InfoSec News Feeds
Aggregated InfoSec News
Packetstorm
- Windows PspBuildCreateProcessContext Double-Fetch...on 30 April 2024 at 5:07 PM
Proof of concept code that demonstrates how the Windows kernel suffers from a privilege escalation vulnerability due to a double-fetch in PspBuildCreateProcessContext that leads to a stack buffer overflow.
- Windows NtQueryInformationThread Double-Fetch /...on 30 April 2024 at 5:00 PM
Proof of concept code that demonstrates how the Windows kernel suffers from a privilege escalation vulnerability due to a double-fetch in NtQueryInformationThread that leads to an arbitrary write.
- undefinedExploiting The NT Kernel In 24H2undefinedon 30 April 2024 at 4:59 PM
This is the full Windows privilege escalation exploit produced from the blog Exploiting the NT Kernel in 24H2: New Bugs in Old Code and Side Channels Against KASLR.
THN
- Everyone's an Expert: How to Empower Your...by info@thehackernews.com (The Hacker News) on 1 May 2024 at 12:03 PM
There’s a natural human desire to avoid threatening scenarios. The irony, of course, is if you hope to attain any semblance of security, you’ve got to remain prepared to confront those very same threats. As a decision-maker for your organization, you know this well. But no matter how many […]
- ZLoader Malware Evolves with Anti-Analysis Trick...by info@thehackernews.com (The Hacker News) on 1 May 2024 at 11:27 AM
The authors behind the resurfaced ZLoader malware have added a feature that was originally present in the Zeus banking trojan that it's based on, indicating that it's being actively developed. "The latest version, 2.4.1.0, introduces a feature to prevent execution on machines that differ […]
- Ex-NSA Employee Sentenced to 22 Years for Trying...by info@thehackernews.com (The Hacker News) on 1 May 2024 at 7:32 AM
A former employee of the U.S. National Security Agency (NSA) has been sentenced to nearly 22 years (262 months) in prison for attempting to transfer classified documents to Russia. "This sentence should serve as a stark warning to all those entrusted with protecting national defense information […]
PortSwigger
- We’re going teetotal: It’s goodbye to The...on 2 March 2023 at 3:05 PM
PortSwigger today announces that The Daily Swig is closing down
- Bug Bounty Radar // The latest bug bounty...on 28 February 2023 at 8:15 PM
New web targets for the discerning hacker
- Indian transport ministry flaws potentially...on 28 February 2023 at 3:15 PM
Armed with personal data fragments, a researcher could also access 185 million citizens’ PII
Security Affaris
- Muddling Meerkat, a mysterious DNS Operation...by Pierluigi Paganini on 1 May 2024 at 9:08 AM
The China-linked threat actors Muddling Meerkat are manipulating DNS to probe networks globally since 2019. Infoblox researchers observed China-linked threat actors Muddling Meerkat using sophisticated DNS activities since 2019 to bypass traditional security measures and probe networks worldwide. […]
- Notorious Finnish Hacker sentenced to more than...by Pierluigi Paganini on 30 April 2024 at 10:32 PM
Finnish hacker was sentenced to more than six years in prison for hacking into an online psychotherapy clinic and attempted extortion. A popular 26-year-old Finnish hacker Aleksanteri Kivimäki was sentenced to more than six years in prison for hacking into the online psychotherapy clinic Vastaamo […]
- CISA guidelines to protect critical...by Pierluigi Paganini on 30 April 2024 at 6:23 PM
The US government’s cybersecurity agency CISA published a series of guidelines to protect critical infrastructure against AI-based attacks. CISA collaborated with Sector Risk Management Agencies (SRMAs) and regulatory agencies to conduct sector-specific assessments of AI risks to U.S. critical […]
HackerOne
- How a Prompt Injection Vulnerability Led to Data...by Sandeep Singh on 29 April 2024 at 5:00 PM
As the use of GenAI and LLMs has ramped up, so have the vulnerabilities that come with them, and one of the worst is prompt injection.
- Lessons Learned from Over a Decade of On-Callby Shubhi Gupta on 27 April 2024 at 12:14 AM
Shubhi Gupta shares tips and lessons from 12 years of being an on-call engineer.
- Kubernetes — A Journey Has Just Begunby Konstantinos Stavropoulos on 26 April 2024 at 5:55 PM
Exhausted but hopeful and longing for new horizons, the Infrastructure Team embarked on the "Container Journey."
