18.5 C
London
Saturday, September 23, 2017
Home Tags Malicious Code

Tag: Malicious Code

A vulnerability in the web framework code of Cisconbsp;Unified Intelligence Center Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web interface of an affected system. ...
In the field of information security, sandboxes are used to isolate an insecure external environment from a secure internal environment (or vice versa), to protect against the exploitation of vulnerabilities, and to analyze malicious code.

At Kaspersky Lab, we have several sandboxes, we will look at just one of them that was customized to serve the needs of a specific product and became the basis of Kaspersky Anti Targeted Attack Platform.
Blueborne exploit works against unpatched devices running Android, Linux, or Windows.
Apache Stuts bug opens banks, insurance cos., and Fortune 500s to code-execution hacks.
All versions of Struts since 2008 affected – upgrade now Malicious code can be push into servers running Apache Struts 2 apps, allowing scumbags to run malware within corporate networks.…
In July 2017, during an investigation, suspicious DNS requests were identified in a partnerrsquo;s network.

The source of the queries was a software package produced by NetSarang. Our analysis showed that recent versions of the software had been surreptitiously modified to include an encrypted payload that could be remotely activated by a knowledgeable attacker.
Take 'em off the network, docs told, until 2015 patches arrive Hackers can exploit trivial flaws in network-connected Siemens' medical scanners to run arbitrary malicious code on the equipment.…
Lookalike npm packages grabbed stored credentials A two-week-old campaign to steal developers' credentials using malicious code distributed through npm, the Node.js package management registry, has been halted with the removal of 39 malicious npm packages.…
Toolmaker phished, Google account pwned, malicious code pushed out – and now fixed A popular Chrome extension was hijacked earlier today to inject ads into browsers, and potentially run malicious JavaScript, after the plugin's creator was hacked.…
As platform's popularity continues to rise, so does its allure to miscreants The comforting notion that iOS devices are immune to malicious code attacks has taken a knock following the release of a new study by mobile security firm Skycure.…

No Free Pass for ExPetr

Recently, there have been discussions around the topic that if our product is installed, ExPetr malware wonrsquo;t write the special malicious code which encrypts the MFT to MBR.
Some have even speculated that some kind of conspiracy might be ongoing.… Read Full Article