Canal dedicado a noticias de Seguridad Informática en todos sus ámbitos, free, 24h x 365. Contacto/Contact: secnews4everyone@protonmail.com Referencias: https://goo.gl/uhfXtE https://goo.gl/XvBaes
https://secdevops.ai/theres-no-place-like-1-enumerating-local-ipv6-networks-88a6247e3519
Читать полностью…https://core.trac.wordpress.org/ticket/39309#comment:21
Читать полностью…URGENT! Two Critical 0-Day Remote Exploits for the Latest Version of #vBulletin Forum Disclosed Publicly—NO PATCH Available - Remote Code Execution Vulnerability
Security researchers have discovered and disclosed details of two unpatched critical vulnerabilities in a popular internet forum software—vBulletin—one of which could allow a remote attacker to execute malicious code on the latest version of vBulletin application server.
The vulnerabilities affect version 5 of the vBulletin forum software and are currently unpatched. Beyond Security claims, it tried to contact vBulletin since November 21, 2017, but received no response from the company.
Read more at Vulners by THN
F.C.C. Repeals Net Neutrality Rules (Score: 168+)
Link: http://j.mp/2AsJiQI
#Venezuela #Bitcoin
https://dolartoday.com/atencion-polilara-quien-mine-criptomonedas-comete-ilicitos-cambiarios-y-va-la-carcel/
http://seclists.org/fulldisclosure/2017/Dec/38
Читать полностью…clong/introducing-detection-lab-61db34bed6ae" rel="nofollow">https://medium.com/@clong/introducing-detection-lab-61db34bed6ae
Читать полностью…https://gitlab.com/nowayout/yara_sweeper
Читать полностью…https://lab.wallarm.com/the-good-the-bad-and-the-ugly-of-safari-in-client-side-attacks-56d0cb61275a
Читать полностью…⚠️ "Nuevos problemas para Android: detectan 85 apps en la Play Store que estaban robando tus contraseñas"
#GooglePlay #Android #Malware
https://www.redeszone.net/2017/12/13/apps-android-roban-contrasenas/
Say Farewell to Putty as Microsoft adds an OpenSSH Client to Windows 10
https://www.servethehome.com/say-farewell-putty-microsoft-adds-openssh-client-windows-10/
https://bugs.chromium.org/p/project-zero/issues/detail?id=1417
Читать полностью…https://support.citrix.com/article/CTX230238
Читать полностью…https://binaryfigments.com/2017/12/11/dont-trust-all-ssl-tls-certificates/
Читать полностью…https://blog.fox-it.com/2017/12/08/detection-and-recovery-of-nsas-covered-up-tracks/
Читать полностью…Remote LD_Preload explotation https://www.elttam.com.au/blog/goahead/
Читать полностью…https://github.com/peewpw/Invoke-PSImage
Читать полностью…ROBOT es una variación de una vulnerabilidad que lleva 19 años presente en RSA - MuySeguridad
https://www.muyseguridad.net/2017/12/14/robot-vulnerabilidad-19-anos-rsa/
https://krebsonsecurity.com/2017/12/mirai-iot-botnet-co-authors-plead-guilty/
Читать полностью…https://diablohorn.com/2017/12/12/attacking-encrypted-systems-with-qemu-and-volatility/
Читать полностью…https://www.twistlock.com/2017/12/13/hiding-content-git-escape-sequence-twistlock-labs-experiment/
Читать полностью…https://oddvar.moe/2017/12/13/harden-windows-with-applocker-based-on-case-study-part-1/
Читать полностью…Goohak
Automatically Launch Google Hacking Queries Against A Target Domain
https://github.com/1N3/Goohak
Plataforma de retos del CCN-CERT https://atenea.ccn-cert.cni.es/home
Читать полностью…https://www.cyberis.co.uk/blog/attacking-big-business
Читать полностью…https://github.com/secrary/makin
Читать полностью…https://ratil.life/metasploitable3-ctf/
Читать полностью…https://blog.zsec.uk/out-of-band-xxe-2/
Читать полностью…