Sudo vulnerability ALARM

Сritical vulnerability affected much of the Linux ecosystem was patched on January 26 in Sudo. Sudo is an application that allows administrators to delegate limited root access to other users, by default the superuser. The vulnerability has the identifier CVE-2021-3156 or Baron Samedit. The vulnerability was identified by Qualys about two weeks ago, but it … Continue reading Sudo vulnerability ALARM

Uncommon but enlightening vulnerabilities with Microsoft and more

Not as many critical vulnerabilities as last week. This time it's mostly cool and non-standard vulnerabilities that are important to know about. For example, the KindleDrip attack shows a new way to exploit vulnerabilities. Or another vulnerability is that your kids could be little bug hunters. Vulnerabilities: No zero-days, DNSpooq, kids and bughunting;Tools: POCs and … Continue reading Uncommon but enlightening vulnerabilities with Microsoft and more

Payload detection WAF challenge

One of the things that we implemented early on in our lab is an semi-automated process of collecting some new payloads/exploits/bypass techniques from the public feeds (including Twitter) and checking whether our current WAF solutions can detect it. The Go Test WAF Introduction What if we can test their essential capability of payload detection with … Continue reading Payload detection WAF challenge

Lots of zero-day vulnerabilities, and how’s your start of the year?

There is one or more zero-day in each vulnerability section. Intel takes care of the threat from ransomware, the attacker gained access to Microsoft accounts, and, as usual, a little bit about the most interesting new malware with the highest impact. Vulnerabilities: Mostly zero-days;Tools: Outlook research + new tool, OSINT, web testing and defense evasion;News: … Continue reading Lots of zero-day vulnerabilities, and how’s your start of the year?

Hardcoded account in Zyxel, whatsapp user’s data → facebook and news about Julian Assange

At the beginning of the year there is not much news, but we were able to collect a digest with the loudest and coolest news. Vulnerabilities: Zyxel fail, cool bug in Google docs and new side-channel attack, + it's recommended to patch Nvidia drivers;Tools: Offensive staff only;News: Julian Assange, whatsapp transfers your data directly to … Continue reading Hardcoded account in Zyxel, whatsapp user’s data → facebook and news about Julian Assange

Available Microsoft 0-day , new SolarWinds vulnerability and others

Microsoft is surprised that they do not fix vulnerability zero with the existing PoC and there has been an exploit for the previous version of the bug for a long time. It is useless to post information about the SolarWinds hack, because there are too many of them and new facts (vulnerabilities) keep appearing. In … Continue reading Available Microsoft 0-day , new SolarWinds vulnerability and others

Monthly digest not just about FireEye and SolarWinds hacks

The last monthly digest this year turned out to be intense and interesting. There was a lot of news about various hacks and attacks, new methods of attacks were invented and new malware was discovered. Bottom line of this month: supply chain attacks exist and the secure Security Development Lifecycle is VERY IMPORTANT! Vulnerabilities: Apple … Continue reading Monthly digest not just about FireEye and SolarWinds hacks

Tuesday patch with Kerberos, bunch of vulnerabilities and security breaches

Lots of buzz about the FireEye hack this week, but most hack news is often a consequence of the lack of a vulnerability management process. Also this week a lot of vulnerabilities were found in Internet protocols and even Steam games. In our digests we try to show the most significant and interesting news for … Continue reading Tuesday patch with Kerberos, bunch of vulnerabilities and security breaches

Impressive IOS research, vulnerable android apps and malware news

The last couple of weeks are not so much cool news, but we have selected the most interesting and useful. In the contents you can find a short description for each section. Vulnerabilities: IOS research, android apps (check yours) and weblogic (again);Tools: Usefull tools. Depix and Karkinos should be tested;News: Only malware. IOS, Trickbot and … Continue reading Impressive IOS research, vulnerable android apps and malware news

Digest without zero-day, with malware and Tesla news

There are no zero-day vulnerabilities or new headliners in this digest. But there are new tool updates and different news + research. Vulnerabilities: No zero-day, only emergency update for Drupal and cPanel, couple exploits for routers;Tools: Update powerfull intellegence tool and others;News: Tesla hacked! Next story about Sopra Steria and malware actions. Baidu was deleted … Continue reading Digest without zero-day, with malware and Tesla news