Hacking Archives - Page 555 of 977

Pierluigi Paganini March 08, 2019

Evading AV with JavaScript Obfuscation

A few days ago, Cybaze-Yoroi ZLAB researchers spotted a suspicious JavaScript file that implemented several techniques to evade detection of all AV solutions. Introduction A few days ago, Cybaze-Yoroi ZLAB researchers spotted a suspicious JavaScript file needing further attention: it leveraged several techniques in order to evade all AV detection and no one of the […]

Pierluigi Paganini March 08, 2019

Google discloses Windows zero-day actively exploited in targeted attacks

Google this week revealed a Windows zero-day that is being actively exploited in targeted attacks alongside a recently fixed Chrome flaw. Google this week disclosed a Windows zero-day vulnerability that is being actively exploited in targeted attacks alongside a recently addressed flaw in Chrome flaw (CVE-2019-5786). The Windows zero-day vulnerability is a local privilege escalation […]

Pierluigi Paganini March 08, 2019

Zerodium $500,000 for VMware ESXi, Microsoft Hyper-V Exploits

Zero-day broker firm Zerodium is offering up to $500,000 for VMware ESXi (vSphere) and Microsoft Hyper-V vulnerabilities. Exploit acquisition firm Zerodium is offering up to $500,000 for VMware ESXi and Microsoft Hyper-V vulnerabilities. The company is looking for exploits that allow guest-to-host escapes in default configurations to gain full access to the host. The overall […]

Pierluigi Paganini March 07, 2019

Microsoft warns of economic damages caused by Iran-linked hackers

Researchers at Microsoft warn of damages caused by cyber operations conducted by Iran-linked cyberespionage groups. Security experts at Microsoft are warning of economic damages caused by the activity of Iran-linked hacking groups that are working to penetrate systems, businesses, and governments worldwide. According to Microsoft, the attackers already caused hundreds of millions of dollars in […]

Pierluigi Paganini March 07, 2019

Too much UPnP-enabled connected devices still vulnerable to cyber attacks

UPnP-enabled devices running outdated software are exposed to a wide range of attacks exploiting known flaws in UPnP libraries. A broad range of UPnP-enabled devices running outdated software are exposed to attacks exploiting known flaws in UPnP libraries, Tony Yang, Home Network Researcher, has found 1,648,769 devices using the Shodan search engine, 35% were using […]

Pierluigi Paganini March 07, 2019

Whitefly espionage group was linked to SingHealth Singapore Healthcare Breach

Security experts at Symantec linked the massive Singapore Healthcare breach suffered by SingHealth to the ‘Whitefly’ cyberespionage group. In 2018, the largest healthcare group in Singapore, SingHealth, has suffered a massive data breach that exposed personal information of 1.5 million patients who visited the clinics of the company between May 2015 and July 2018. Stolen […]

Pierluigi Paganini March 06, 2019

Google Chrome Zero-Day Vulnerability CVE-2019-5786 actively exploited in the wild

A new zero-day vulnerability in Google Chrome, tracked as CVE-2019-5786, is actively exploited in attacks in the wild. A new zero-day vulnerability in Google Chrome is actively exploited in attacks in the wild. The vulnerability was discovered late February by Clement Lecigne, a security researcher at the Google Threat Analysis Group. The high severity zero-day […]

Pierluigi Paganini March 06, 2019

NSA released Ghidra, its multi-platform reverse engineering framework

The NSA released the Ghidra, a multi-platform reverse engineering framework that could be used to find vulnerabilities and security holes in applications. In January 2019, the National Security Agency (NSA) announced the release at the RSA Conference of the free reverse engineering framework GHIDRA. GHIDRA is a multi-platform reverse engineering framework that runs on major […]

Pierluigi Paganini March 06, 2019

[SI-LAB] #OpJerusalem 2019 – JCry ransomware is now infecting Windows users

Over the last few days, a new ransomware campaign infected several users around the world as part of the #OpJerusalem campaign. SI-LAB analyzed this malware and noticed that it does not use sophisticated techniques. Criminals used UPX packer to protect malware code written in Go and a RSA public certificate is hardcoded inside malware to […]

Pierluigi Paganini March 05, 2019

Iran-Linked Chafer APT recently used python-based backdoor

The Iran-linked Chafer APT group used a new Python-based backdoor in recent attacks aimed at a Turkish government entity. The Iran-linked Chafer APT group used a new Python-based backdoor in attacks carried out in November 2018 that targeted a Turkish government entity. The Chafer APT group has distributed data stealer malware since at least mid-2014, […]

Hacking

Evading AV with JavaScript Obfuscation

Google discloses Windows zero-day actively exploited in targeted attacks

Zerodium $500,000 for VMware ESXi, Microsoft Hyper-V Exploits

Microsoft warns of economic damages caused by Iran-linked hackers

Too much UPnP-enabled connected devices still vulnerable to cyber attacks

Whitefly espionage group was linked to SingHealth Singapore Healthcare Breach

Google Chrome Zero-Day Vulnerability CVE-2019-5786 actively exploited in the wild

NSA released Ghidra, its multi-platform reverse engineering framework

[SI-LAB] #OpJerusalem 2019 – JCry ransomware is now infecting Windows users

Iran-Linked Chafer APT recently used python-based backdoor

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

Agentic AI in Cybersecurity: Beyond Triage to Strategic Threat Hunting

Nine NuGet packages disrupt DBs and industrial systems with time-delayed payloads

QNAP fixed multiple zero-days in its software demonstrated at Pwn2Own 2025

AI chat privacy at risk: Microsoft details Whisper Leak side-channel attack

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 70

QUICK LINKS

Hacking

newsletter

Subscribe to my email list and stay up-to-date!

recent articles

Subscribe to my email list and stay
up-to-date!