WeLiveSecurity
- MDR: Unlocking the power of enterprise-grade...on 30 April 2024 at 10:30 AM
Faced with expanding attack surfaces and a barrage of threats, businesses of all sizes are increasingly looking to unlock the manifold capabilities of enterprise-grade security
- How space exploration benefits life on Earth: Q&A...on 29 April 2024 at 8:27 PM
We spoke to Astronomy magazine editor-in-chief David Eicher about key challenges facing our planet, the importance of space exploration for humanity, and the possibility of life beyond Earth
- Major phishing-as-a-service platform disrupted...on 26 April 2024 at 2:28 PM
The investigation uncovered at least 40,000 phishing domains that were linked to LabHost and tricked victims into handing over their sensitive details
TheRegister
- Cyber-bastard jailed for stealing psychotherapy...by Jessica Lyons on 1 May 2024 at 12:26 AM
Vastaamo villain more than doubled reported crime in Nordic nation A cyber-thief who snatched tens of thousands of patients' sensitive records from a psychotherapy clinic before blackmailing them and then leaking their files online has been caged for six years and three months.…
- UnitedHealth CEO: 'Decision to pay ransom was...by Jessica Lyons on 30 April 2024 at 8:51 PM
Congress to hear how Citrix MFA snafu led to massive data theft, $870M+ loss UnitedHealth CEO Andrew Witty will tell US lawmakers Wednesday the cybercriminals who hit Change Healthcare with ransomware used stolen credentials to remotely access a Citrix portal that didn't have multi-factor […]
- NSA guy who tried and failed to spy for Russia...by Matthew Connatser on 30 April 2024 at 6:01 PM
Tried to sell top secret docs for the low, low price of $85K A former NSA employee has been sentenced to 262 months in prison for attempting to freelance as a Russian spy.…
Security Week
- CISO Conversations: Talking Cybersecurity With...by Kevin Townsend on 1 May 2024 at 1:00 PM
SecurityWeek interviews Geoff Belknap, CISO at LinkedIn, and Guy Rosen, CISO at Facebook parent company Meta. The post CISO Conversations: Talking Cybersecurity With LinkedIn’s Geoff Belknap and Meta’s Guy Rosen appeared first on SecurityWeek.
- Wpeeper Android Trojan Uses Compromised WordPress...by Ionut Arghire on 1 May 2024 at 12:57 PM
The new Wpeeper Android trojan ceased operations after a week and has zero detections in VirusTotal. The post Wpeeper Android Trojan Uses Compromised WordPress Sites to Shield Command-and-Control Server appeared first on SecurityWeek.
- UnitedHealth CEO Says Hackers Lurked in Network...by Ionut Arghire on 1 May 2024 at 2:52 AM
UnitedHealth Group’s CEO Andrew Witty shares details on the damaging cyberattack in testimony before a US Congress committee set for May 1, 2024. The post UnitedHealth CEO Says Hackers Lurked in Network for Nine Days Before Ransomware Strike appeared first on SecurityWeek.
Exploit-DB Updates
- [remote] Palo Alto PAN-OS < v11.1.2-h3 -...on 21 April 2024 at 1:00 AM
Palo Alto PAN-OS < v11.1.2-h3 - Command Injection and Arbitrary File Creation
- [webapps] Laravel Framework 11 - Credential...on 21 April 2024 at 1:00 AM
Laravel Framework 11 - Credential Leakage
- [webapps] FlatPress v1.3 - Remote Command...on 21 April 2024 at 1:00 AM
FlatPress v1.3 - Remote Command Execution
- [webapps] WordPress Plugin Background Image...on 21 April 2024 at 1:00 AM
WordPress Plugin Background Image Cropper v1.2 - Remote Code Execution
- [webapps] SofaWiki 3.9.2 - Remote Command...on 21 April 2024 at 1:00 AM
SofaWiki 3.9.2 - Remote Command Execution (RCE) (Authenticated)
- [webapps] Flowise 1.6.5 - Authentication Bypasson 21 April 2024 at 1:00 AM
Flowise 1.6.5 - Authentication Bypass
ABOUT US
RiSec represents an autonomous, non-profit alliance comprising of individuals dedicated to enhancing cybersecurity awareness and education. Read more
Contact us: security@realinfosec.net
Social
Subscribe for weekly updates
Copyright © RiSec 2023 All rights reserved.
All trademarks, logos, images and brand names are the property of their respective owners.