This site uses cookies to improve your experience. By viewing our content, you are accepting the use of cookies. To help us insure we adhere to various privacy regulations, please select your country/region of residence. If you do not select a country we will assume you are from the United States. View our privacy policy and terms of use.

Remove archive 11
Remove 2023 Remove Blog Related Topics
Security Defenses Accountability Authentication Cybersecurity Risk Information Security Cyber threats Threat Detection Cybercrime Social Engineering More Related Topics >
article thumbnail

Top Trending CVEs of May 2023

NopSec

MAY 31, 2023

May was a rather quiet month for security research, but an excellent write up filtered to the masses from the Pwn2own 2023 conference held in Vancouver, B.C. Finally, it wouldn’t be a worthy blog post if we didn’t include a nugget from patch Tuesday. tar file manipulation. tar file manipulation. x) and VMware Fusion (13.x)

Risk 52
Risk Accountability Authentication Passwords 52
article thumbnail

CERT-UA warns of an ongoing SmokeLoader campaign

Security Affairs

MAY 8, 2023

Threat actors are using emails sent from compromised accounts with the subject “bill/payment” with an attachment in the form of a ZIP archive. “The mentioned ZIP archive is a polyglot file containing a decoy document and a JavaScript file “pax_2023_AB1058.js”

Malware 97
Malware Phishing VPN Accountability 97
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Trending Sources

article thumbnail

PikaBot distributed via malicious search ads

Malwarebytes

DECEMBER 15, 2023

In this blog post, we share details about this new campaign along with indicators of compromise. PikaBot via malspam PikaBot was first identified as a possible Matanbuchus drop from a malspam campaign by Unit 42 in February 2023. Users are tricked to download a zip archive containing a malicious JavaScript.

Social Engineering 116
Social Engineering Engineering Malware Marketing 116
article thumbnail

The TOITOIN Trojan: Analyzing a New Multi-Stage Attack Targeting LATAM Region

Security Boulevard

JULY 7, 2023

This blog post provides an in-depth analysis of this emerging malware campaign and its corresponding infection chain. TOITOIN Infection Chain In May 2023, diligent threat hunters within the Zscaler cloud, recognized as the world's largest security cloud, made a significant breakthrough. Read on to learn more about this alarming threat.

Malware 104
Malware Encryption Phishing Internet 104
article thumbnail

A bowl full of security problems: Examining the vulnerabilities of smart pet feeders

SecureList

JUNE 20, 2023

In this blog post, we’ll discuss the results of a vulnerability research study focused on a popular model of smart pet feeder. For convenience, the app ran on a single board computer ARM64 (Raspberry Pi 4b) running Android 11. The package is a compressed archive protected by a password.

Firmware 87
Firmware Passwords Manufacturing Mobile 87
article thumbnail

Happy 10th anniversary & Kali's story.so far

Kali Linux

MARCH 28, 2023

If you want even more, you can look at at the original blog posts, as well as watch some talks about it: BackTrack Reborn – Kali Linux Kali Linux 1.0 You can read more about it in the release notes of Kali 2023.1 , Kali Purple’s documentation , as well as watch the following talk from Adversary Village at RSAC 2023.

InfoSec 52
InfoSec Penetration Testing Architecture Software 52
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

 

Stay Connected

Join 29,000+ Insiders by signing up for our newsletter

About
About
Editions
Editions
Topics
Powered by Aggregage | Terms and Conditions | Your California Rights and Privacy Policy
© Aggregage 2024