Pierluigi Paganini
April 02, 2019
Cyber Defense eMagazine April 2019 Edition has arrived. We hope you enjoy this month’s edition…packed with over 140 pages of excellent content. InfoSec Knowledge is Power. We have 7 years of eMagazines online with timeless content. Visit our online library by clicking here. CLICK HERE TO DOWNLOAD A HIGH QUALITY PDF VERSION. CLICK HERE TO READ […]
Pierluigi Paganini
April 02, 2019
The privilege escalation vulnerability (CVE-2019-0211) affecting the Apache HTTP server could be exploited by users with the right to write and run scripts to gain root on Unix systems An important privilege escalation vulnerability (CVE-2019-0211) affecting the Apache HTTP server could be exploited by users with the right to write and run scripts to gain […]
Pierluigi Paganini
April 02, 2019
Security expert discovered thousands of unsafe Kibana instances that are exposed online, the news was first reported by colleagues at THN. Kibana is an open source data visualization plugin for Elasticsearch. It provides visualization capabilities on top of the content indexed on an Elasticsearch cluster. Users can create bar, line and scatter plots, or pie charts and […]
Pierluigi Paganini
April 02, 2019
Cybaze-Yoroi ZLAB malware researchers decided to use the NSA Ghidra suite in a real case study, the analysis of the AZORult malware. Introduction One of the most expected moments in the infosec community during the last few months was, with no doubt, the Ghidra public release. On the 5th of March, at the RSA conference, […]
Pierluigi Paganini
April 02, 2019
A change made months ago in an open-source JavaScript library introduced a cross-site scripting (XSS) vulnerability in Google Search. The Japanese security researcher Masato Kinugawa discovered an XSS vulnerability in Google Search that was introduced with a change made months ago in an open-source JavaScript library. The library is named Closure and according to the […]
Pierluigi Paganini
April 02, 2019
The popular expert unixfreaxjp analyzed a new China ELF DDoS’er malware tracked as “Linux/DDoSMan” that evolves from the Elknot malware to deliver new ELF bot. Non-Technical-Premise “This report is meant for incident response or Linux forensics purpose, TO HELP admin & IR folks”, with this the very beginning sentence starts the new analysis of one […]
Pierluigi Paganini
April 02, 2019
Another ransomware attack made the headlines, this time the victim is the City of Albany, its computer systems were infected with the malware. Computer systems in the City of Albany, New York, were infected with ransomware over the weekend that disrupted some municipal computers. According to Albany Mayor Kathy Sheehan, no personal information belonging to […]
Pierluigi Paganini
April 01, 2019
The phone of the Amazon chief was hacked by Saudi Arabian authorities interested in access to his personal data, revealed the investigator hired by Jeff Bezos. Gavin de Becker, the investigator hired by Amazon chief Jeff Bezos to investigate into the release of his intimate images revealed that Saudi Arabian authorities hacked the Bezos’s phone […]
Pierluigi Paganini
April 01, 2019
Last week, Earl Enterprises admitted having suffered a payment card data breach from tens of its restaurants over a period of 10 months. Earl Enterprises admitted that hackers have stolen payment card data from tens of its restaurants over a period of 10 months. Restaurants at Buca di Beppo, Earl of Sandwich, Planet Hollywood, Chicken […]
Pierluigi Paganini
April 01, 2019
VMware released security updates to address vulnerabilities in its vCloud Director, ESXi, Workstation and Fusion products. The company also fixed the security flaws disclosed at the Pwn2Own 2019 hacking competition. VMware released updates to address vulnerabilities in vCloud Director, ESXi, Workstation and Fusion products, including ones disclosed at the Pwn2Own 2019. Amat Cama and Richard […]
