Perl-Based Shellbot Looks to Target Organizations via C&C
https://ift.tt/2zi8sT4
Submitted November 06, 2018 at 03:54AM by EvanConover
via reddit https://ift.tt/2QrCv24
https://ift.tt/2zi8sT4
Submitted November 06, 2018 at 03:54AM by EvanConover
via reddit https://ift.tt/2QrCv24
Trendmicro
Perl-Based Shellbot Looks to Target Organizations via C&C - TrendLabs Security Intelligence Blog
We uncovered an operation of a hacking group, which we’re naming “Outlaw” (translation derived from the Romanian word haiduc, the hacking tool the group primarily uses), involving the use of an IRC bot built with the help of Perl Shellbot. The group distributes…
Anti-vaccine movement spreading ‘fake news’ online and putting children at risk, England’s top doctor warns
https://ift.tt/2Pax7DV
Submitted November 06, 2018 at 09:48AM by biz_signity
via reddit https://ift.tt/2AO8F2c
https://ift.tt/2Pax7DV
Submitted November 06, 2018 at 09:48AM by biz_signity
via reddit https://ift.tt/2AO8F2c
Yahoo
Anti-vaccine movement spreading ‘fake news’ online and putting children at risk, England’s top doctor warns
England’s most senior doctor has warned that fake news myths pedalled on social media are stoking false fears about vaccinations putting children at risk. Only 87 per cent of children in England have received both doses of the measles, mumps and rubella (MMR)…
Disclosing Multiple Gamasutra Vulnerabilities
https://ift.tt/2Qob3SG
Submitted November 06, 2018 at 09:12PM by QuirkySpiceBush
via reddit https://ift.tt/2PfApp6
https://ift.tt/2Qob3SG
Submitted November 06, 2018 at 09:12PM by QuirkySpiceBush
via reddit https://ift.tt/2PfApp6
Danshumway
Disclosing Multiple Gamasutra Vulnerabilities
After a multi-year responsible disclosure period, I am publicly disclosing 4 different Gamasutra vulnerabilities.
[ANN] [SECURITY] Immediately upgrade commons-fileupload to version 1.3.3 when running Struts 2.3.36 or prior
https://ift.tt/2yUsl3f
Submitted November 06, 2018 at 10:22PM by TheDamnburger
via reddit https://ift.tt/2AR0VMX
https://ift.tt/2yUsl3f
Submitted November 06, 2018 at 10:22PM by TheDamnburger
via reddit https://ift.tt/2AR0VMX
WordPress Design Flaw Leads to WooCommerce RCE
https://ift.tt/2Pgr9Bm
Submitted November 06, 2018 at 10:42PM by rips-hb
via reddit https://ift.tt/2qEkjad
https://ift.tt/2Pgr9Bm
Submitted November 06, 2018 at 10:42PM by rips-hb
via reddit https://ift.tt/2qEkjad
reddit
r/netsec - WordPress Design Flaw Leads to WooCommerce RCE
15 votes and 0 comments so far on Reddit
China Telecom's Internet Traffic (BGP) Misdirection
https://ift.tt/2F2WLpn
Submitted November 06, 2018 at 11:57PM by WildVelociraptor
via reddit https://ift.tt/2F8t3iS
https://ift.tt/2F2WLpn
Submitted November 06, 2018 at 11:57PM by WildVelociraptor
via reddit https://ift.tt/2F8t3iS
Oracle
Oracle Internet Intelligence Blog
Internet outages are a business liability. Monitor global internet connectivity with Oracle's Internet Intelligence Map.
Suricata 4.1 released with SMB and TLS 1.3 support
https://ift.tt/2zzRH5E
Submitted November 07, 2018 at 01:00AM by inliniac
via reddit https://ift.tt/2AQIwjv
https://ift.tt/2zzRH5E
Submitted November 07, 2018 at 01:00AM by inliniac
via reddit https://ift.tt/2AQIwjv
Suricata
Suricata 4.1 released!
