE-2018-6789 use analysis(reference EXP)-vulnerability warning-the black bar safety net

Statement: disclosed herein is a method and script for study and research use, any team or individual may use the disclosure herein related to content engaged in the illegal network attacks, otherwise all the consequences by the user himself to bear with the author of this article has nothing to...

$_SERVER[SCRIPT_NAME]variable to the value of the injected malicious code-vulnerability warning-the black bar safety net

$SERVER'SCRIPTNAME'variable in the route pass the parameters, can be introduced into the malicious code, which leads toxssas well as malicious code injection. PS: this article is only for technical discussion and sharing, it is forbidden for any illegal purposes. $SERVER'SCRIPTNAME'variables are...

Cisco product experience serious vulnerability, resulting in a large number of devices is facing a remote risk of attack-vulnerability warning-the black bar safety net

! Cisco in their IOS software that patches over 30 vulnerabilities, including a serious remote code execution vulnerability, the vulnerability can be hundreds of thousands of even millions of devices exposed on the network device initiates a remote attack. A total of three vulnerabilities are rat...

See how I construct the DSPL language packs found in Google by stored XSS and SSRF vulnerability-vulnerability warning-the black bar safety net

! Master data will be able to rule the whole world – Softbank Masayoshi This article tells me through an elaborate Google dataset publishing language DSPL., at the request www. google. com environment, construct a storage-typeXSSvulnerabilities, in addition, the use of the DSPL remote data source...

Apple Siri is the aeration privacy vulnerability: lock screen notifications directly read-vulnerability warning-the black bar safety net

! iOS 11, Apple introduced a new way to protect user privacy, the user through the iPhone's lock screen hide notification content, until the use of Touch ID or Face ID to unlock the device. But in fact, even if unable to unlock the phone, or is there a very simple way to read these hidden...

See how I in Switzerland's largest hosting providers in the system found a database disclosure vulnerability-vulnerability warning-the black bar safety net

! In the development of our latest security SaaS process, the product allows any user to test their server security level, we on our own site were detected. Since the site is hosted on Switzerland's largest hosting provider of taking into account the relevant legal issues, this article for the ti...

CVE-2017-0135 vulnerability analysis: the use of the Edge of the browser XSS filter bypass CSP-vulnerability warning-the black bar safety net

In this article, I to share the one I at last found the Edge of the browser vulnerabilities. This exploits the browserXSSfilter the defects, to bypass anotherXSSdefensive measures: CSP（Content Security Policy, Content Security Policy. Note that this vulnerability is not in bypassXSSfilter, but th...

D-Link Service. Cgi remote command execution vulnerability from discovery to intrusion detection-vulnerability warning-the black bar safety net

This D-link wireless router 615/645/815 router service. cgi remote command execution vulnerability, for example, gives a smart device to command injection class vulnerability static analysis to find bugs in the method. According to the vulnerability analysis carried out 615/645/815 router service...

How in the JSON endpoint on the use of CSRF vulnerabilities-vulnerability warning-the black bar safety net

! （CSRF + Flash + HTTP 307）=don't say you have“dead”! If you want to go through a third-party attacker control of the server in the JSON endpoint using a CSRF vulnerability, I give you recommend one called json-flash-csrf-poc GitHub project【download】 it. Background story In a recent penetration...

Nessus plug-in“arms”tutorial-vulnerability warning-the black bar safety net

! Overview In a recent internal penetration test, we need to use a Java two-stage deserialization vulnerability. In this article, we will tell you how to transform the Nessus plugin, because the plugin was originally only the use of an existing RCE vulnerability, but we will teach you how to...

Cisco products in the presence of severe hard-coded password vulnerabilities and Java deserialization vulnerability-vulnerability warning-the black bar safety net

Recently, Cisco released 22 security Bulletin, which includes two important fixes: fixes a hard-coded password Vulnerability CVE-2018-0141 and a Java deserialization Vulnerability, CVE-2018-0147 to. ! Hard-coded password vulnerability Hard-coded password vulnerability affecting Cisco Prime...

Burrowing ideas | account to attack of a several common techniques-vulnerability warning-the black bar safety net

web security incidents, the account, is usually presented to the attacker's first point of contact with account-related functions if there is a defect, an attacker can obtain the key information and important features, such as, the login fails, the error message can determine whether the because...