[dos] Microsoft Windows - 'nt!NtQueryInformationProcess (information class 76, QueryProcessEnergyValues)' Kernel Stack Memory Disclosure
https://www.exploit-db.com/exploits/43470/?rss
Microsoft Windows - 'nt!NtQueryInformationProcess (information class 76, QueryProcessEnergyValues)' Kernel Stack Memory Disclosure
https://www.exploit-db.com/exploits/43470/?rss
Microsoft Windows - 'nt!NtQueryInformationProcess (information class 76, QueryProcessEnergyValues)' Kernel Stack Memory Disclosure
Microsoft Patches Zero-Day Vulnerability in Office
http://feedproxy.google.com/~r/Securityweek/~3/fy_7rlOZl8Q/microsoft-patches-zero-day-vulnerability-office
Microsoft’s January 2018 Patch Tuesday updates address more than 50 vulnerabilities, including a zero-day vulnerability in Office related to an Equation Editor flaw that has been exploited by several threat groups in the past few months.
read more (http://www.securityweek.com/microsoft-patches-zero-day-vulnerability-office)
http://feedproxy.google.com/~r/Securityweek/~3/fy_7rlOZl8Q/microsoft-patches-zero-day-vulnerability-office
Microsoft’s January 2018 Patch Tuesday updates address more than 50 vulnerabilities, including a zero-day vulnerability in Office related to an Equation Editor flaw that has been exploited by several threat groups in the past few months.
read more (http://www.securityweek.com/microsoft-patches-zero-day-vulnerability-office)
Securityweek
Microsoft Patches Zero-Day Vulnerability in Office | SecurityWeek.Com
Microsoft patches over 50 vulnerabilities, including an Office zero-day similar to the Equation Editor flaw that has been exploited by several threat groups
Highly Targeted Attacks Hit North Korean Defectors
http://feedproxy.google.com/~r/Securityweek/~3/oOttyf-3Q4k/highly-targeted-attacks-hit-north-korean-defectors
A recent set of attacks aimed at North Korean defectors and journalists were associated with a highly targeted campaign conducted by an actor that does not appear to be related to any known cybercrime groups, McAfee says.
read more (http://www.securityweek.com/highly-targeted-attacks-hit-north-korean-defectors)
http://feedproxy.google.com/~r/Securityweek/~3/oOttyf-3Q4k/highly-targeted-attacks-hit-north-korean-defectors
A recent set of attacks aimed at North Korean defectors and journalists were associated with a highly targeted campaign conducted by an actor that does not appear to be related to any known cybercrime groups, McAfee says.
read more (http://www.securityweek.com/highly-targeted-attacks-hit-north-korean-defectors)
Securityweek
Highly Targeted Attacks Hit North Korean Defectors | SecurityWeek.Com
A recent set of attacks aimed at North Korean defectors and journalists were associated with a highly targeted campaign conducted by unknown threat actor.
Mac Malware Creator Indicted in U.S.
http://feedproxy.google.com/~r/Securityweek/~3/RWtsCJGpEiQ/mac-malware-creator-indicted-us
“FruitFly” Mac Malware Creator Allegedly Spied On Victims for 13 Years
read more (http://www.securityweek.com/mac-malware-creator-indicted-us)
http://feedproxy.google.com/~r/Securityweek/~3/RWtsCJGpEiQ/mac-malware-creator-indicted-us
“FruitFly” Mac Malware Creator Allegedly Spied On Victims for 13 Years
read more (http://www.securityweek.com/mac-malware-creator-indicted-us)
Securityweek
Mac Malware Creator Indicted in U.S. | SecurityWeek.Com
Phillip R. Durachinsky has been charged with using the FruitFly malware for more than 13 years to watch, listen to, and obtain personal data from unknowing victims, as well as to produce child pornography.
Highly Targeted Attacks Hit North Korean Defectors
http://feedproxy.google.com/~r/Securityweek/~3/oOttyf-3Q4k/highly-targeted-attacks-hit-north-korean-defectors
A recent set of attacks aimed at North Korean defectors and journalists were associated with a highly targeted campaign conducted by an actor that does not appear to be related to any known cybercrime groups, McAfee says.
read more (http://www.securityweek.com/highly-targeted-attacks-hit-north-korean-defectors)
http://feedproxy.google.com/~r/Securityweek/~3/oOttyf-3Q4k/highly-targeted-attacks-hit-north-korean-defectors
A recent set of attacks aimed at North Korean defectors and journalists were associated with a highly targeted campaign conducted by an actor that does not appear to be related to any known cybercrime groups, McAfee says.
read more (http://www.securityweek.com/highly-targeted-attacks-hit-north-korean-defectors)
Securityweek
Highly Targeted Attacks Hit North Korean Defectors | SecurityWeek.Com
A recent set of attacks aimed at North Korean defectors and journalists were associated with a highly targeted campaign conducted by unknown threat actor.
AMD Will Release CPU Microcode Updates for Spectre Flaw This Week
https://www.bleepingcomputer.com/news/hardware/amd-will-release-cpu-microcode-updates-for-spectre-flaw-this-week/
AMD officially admitted today that its processors are not vulnerable to the Meltdown bug, but are affected by both variants of the Spectre flaw. [...]
https://www.bleepingcomputer.com/news/hardware/amd-will-release-cpu-microcode-updates-for-spectre-flaw-this-week/
AMD officially admitted today that its processors are not vulnerable to the Meltdown bug, but are affected by both variants of the Spectre flaw. [...]
