Lucky month for law enforcement, patching vulnerabilities and fighting malware

There is a lot of news this month about large-scale investigations by law enforcement agencies and other good guys. The release of decryptors undermines the ransomware business and is an effective way to combat them. Also, as usual, there were packs of updates/fixes from major vendors. Did you check out the new search in the … Continue reading Lucky month for law enforcement, patching vulnerabilities and fighting malware

Keep in save your devices, patch critical systems and stay on the latest

Apparently this month there is a boom in vulnerabilities in various devices. Ransomware continues to be active, improving encryption methods and introducing new techniques in attacks. But even the largest vendors are determined, after all, it's not for nothing that they miss the pack of startups in recent months. Vulnerabilities: Gaming devices, Apple exploit, TOP … Continue reading Keep in save your devices, patch critical systems and stay on the latest

IOT in danger, new wiretap method and malware activity

In recent weeks, more and more vulnerabilities have been emerging for mobile devices. Cisco releases a new security patch every week. We continue to add reports from this year's major conferences and other useful materials to the Research section. Vulnerabilities: Cisco unpatched bugs, mail servers;Tools: ReverseSSH, XLMMacroDeobfuscator, Jsleak and SQLancer;News: New method and Mozi botnet … Continue reading IOT in danger, new wiretap method and malware activity

Non-typically problems with PLCs and ransomware never gets bored

A couple of years ago, vulnerabilities in medical equipment were fantastic and incomprehensible. Over the past year, there has been a trend towards the exploitation of such equipment by ransomware. Accordingly, it is worth paying more attention to critical industrial systems and equipment, which are rarely updated by default.Create your own automation vulnerability management process … Continue reading Non-typically problems with PLCs and ransomware never gets bored

Monthly Vulners Review with TOP vulnerabilities and news

This month, Vulners published new functionality for auditing Linux CentOS via Errata plugin (like RHEL). After that, we updated our new docs and wrote current monthly review of the top news. This month was full of zero-day, critical patches (not for everyone) and many different hacks with information security news. Vulnerabilities: Mobile processors, Realtek, Cisco, … Continue reading Monthly Vulners Review with TOP vulnerabilities and news

Vulnerability WARNINGS and how long does it take to update?

One of the highlights of the week is the Pwn2Own competition. Participants have hacked many well-known applications. As for the rest of the news: as always, update your Cisco devices and Facebook, as usual, takes care of our privacy.Welcome to the post! Don't forget to check out Vulners team documentation reborn and write your feedback;) … Continue reading Vulnerability WARNINGS and how long does it take to update?

Huge patches from vendors, Vulners news and hot Android malware

There has been a lot of news about Apple and Android this month, as the first malware for the Apple M1 has started to appear and malware developers are not wasting time. Cisco also released a big update package for their devices, and SonicWall is not fixing its problems. A little bit about what's new … Continue reading Huge patches from vendors, Vulners news and hot Android malware

Cisco stories, ICS and Apple features

Apple recently released its new OS Bg Sur and immediately started fixing vulnerabilities. Also, undocumented features were found in new platform. Cisco is fixing vulnerabilities in its products strangely. Pair of funny tools and a couple of interesting stories in news section. Vulnerabilities: Cisco story, "bugs" in messagers and ICS;Tools: Bloodhound continues to be updated, … Continue reading Cisco stories, ICS and Apple features

Everybody knows: windows source code leak, zerologon updates and other fresh vulnerabilities

Checkpoint published tech review about Instagram vulnerability, remember Saltstack? Quiet digest, no ransomware or attack reports. Vulnerabilities: Important, non-standard and interesting ones;Tools: Mostly cool attacking tools;News: Additional news about Instagram and CISA;Research: Less than usual, there is something to read. Feedback -> here Vulnerabilities Cisco Systems released fixes for vulnerabilities in the widespread IOS operating … Continue reading Everybody knows: windows source code leak, zerologon updates and other fresh vulnerabilities

Monthly review without Microsoft, a lot of cool tools, Flipper project and new malware

More and more new news about bypassing fixed vulnerabilities appear. And it's great! After all, it means that there are more people who care and they continue to research the problems after they have been fixed. Vulnerabilities: Cisco and Apache are trying very hard to fix their vulnerabilities, but there are still too many‚Ķ;Tools: All … Continue reading Monthly review without Microsoft, a lot of cool tools, Flipper project and new malware