Cyber security aggregate rss news

Cyber security aggregator - feeds history

totals: cyware (4) packetstormsecurity (2)

Authors Detained but Mozi Botnet will Continue to Lurk, Here’s Why

cyware Sep 05, 2021 Malware and Vulnerabilities

Despite authors being detained, Mozi botnet is unstoppable. The botnet uses a peer-to-peer network structure that contributes as a major factor to helps the malware propagate even when some of its nodes go down. New findings from a new report reveal why Mozi, which accounted for 1.55 million infected nodes, will continue to lurk.

Deciphering the Leaked Conti Ransomware Playbook

cyware Sep 05, 2021 Threat Actors

Researchers recently obtained a leaked playbook linked to the Conti RaaS group, disclosing a heap of information about operations by them. The sensitive playbook documents are believed to be leaked by a partner not happy with Conti. For researchers and security analysts, this is an opportunity to deploy the right logic in place to detect and mitigate such threats.

This GPU-Based Malware Attack can Dodge Usual Security Checks

cyware Sep 05, 2021 Malware and Vulnerabilities

A post was spotted on a hacker forum where someone advertised a PoC for hiding and executing malicious codes from the GPU. The seller who advertised the recent PoC has denied any possible connection with the JellyFish malware. Vendors of GPUs should be taking note of it and start preparing for counter-measures.

Saving Private Networks from DNS Rebinding

cyware Sep 05, 2021 Emerging Threats

Attackers use the DNS rebinding technique to exploit private networks. It can take over victims' browsers and exposes the attack surface of internal web applications to malicious websites, which can be dangerous. Web browser vendors, web application owners, and DNS resolvers need to apply appropriate protection strategies to ensure security against such threats.

FlatCore CMS 2.0.7 Remote Code Execution

packetstormsecurity Sep 05, 2021 Feed

FlatCore CMS version 2.0.7 authenticated remote code execution exploit.

Samhain File Integrity Checker 4.4.6

packetstormsecurity Sep 05, 2021 Feed

Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log show more ...

server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.

2021-09

202020212022202320242025

Aggregator history

Sunday, September 05

WED

THU

FRI

SAT

SUN

MON

TUE