Back in June of last year I discovered a critical vulnerability that allows me to remotely delete any video on Facebook. In addition, I also...

A vulnerability exists in Microsoft Remote Desktop for Mac that allows a remote attacker to execute arbitrary code on the target machine. User interaction is...

Hello everyone, Today I’d love to share an interesting XXE in a popular product of Code42.com company, which could give access to ba...

Key Takeaways • First observed in July 2014, "Dridex," a financial banking Trojan, is considered to be one of the successors to the "GameOver ZeuS" (GoZ)

A website that sold access to a database of more than 3 billion hacked accounts has suddenly vanished. LeakedSource had built a business on collecting and packa...

Have I Been Pwned allows you to check whether your email address has been exposed in a data breach.

BONOMEN - Hunt for Malware Critical Process Impersonation - 0xcpu/bonomen

I found this one completely by chance; I was messing around with the server’s Diffie-Hellman parameters (typical Saturday evening) and to my surprise it crashed the OpenSSL 1.1.0 client. Even…

In this paper I will present an elegant technique (it’s my opinion, indeed) to get shell access to a vulnerable remote machine. It is not my own technique but I found it very interesting. The focus of this paper is on this technique and not in the way to…