Friday Squid Blogging: More on Squid Fishing
The squid you eat most likely comes from unregulated waters. As usual, you can also use this squid post to talk about the security stories...
Cisco patches high and critical flaws across several products
Cisco fixed serious vulnerabilities across several of its products this week, including in its Industrial Network Director, Modeling Labs, ASR 5000 Series Routers, and BroadWorks...
Iran cyberespionage group taps SimpleHelp for persistence on victim devices
Iranian APT hacking group MuddyWater has been observed using SimpleHelp, a legitimate remote device control and management tool, to ensure persistence on victim devices. SimpleHelp...
Checking existence of firewalled URLs via javascript’s script.onload
Posted by Georgi Guninski on Apr 21 There is minor information disclosure vulnerability similar to nmap in browser. It is possible to check the existence...
Checking existence of firewalled web servers in Firefox via iframe.onload
Posted by Georgi Guninski on Apr 21 In short in Firefox 112, it is possible to check existence of firewalled web servers. This doesn't work...
Hacking Pickleball
My latest book, A Hacker’s Mind, has a lot of sports stories. Sports are filled with hacks, as players look for every possible advantage that...
webkitgtk-2.40.1-1.fc37
FEDORA-2023-a4bbf02a57 Packages in this update: webkitgtk-2.40.1-1.fc37 Update description: The Bubblewrap sandbox no longer requires setting an application identifier via GApplication to operate correctly. Using GApplication...
CFPB Employee Sends 256,000 Consumers’ Data to Personal Email
Congressman Bill Huizenga addressed the claims in a letter to CFPB director, Rohit Chopra Read More
Evil Extractor Targets Windows Devices to Steal Sensitive Data
New malware operates through several modules that rely on a File Transfer Protocol service Read More
Trojanized Installers Used to Distribute Bumblebee Malware
Secureworks’ Counter Threat Unit analyzed the findings in a report published on Thursday Read More