External attack surface management is evolving. Here’s what you can do to keep up
It’s no longer enough to detect where you have been exposed from within your network--today, it’s imperative to look at...
Month: May 2023
Exploring Impersonation through the Named Pipe Filesystem Driver
Introduction Impersonation happens often natively in Windows, however, adversaries also use it to run code in the context of another...
Avetta releases Cyber Risk Solution for complete supply chain cyber health visibility
Avetta has released the Cyber Risk Solution, providing a quantitative score that evaluates cyber health in 10 areas and delivers...
Hackers are taking advantage of the interest in generative AI to install Malware
Threat actors are using the promise of generative AI like ChatGPT to deliver malware, Facebook parent Meta warned. Threat actors...
Azra Games CEO on Putting Fun Before Web3
"The Web3 interfaces cannot be on the foreground of the player's initial experience," says Azra Games CEO Mark Otero.
Netgear Vulnerabilities Lead to Credentials Leak, Privilege Escalation
Vulnerabilities in Netgear network management system allow attackers to retrieve cleartext passwords and escalate privileges. The post Netgear Vulnerabilities Lead...
Adobe ColdFusion Unauthenticated Remote Code Execution
Topic: Adobe ColdFusion Unauthenticated Remote Code Execution Risk: High Text:## # This module requires Metasploit: https://metasploit.com/download # Current source: https://github.com/rapid7/metasploit-...
Fortigate 7.0.1 Stack Overflow
Topic: Fortigate 7.0.1 Stack Overflow Risk: Medium Text:c@ubuntu:~/LABS$ cat fp17.py #!/usr/bin/env python3 # fortigate 7.0.1 postauth stack overflow 0day #...
Sielco PolyEco Digital FM Transmitter 2.0.6 Authentication Bypass Exploit
Topic: Sielco PolyEco Digital FM Transmitter 2.0.6 Authentication Bypass Exploit Risk: Low Text:#!/usr/bin/env python3 # -*- coding: utf-8 -*- ##...
You can now use passkeys to login into your Google account
Users can now create passkeys for their Google account, the company has announced on Wednesday. Passkeys will enable users to...