Pierluigi Paganini
May 04, 2019
Extortion practice hit programmers’ Git repositories, experts observed a new piece of ransomware that wipes them and replaces the code with a ransom note. Hackers are using a new piece of ransomware to target GitHub, GitLab, and Bitbucket repositories, wiping code and commiting, and leaving a ransom note. The hackers wipe out all commit history […]
Pierluigi Paganini
May 04, 2019
Mozilla is going to update the Add-on Policy for Firefox to ban Firefox extensions containing obfuscated code starting from June 10, 2019. Mozilla announced a change to the Add-on Policy for Firefox to ban Firefox extensions containing obfuscated code starting from June 10, 2019. The move aims to prevent malicious extensions to threaten Firefox users. […]
Pierluigi Paganini
May 04, 2019
A security researcher discovered vulnerabilities in more than 100 plugins of the Jenkins open source software development automation server. Jenkins is the most popular open source automation server, it is maintained by CloudBees and the Jenkins community. The automation server supports developers build, test and deploy their applications, it has hundreds of thousands of active installations […]
Pierluigi Paganini
May 03, 2019
Cyber Defense Magazine May 2019 Edition has arrived. We hope you enjoy this month’s edition…packed with over 160+ pages of excellent content. Cyber Defense eMagazine for May 2019 [adrotate banner=”9″] [adrotate banner=”12″] Pierluigi Paganini (SecurityAffairs – Cyber Defense Magazine, hacking) [adrotate banner=”5″] [adrotate banner=”13″]
Pierluigi Paganini
May 03, 2019
The Human Factor has a fundamental importance for the success of a cyber attack, for this reason it is important to create a culture of cyber security within organizations. Every day we see a large number of tools being implemented within enterprises and institutions due to the need to keep their environments more secure, along […]
Pierluigi Paganini
May 03, 2019
Cisco released security patches to address tens of vulnerabilities in its products, including a critical vulnerability affecting Nexus 9000 switches. Cisco released security patches to address tens of vulnerabilities in its products. Among the flaws fixed by Cisco, there is also a critical vulnerability in Nexus 9000 switches that is tracked as CVE-2019-1804 and that […]
Pierluigi Paganini
May 03, 2019
The availability of 10KBLAZE PoC exploits for old SAP configuration issue poses a severe risk of attacks for business applications. The risk of cyber attacks against SAP systems is increased after security researchers released PoC exploits for old SAP configuration flaws. SAP Message Server and SAP Gateway implements an access control list (ACL) mechanism to […]
Pierluigi Paganini
May 03, 2019
Employment-recruitment site Ladders exposed 13M User Records Employment-recruitment site Ladders exposed left online a misconfigured AWS-hosted database that contained 13 million user records. Sanyam Jain, a security researcher and a member of the GDI Foundation, discovered a database belonging to the employment-recruitment site Ladders left exposed online on a misconfigured AWS-hosted database. The archive contained 13 […]
Pierluigi Paganini
May 02, 2019
The US DoJ indicted a Russian national for obtaining over $1.5 million in fraudulent tax refunds from the Internal Revenue Service. The US DoJ indicted the Russian national ANTON P. BOGDANOV for obtaining over $1.5 million in fraudulent tax refunds from the Internal Revenue Service. Bogdanov was charged in federal court in Brooklyn of wire fraud conspiracy, […]
Pierluigi Paganini
May 02, 2019
The APT34 Glimpse project is maybe the most complete APT34 project known so far, the popular researcher Marco Ramilli analyzed it for us. Indeed we might observe a File-based command and control (a quite unusual solution) structure, a VBS launcher, a PowerShell Payload and a covert channel over DNS engine. This last feature is the most […]
Malware / September 13, 2025
Data Breach / September 12, 2025
