Security Affairs

JUNE 19, 2020

The exploit used by Turla, referred to as CVE-2008-3431 , abuses two vulnerabilities, but only one was ever fixed in the aforementioned CVE. The other vulnerability was chained by Turla operators with the CVE-2008-3431 flaw in the first version of their exploit. but also all other versions up to v3.0.0. of the driver.

Malware 144

Malware InfoSec Advertising Hacking 144

Security Affairs

JULY 7, 2021

Cybersecurity #Infosec — US-CERT (@USCERT_gov) June 30, 2021. 2008 and 2012 but require Point&Print configured for Windows 2016,2019,10 & 11(?). CERT/CC has released a Vulnerability Note flagging a critical remote code execution vulnerability “PrintNightmare“ in the Windows Print spooler service. Learn more at [ [link] ].

InfoSec 144

InfoSec Hacking Accountability Malware 144

Pen Test Partners

JULY 1, 2024

Versions before 4.4p1 are also vulnerable unless patches for CVE-2006- 5051 and CVE-2008-4109 have been applied. There has been a lot of talk on various infosec news feeds about the RegreSSHion vulnerability. The CVE is a high-severity remote unauthenticated code execution vulnerability affecting glibc-based Linux systems.

InfoSec 83

InfoSec Authentication Firewall VPN 83

SecureList

MAY 19, 2023

Over the years, the infosec community has discovered multiple APTs operating in the Russo-Ukrainian conflict region – Gamaredon, CloudAtlas , BlackEnergy and many others. Operation Groundbait was first described by ESET in 2016, with the first implants observed in 2008.

Encryption 127

Encryption Malware Internet Internet 127

Kali Linux

MARCH 28, 2023

Enter BackTrack 3 in June 2008. 2008 was no exception. In information security (infosec) there is the need to be on the latest version. Writing exploits or developing infosec tools is no exception, they often need to have access to the latest libraries. Times were different to how it is now. How did you pick the name?

InfoSec 52

InfoSec Penetration Testing Architecture Software 52

Security Boulevard

APRIL 22, 2025

Background Since 2008, Verizons annual Data Breach Investigations Report (DBIR) has helped organizations understand evolving cyber threats. Security isnt just for infosec professionals its everyones responsibility. To support the report, Tenable Research contributed enriched data on the most exploited vulnerabilities.

Energy and Utilities 59

Energy and Utilities Authentication Data breaches VPN 59

ForAllSecure

FEBRUARY 2, 2022

Vamosi: For this episode I also want to weigh in on a very controversial topic within infosec today. Now, if you’ve been around infosec for any length of time, you are probably thinking about Diffie-Hellman, RSA, Elliptical Curve, even SHA. Vamosi: There’s this saying in infosec about never rolling your own encryption.

Cryptocurrency 52

Cryptocurrency InfoSec Software Encryption 52