After a longer than intended release development cycle, the OISF development team is proud to present Suricata 4.1. Main new features are inclusion of the protocols SMBv1/2/3, NFSv4, Kerberos, FTP,…
Suricata 4.1 released with SMB and TLS 1.3 support
https://ift.tt/2zzRH5E
Submitted November 07, 2018 at 01:00AM by inliniac
via reddit https://ift.tt/2AQIwjv
https://ift.tt/2zzRH5E
Submitted November 07, 2018 at 01:00AM by inliniac
via reddit https://ift.tt/2AQIwjv
Suricata
Suricata 4.1 released!
After a longer than intended release development cycle, the OISF development team is proud to present Suricata 4.1. Main new features are inclusion of the protocols SMBv1/2/3, NFSv4, Kerberos, FTP,…
poshkatz: PowerShell module for Mimikatz
https://ift.tt/2Dq8TPr
Submitted November 07, 2018 at 02:29AM by l33t_d0nut
via reddit https://ift.tt/2DtDwng
https://ift.tt/2Dq8TPr
Submitted November 07, 2018 at 02:29AM by l33t_d0nut
via reddit https://ift.tt/2DtDwng
GitHub
STEALTHbits/poshkatz
PowerShell module for Mimikatz. Contribute to STEALTHbits/poshkatz development by creating an account on GitHub.
Full Disclosure: VirtualBox E1000 Guest-to-Host Escape
https://ift.tt/2F6prh7
Submitted November 07, 2018 at 04:16AM by MorteNoir1
via reddit https://ift.tt/2qvHW4D
https://ift.tt/2F6prh7
Submitted November 07, 2018 at 04:16AM by MorteNoir1
via reddit https://ift.tt/2qvHW4D
GitHub
MorteNoir1/virtualbox_e1000_0day
VirtualBox E1000 Guest-to-Host Escape. Contribute to MorteNoir1/virtualbox_e1000_0day development by creating an account on GitHub.
Walkthrough How We Discovered Running Arbitrary Commands on the ZyXEL NSA325v2
https://www.youtube.com/watch?v=F7O9-OJv6kY
Submitted November 06, 2018 at 08:42PM by goopcat
via reddit https://ift.tt/2Qk6WH3
https://www.youtube.com/watch?v=F7O9-OJv6kY
Submitted November 06, 2018 at 08:42PM by goopcat
via reddit https://ift.tt/2Qk6WH3
YouTube
LIVESTREAM: Walkthrough on Running Arbitrary Commands on the ZyXEL NSA325v2
Follow us on:
https://twitter.com/ISEsecurity
https://twitter.com/iotvillage
Website:
https://www.securityevaluators.com
https://blog.securityevaluators.com
Abstract:
ISE Labs’ continuing research into the security of IoT and embedded devices has uncovered…
https://twitter.com/ISEsecurity
https://twitter.com/iotvillage
Website:
https://www.securityevaluators.com
https://blog.securityevaluators.com
Abstract:
ISE Labs’ continuing research into the security of IoT and embedded devices has uncovered…
ADV180028 | Guidance for configuring BitLocker to enforce software encryption
https://ift.tt/2yUaAB5
Submitted November 07, 2018 at 06:35AM by jdrch
via reddit https://ift.tt/2DoMeTV
https://ift.tt/2yUaAB5
Submitted November 07, 2018 at 06:35AM by jdrch
via reddit https://ift.tt/2DoMeTV
VirtualBox Escape 0-Day
https://ift.tt/2F6prh7
Submitted November 07, 2018 at 07:21AM by GenghisChaim
via reddit https://ift.tt/2qwKcsp
https://ift.tt/2F6prh7
Submitted November 07, 2018 at 07:21AM by GenghisChaim
via reddit https://ift.tt/2qwKcsp
GitHub
MorteNoir1/virtualbox_e1000_0day
VirtualBox E1000 Guest-to-Host Escape. Contribute to MorteNoir1/virtualbox_e1000_0day development by creating an account on GitHub.
PortSmash CPU Side-Channel Attack (Hyper-Threading Vulnerability)
https://ift.tt/2QdOH6r
Submitted November 07, 2018 at 02:57PM by CyberBullets
via reddit https://ift.tt/2yX7JXP
https://ift.tt/2QdOH6r
Submitted November 07, 2018 at 02:57PM by CyberBullets
via reddit https://ift.tt/2yX7JXP
GitHub
bbbrumley/portsmash
Contribute to bbbrumley/portsmash development by creating an account on GitHub.
