New Malware Variant Employs Windows Subsystem for Linux for Attacks
Security experts have found a new malware variant that uses Windows Subsystem for Linux to infect systems covertly. The research…
elFinder Archive Command Injection
Authored by Shelby Pace, Thomas Chauchefoin | Site metasploit.com elFinder versions below 2.1.59 are vulnerable to a command injection vulnerability…
Simple Attendance System 1.0 SQL Injection
Authored by Abdullah Khawaja Simple Attendance System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication…
Airline Credential-Theft Takes Off in Widening Campaign
A spyware effort bent on stealing cookies and logins is being driven by unsophisticated attackers cashing in on the initial-access-broker…
Azure Zero-Day Flaws Highlight Lurking Supply-Chain Risk
Dubbed OMIGOD, a series of vulnerabilities in the Open Management Infrastructure used in Azure on Linux demonstrate hidden security threats,…
DMA Softlab Radius Manager 4.4.0 Session Management / Cross Site Scripting
Authored by bnu1s DMA Softlab Radius Manager version 4.4.0 chained exploit written in go that exploits session management and cross…
Linux Implementation of Cobalt Strike Beacon Employed by Hackers in Attacks Worldwide
Security experts have detected an unauthorized version of the Cobalt Strike Beacon Linux created by malicious attackers that are actively…
Why Your Hospital Network Needs an IoT Security Policy
By Marc Laliberte, Technical Security Operations Manager, WatchGuard Technologies The Internet of Things (IoT) industry has a security […] The…
TeamTNT cybercrime gang expands its arsenal to target thousands of orgs worldwide
The financially motivated TeamTNT hacking group expanded its arsenal with new tools used to target thousands of victims […] The…