0 Комментарии
0 Поделились
349 Просмотры
0 предпросмотр
Поиск
Знакомьтесь и заводите новых друзей
-
Войдите, чтобы отмечать, делиться и комментировать!
-
EternalBlue (MS17-010): The Exploit That Powered WannaCryIn 2017, a leaked NSA exploit known as EternalBlue changed cybersecurity forever. Targeting a flaw in Microsoft’s SMBv1 protocol (MS17-010), EternalBlue allowed unauthenticated remote code execution over TCP port 445. An attacker could send a specially crafted SMB packet and gain SYSTEM-level access to a vulnerable Windows machine — no credentials required. The exploit abused improper...0 Комментарии 0 Поделились 618 Просмотры 0 предпросмотр
-
Fortinet Patches Actively Exploited FortiCloud SSO Zero-Day — Urgent Update RequiredFortinet has started rolling out security updates for a critical zero-day vulnerability affecting its FortiOS platform and associated products, after multiple organizations reported real-world attacks that bypass authentication and grant unauthorized administrative access. What Was Happening Reports from customers in late January confirmed that attackers were able to access FortiGate...0 Комментарии 0 Поделились 607 Просмотры 0 предпросмотр
-
Google Patches High-Severity WebView Vulnerability (CVE-2026-0628) — Update NowGoogle has released an urgent security update to fix a high-severity vulnerability in the Chrome WebView component, tracked as CVE-2026-0628. This flaw posed a significant threat to devices and applications that use WebView to render web content, including Android apps and certain desktop applications, and could allow attackers to bypass important browser-level security protections. What Is...0 Комментарии 0 Поделились 867 Просмотры 0 предпросмотр
-
Honeywell CCTV Cameras Vulnerable to Account Hijacking (CVE-2026-1670)A critical vulnerability has been disclosed in multiple Honeywell CCTV camera models that could allow remote attackers to take over administrative accounts without authentication. The issue, tracked as CVE-2026-1670, carries a CVSS score of 9.8 (Critical) and has been highlighted in an industrial control systems advisory by the U.S. Cybersecurity and Infrastructure Security Agency (CISA)....0 Комментарии 0 Поделились 340 Просмотры 0 предпросмотр
-
How a Server Vulnerability Led to Crypto Mining on Our InfrastructureLast week, we witnessed a security incident that started as a simple performance issue and evolved into a cryptocurrency mining investigation. Here's how these attacks work and what you need to know to protect your infrastructure from similar threats. The Deceptive Beginning It always starts innocently. Pages load slowly, applications feel sluggish, and users start complaining. Your first...0 Комментарии 0 Поделились 809 Просмотры 0 предпросмотр
-
Microsoft Patches Actively Exploited Office Vulnerability — Update ImmediatelyMicrosoft has released an urgent security update for a critical vulnerability affecting Microsoft Office, and it’s one users should not ignore. The flaw is already being exploited in real-world attacks, meaning systems that haven’t been updated are actively at risk. What’s the Vulnerability? The issue, tracked as CVE-2026-21509, allows attackers to bypass key Microsoft Office security...0 Комментарии 0 Поделились 774 Просмотры 0 предпросмотр
-
New Osiris Ransomware Uses Advanced Evasion Technique to Bypass Security ToolsSecurity researchers have identified a new ransomware strain called Osiris that employs sophisticated evasion methods to disable endpoint protection before encrypting systems. The malware leverages a technique known as Bring Your Own Vulnerable Driver (BYOVD), allowing attackers to execute malicious code with elevated privileges while circumventing detection by traditional security tools. What...0 Комментарии 0 Поделились 629 Просмотры 0 предпросмотр
-
Researchers Find Over 175,000 AI Servers Publicly Exposed WorldwideA new joint investigation by cybersecurity researchers from SentinelOne’s SentinelLABS and Censys has uncovered a staggering number of publicly accessible artificial intelligence servers — raising serious security concerns for organisations and developers deploying AI systems. According to the analysis, researchers discovered more than 175,000 unique Ollama AI servers exposed directly to...0 Комментарии 0 Поделились 736 Просмотры 0 предпросмотр
-
What Is Exploit-DB and Why It Matters in CybersecurityExploit-DB is one of the most widely used public databases in the cybersecurity world, yet it is often misunderstood outside of security research circles. Maintained by Offensive Security, Exploit-DB serves as an archive of publicly disclosed exploits and proof-of-concept (PoC) code tied to real vulnerabilities. For defenders, the database is not about learning how to hack systems — it's about...0 Комментарии 0 Поделились 552 Просмотры 0 предпросмотр
-
Windows Notepad Zero-Day Vulnerability (CVE-2026-20841)Overview and How It Worked In February 2026, Microsoft released security updates addressing a remote code execution vulnerability in the modern Windows Notepad application, tracked as CVE-2026-20841. The flaw was rated high severity, and users were advised to apply updates immediately. The vulnerability stemmed from how Notepad handled Markdown files containing clickable links....0 Комментарии 0 Поделились 469 Просмотры 0 предпросмотр
English
Arabic
French
Spanish
Portuguese
Deutsch
Turkish
Dutch
Italiano
Romaian
Portuguese (Brazil)
Greek