Attacking SCADA Part III: Hardcoded Salt in Schneider Electric EcoStruxure Machine Expert (CVE-2020-28214)
December 08, 2020 | Seok Min Lim
This is part three of our Schneider Electric series. You can read part one here ...
Patch Tuesday, December 2020
December 08, 2020 | Karl Sigler
December's Patch Tuesday is here and, typical for the end of the year, it's a ...
GO SMS Pro Vulnerable to File Theft: Part 2
December 01, 2020 | Karl Sigler
Last week we released an advisory about an SMS app called GO SMS Pro. Media ...
GO SMS Pro Vulnerable to Media File Theft
November 19, 2020 | Richard Tan
The GO SMS Pro application is a popular messenger app with over 100 million ...
Attacking SCADA Part II: Vulnerabilities in Schneider Electric EcoStruxure Machine Expert and M221 PLC
November 10, 2020 | Seok Min Lim
This is part 2 of a two-part series. You can read part 1 here.
GoldenSpy Chapter 5 : Multiple GoldenSpy Uninstaller Variants Discovered
October 22, 2020 | Reegun Jayapaul
Summary: Trustwave identified a significant malicious campaign on mandatory tax ...
Massive US Voters and Consumers Databases Circulate Among Hackers
October 21, 2020 | Ziv Mador
Voting in the U.S. elections started recently and there is a real concern over ...
Bad Neighbors Can Break Windows (CVE-2020-16898)
October 21, 2020 | Shrijin Srinivasan
On October 13th, 2020, Microsoft released a patch for a critical vulnerability ...
GoldenSpy Chapter 4: GoldenHelper Malware Embedded in Official Golden Tax Software
October 15, 2020 | Brian Hussey
Directly preceding GoldenSpy, another malware family was used to covertly ...
Patch Tuesday, October 2020
October 14, 2020 | Karl Sigler
October's Patch Tuesday is upon us and with it comes patches for 102 CVEs. This ...
Evasive URLs in Spam: Part 2
October 01, 2020 | Diana Lopera
A URL can be completely valid, yet still misleading. In this blog, we will ...
Network Detection for ZeroLogon CVE-2020-1472
September 30, 2020 | Bryant Smith
ZeroLogon has quickly become popular and well known because of multiple proofs ...
SAP ASE Information Leaks: CVE-2020-6295 and CVE-2020-6317
September 24, 2020 | Martin Rakhmanov
Introduction Today I'd like to discuss two information disclosure ...
Hijacking a Domain Controller with Netlogon RPC aka Zerologon: CVE-2020-1472
September 17, 2020 | Jason Villaluna, Shrijin Srinivasan
On September 14th, researchers at security firm Secura published a white paper ...
Evasive URLs in Spam
September 17, 2020 | Dr. Fahim Abbasi
This post is part one of a two part series. You can read part two here.
Blackhole Exploit Kit v2
September 14, 2020 | Daniel Chechik
A few days ago a new version of THE most common exploit kit was released. ...
ModSecurity Regular Expressions and Disputed CVE-2020-15598
September 14, 2020 | SpiderLabs Researcher
ModSecurity is an open-source Web Application Firewall (WAF) engine maintained ...
RATs and Spam: The Node.JS QRAT
August 24, 2020 | Diana Lopera
The Qua or Quaverse Remote Access Trojan (QRAT) is a Java-based RAT that can be ...
SpiderLabs Capture the Flag 2020 Results
August 21, 2020 | Radoslaw Zdonczyk, Charles Hamilton
IBM Db2 Shared Memory Vulnerability (CVE-2020-4414)
August 20, 2020 | Martin Rakhmanov
I’ve recently blogged about a shared memory vulnerability in Cisco WebEx ...
From SSRF to Compromise: Case Study
August 20, 2020 | Liam Somerville
Overview I think every penetration tester has a story about the one that got ...
vBulletin Remote Code Execution (CVE-2020-7373)
August 18, 2020 | Manuel Nader
Last week, security researcher Amir Etemadieh (aka Zenoflex) disclosed that ...
Patch Tuesday, August 2020
August 12, 2020 | Karl Sigler
August's Patch Tuesday is here with 120 CVEs patched. That includes 100 rated ...
Playdate with Bots: Microsoft SQL Honeypots
August 11, 2020 | Vladimir Zakharevich
A good way to keep an eye on attackers and get insight on their techniques and ...
Microsoft Teams Updater Living off the Land
August 05, 2020 | Reegun Jayapaul
Introduction During this global pandemic COVID-19 situation, there has been an ...
Are You Really Scanning What You Think
July 28, 2020 | John Anderson
In a previous post we explored the importance of scanning hostnames instead of ...
ASUS Router Vulnerable to Fake Updates and XSS (CVE-2020-15498 & CVE-2020-15499)
July 23, 2020 | Martin Rakhmanov
Recently ASUS patched two issues I discovered in the RT-AC1900P router firmware ...
Lockscreen Ransomware Phishing Leads To Google Play Card Scam
July 22, 2020 | Homer Pacag
Email scammers always seem to invent new ways of trickery to gain cash from ...