BleepingComputer
AMD Will Release CPU Microcode Updates for Spectre Flaw This Week
AMD officially admitted today that its processors are not vulnerable to the Meltdown bug, but are affected by both variants of the Spectre flaw.
How to Attract More Women Into Cybersecurity - Now
https://www.darkreading.com/careers-and-people/how-to-attract-more-women-into-cybersecurity---now/d/d-id/1330816?_mc=rss_x_drr_edt_aud_dr_x_x-rss-simple
A recent survey finds a number of attributes women seek in their careers can be found in a cybersecurity profession - the dots just need to be connected.
https://www.darkreading.com/careers-and-people/how-to-attract-more-women-into-cybersecurity---now/d/d-id/1330816?_mc=rss_x_drr_edt_aud_dr_x_x-rss-simple
A recent survey finds a number of attributes women seek in their careers can be found in a cybersecurity profession - the dots just need to be connected.
Dark Reading
How to Attract More Women Into Cybersecurity - Now
A recent survey finds a number of attributes women seek in their careers can be found in a cybersecurity profession - the dots just need to be connected.
NEW PYTHON-BASED CRYPTO-MINER BOTNET FLYING UNDER THE RADAR
https://f5.com/labs/articles/threat-intelligence/malware/new-python-based-crypto-miner-botnet-flying-under-the-radar?sf178360556=1
https://f5.com/labs/articles/threat-intelligence/malware/new-python-based-crypto-miner-botnet-flying-under-the-radar?sf178360556=1
F5 Labs
New Python-Based Crypto-Miner Botnet Flying Under the Radar
A new Python-based botnet that mines Monero spreads via SSH and leverages Pastebin to publish new C&C server addresses.
Slui File Handler Hijack UAC bypass (fileless), works from Windows 8 up to Windows 10 RS4 17074
https://github.com/bytecode-77/slui-file-handler-hijack-privilege-escalation
https://github.com/bytecode-77/slui-file-handler-hijack-privilege-escalation
GitHub
GitHub - bytecode77/slui-file-handler-hijack-privilege-escalation: Slui File Handler Hijack UAC Bypass Local Privilege Escalation
Slui File Handler Hijack UAC Bypass Local Privilege Escalation - GitHub - bytecode77/slui-file-handler-hijack-privilege-escalation: Slui File Handler Hijack UAC Bypass Local Privilege Escalation
Linux and Windows Servers Targeted with RubyMiner Malware
https://www.bleepingcomputer.com/news/security/linux-and-windows-servers-targeted-with-rubyminer-malware/
Security researchers have spotted a new strain of malware being deployed online. Named RubyMiner, this malware is a cryptocurrency miner spotted going after outdated web servers. [...]
https://www.bleepingcomputer.com/news/security/linux-and-windows-servers-targeted-with-rubyminer-malware/
Security researchers have spotted a new strain of malware being deployed online. Named RubyMiner, this malware is a cryptocurrency miner spotted going after outdated web servers. [...]
BleepingComputer
Linux and Windows Servers Targeted with RubyMiner Malware
Security researchers have spotted a new strain of malware being deployed online. Named RubyMiner, this malware is a cryptocurrency miner spotted going after outdated web servers.
Canadian Police Charge Operator of Hacked Password Service Leakedsource.com
https://krebsonsecurity.com/2018/01/canadian-police-charge-operator-of-hacked-password-service-leakedsource-com/
Canadian authorities have arrested and charged a 27-year-old Ontario man for allegedly selling billions of stolen passwords online through the now-defunct service Leakedsource.com.
https://krebsonsecurity.com/2018/01/canadian-police-charge-operator-of-hacked-password-service-leakedsource-com/
Canadian authorities have arrested and charged a 27-year-old Ontario man for allegedly selling billions of stolen passwords online through the now-defunct service Leakedsource.com.
OWASP ZSC is an open source obfuscated code generator tool in Python which lets you generate customized shellcodes and convert noscripts to an obfuscated noscript.
Shellcodes are small codes in Assembly language which could be used as the payload in software exploitation. Other usages are in malware, bypassing antivirus software, obfuscating code for protection and so on.
This software can be run on Windows/Linux/OSX under Python.
Why use OWASP ZSC Obfuscated Code Generator Tool
Another good reason for obfuscating files or generating shellcode with ZSC is that it can be used for pen-testing assignments.
Read the rest of OWASP ZSC – Obfuscated Code Generator Tool now! Only available at Darknet. (https://www.darknet.org.uk/2018/01/owasp-zsc-obfuscated-code-generator-tool/)
Shellcodes are small codes in Assembly language which could be used as the payload in software exploitation. Other usages are in malware, bypassing antivirus software, obfuscating code for protection and so on.
This software can be run on Windows/Linux/OSX under Python.
Why use OWASP ZSC Obfuscated Code Generator Tool
Another good reason for obfuscating files or generating shellcode with ZSC is that it can be used for pen-testing assignments.
Read the rest of OWASP ZSC – Obfuscated Code Generator Tool now! Only available at Darknet. (https://www.darknet.org.uk/2018/01/owasp-zsc-obfuscated-code-generator-tool/)
Darknet - Hacking Tools, Hacker News & Cyber Security
OWASP ZSC - Obfuscated Code Generator Tool - Darknet - Hacking Tools, Hacker News & Cyber Security
OWASP ZSC is an open source obfuscated code generator tool in Python which lets you generate customized shellcodes and convert noscripts to an obfuscated noscript.