Zero Day Vulnerability on Virtualbox Allows Code Execution on Host
https://ift.tt/2F6prh7
Submitted November 07, 2018 at 02:22PM by iYassr
via reddit https://ift.tt/2JOEQS8
https://ift.tt/2F6prh7
Submitted November 07, 2018 at 02:22PM by iYassr
via reddit https://ift.tt/2JOEQS8
GitHub
MorteNoir1/virtualbox_e1000_0day
VirtualBox E1000 Guest-to-Host Escape. Contribute to MorteNoir1/virtualbox_e1000_0day development by creating an account on GitHub.
VirtualBox zero day allows code execution on host
https://ift.tt/2F6prh7
Submitted November 07, 2018 at 05:39PM by pimterry
via reddit https://ift.tt/2Owauo2
https://ift.tt/2F6prh7
Submitted November 07, 2018 at 05:39PM by pimterry
via reddit https://ift.tt/2Owauo2
GitHub
MorteNoir1/virtualbox_e1000_0day
VirtualBox E1000 Guest-to-Host Escape. Contribute to MorteNoir1/virtualbox_e1000_0day development by creating an account on GitHub.
GitHub - MorteNoir1/virtualbox_e1000_0day: VirtualBox E1000 Guest-to-Host Escape
https://ift.tt/2F6prh7
Submitted November 07, 2018 at 08:06PM by usefulnfo
via reddit https://ift.tt/2Ds1M9h
https://ift.tt/2F6prh7
Submitted November 07, 2018 at 08:06PM by usefulnfo
via reddit https://ift.tt/2Ds1M9h
GitHub
MorteNoir1/virtualbox_e1000_0day
VirtualBox E1000 Guest-to-Host Escape. Contribute to MorteNoir1/virtualbox_e1000_0day development by creating an account on GitHub.
VirtualBox Zero-Day Vulnerability Details and Exploit Are Publicly Available
https://ift.tt/2PNEh04
Submitted November 07, 2018 at 08:00PM by bobbypower
via reddit https://ift.tt/2SSVqV1
https://ift.tt/2PNEh04
Submitted November 07, 2018 at 08:00PM by bobbypower
via reddit https://ift.tt/2SSVqV1
BleepingComputer
VirtualBox Zero-Day Vulnerability Details and Exploit Are Publicly Available
A Russian vulnerability researcher and exploit developer has published detailed information about a zero-day vulnerability in VirtualBox. His explanations include step-by-step instructions for exploiting the bug.
VirtualBox zero day allows code execution on host
https://ift.tt/2F6prh7
Submitted November 07, 2018 at 09:32PM by 190n
via reddit https://ift.tt/2qA4jG2
https://ift.tt/2F6prh7
Submitted November 07, 2018 at 09:32PM by 190n
via reddit https://ift.tt/2qA4jG2
GitHub
MorteNoir1/virtualbox_e1000_0day
VirtualBox E1000 Guest-to-Host Escape. Contribute to MorteNoir1/virtualbox_e1000_0day development by creating an account on GitHub.
Fake Banking App Found on Google Play Used in SMiShing Scheme
https://ift.tt/2PITdN1
Submitted November 07, 2018 at 09:26PM by EvanConover
via reddit https://ift.tt/2F86V8b
https://ift.tt/2PITdN1
Submitted November 07, 2018 at 09:26PM by EvanConover
via reddit https://ift.tt/2F86V8b
Trendmicro
Fake Banking App Found on Google Play Used in SMiShing Scheme - TrendLabs Security Intelligence Blog
We found a malicious app on Google Play called Movil Secure on October 22, as part of a SMiShing scheme targeting Spanish-speaking users.
Rewritten for TLS 1.3: The New Illustrated TLS, Every Byte Explained
https://ift.tt/2SUjS8f
Submitted November 07, 2018 at 10:02PM by syncsynchalt
via reddit https://ift.tt/2Pd4dCZ
https://ift.tt/2SUjS8f
Submitted November 07, 2018 at 10:02PM by syncsynchalt
via reddit https://ift.tt/2Pd4dCZ
tls13.ulfheim.net
The Illustrated TLS 1.3 Connection
Every byte of a TLS 1.3 connection explained and reproduced