en
Feedback
SysAdmin 24x7

SysAdmin 24x7

Open in Telegram

Noticias y alertas de seguridad informática. Chat y contacto: t.me/sysadmin24x7chat

Show more
4 387
Subscribers
+124 hours
-17 days
+130 days
Posts Archive
Taller de exploiting: BOF básico en Linux - análisis estático (1/2) https://www.hackplayers.com/2018/07/taller-de-exploiting-bof-basico-en-linux-1.html?m=1

Múltiples vulnerabilidades Mbed TLS Fecha de publicación: 27/07/2018 Importancia: 4 - Alta Recursos afectados:  Mbed TLS versiones 1.2 y superiores, y versiones 2.1, 2.7 y superiores. https://www.certsi.es/alerta-temprana/avisos-seguridad/multiples-vulnerabilidades-mbed-tls

Remote Spectre Attack Allows Data Theft Over Network A team of researchers from the Graz University of Technology in Austria has demonstrated that Spectre attacks can be launched remotely without the need to execute code on the targeted machine. https://www.securityweek.com/remote-spectre-attack-allows-data-theft-over-network

[dos] QNap QVR Client 5.1.1.30070 - 'Password' Denial of Service (PoC) https://www.exploit-db.com/exploits/45092/?rss QNap QVR Client 5.1.1.30070 - 'Password' Denial of Service (PoC)

Feliz SYSADMINDAY a tod@s

A mining multitool Symbiosis of PowerShell and EternalBlue for cryptocurrency mining https://securelist.com/a-mining-multitool/86950/

Vulnerabilidad de 2007 permite escalar privilegios en Solaris http://unaaldia.hispasec.com/2018/07/vulnerabilidad-de-2007-permite-escalar.html

Android Device With Open ADB Ports Exploited to Spread Satori Variant of Mirai Botnet https://gbhackers.com/android-device-satori-variant/amp/

New Bluetooth Hack Affects Millions of Devices from Major Vendors https://thehackernews.com/2018/07/bluetooth-hack-vulnerability.html

BeRoot For Windows: a post exploitation tool to check common Windows misconfigurations to find a way to escalate our privilege: https://github.com/AlessandroZ/BeRoot/tree/master/Windows Privilege Escalation Project - Windows / Linux / Mac: https://github.com/AlessandroZ/BeRoot

Alert (TA18-201A) Emotet Malware Systems Affected: Network Systems Overview: Emotet is an advanced, modular banking Trojan that primarily functions as a downloader or dropper of other banking Trojans. Emotet continues to be among the most costly and destructive malware affecting state, local, tribal, and territorial (SLTT) governments, and the private and public sectors. This joint Technical Alert (TA) is the result of Multi-State Information Sharing & Analysis Center (MS-ISAC) analytic efforts, in coordination with the Department of Homeland Security (DHS) National Cybersecurity and Communications Integration Center (NCCIC). https://www.us-cert.gov/ncas/alerts/TA18-201A

LabCorp ransomed, 18k routers rooted, a new EXIF menace, and more https://www.theregister.co.uk/AMP/2018/07/21/july_21_security_roundup

Dangerous macOS Backdoor That Steals User Login Credentials Remained Undetected for Years https://gbhackers.com/dangerous-macos-backdoor-calisto

SSLsplit 0.5.3 SSLsplit is a tool for man-in-the-middle attacks against SSL/TLS encrypted network connections. https://packetstormsecurity.com/files/148634/sslsplit-0.5.3.tar.bz2

📃"Vulnerabilidad en Wordpress permite a un atacante obtener control total sobre el sitio web en segundos" https://unaaldia.hispasec.com/2018/06/vulnerabilidad-en-wordpress-permite-un.html #WordPress #Vulneraciones #SeguridadInformática