en
Feedback
SysAdmin 24x7

SysAdmin 24x7

Open in Telegram

Noticias y alertas de seguridad informática. Chat y contacto: t.me/sysadmin24x7chat

Show more
4 384
Subscribers
-224 hours
-17 days
-230 days
Posts Archive
Alert (TA18-145A) Cyber Actors Target Home and Office Routers and Networked Devices Worldwide https://www.us-cert.gov/ncas/alerts/TA18-145A

Múltiples vulnerabilidades en Moodle Fecha de publicación: 25/05/2018 Importancia: 4 - Alta Recursos afectados:  Se han visto afectadas las siguientes versiones: 3.4 hasta 3.4.2. 3.3 hasta 3.3.5. 3.2 hasta 3.2.8. 3.1 hasta 3.1.11. y versiones anteriores sin soporte. https://www.certsi.es/alerta-temprana/avisos-seguridad/multiples-vulnerabilidades-moodle-2

Múltiples vulnerabilidades en IBM Db2 Fecha de publicación: 24/05/2018 Importancia: 4 - Alta Recursos afectados:  Versiones IBM Db2 V9.7, V10.1, V10.5, y V11.1 en todas las plataformas. https://www.certsi.es/alerta-temprana/avisos-seguridad/multiples-vulnerabilidades-ibm-db2

NETGEAR Support Security Advisory for #VPNFilter Malware on Some Routers https://kb.netgear.com/000058814/Security-Advisory-for-VPNFilter-Malware-on-Some-Routers

Compromising Thousands of Websites Through a CDN https://justi.cz/security/2018/05/23/cdn-tar-oops.html

Colección de herramientas y técnicas para obtener shells reversas en Windows http://www.hackplayers.com/2018/05/recopilacion-shells-en-windows.html

Q: What devices are known to be affected by #VPNFilter ? A: To date, VPNFilter is known to be capable of infecting enterprise and small office/home office routers from Linksys, MikroTik, Netgear, and TP-Link, as well as QNAP network-attached storage (NAS) devices. These include: Linksys E1200 Linksys E2500 Linksys WRVS4400N Mikrotik RouterOS for Cloud Core Routers: Versions 1016, 1036, and 1072 Netgear DGN2200 Netgear R6400 Netgear R7000 Netgear R8000 Netgear WNR1000 Netgear WNR2000 QNAP TS251 QNAP TS439 Pro Other QNAP NAS devices running QTS software TP-Link R600VPN https://www.symantec.com/blogs/threat-intelligence/vpnfilter-iot-malware

FBI seizes domain Russia allegedly used to infect 500,000 consumer routers The sinkholing is a major coup but doesn't automatically kill #VPNFilter infections. https://arstechnica.com/information-technology/2018/05/fbi-seizes-server-russia-allegedly-used-to-infect-500000-consumer-routers/

Vulnerability Scanning with OpenVAS 9 part 2: Vulnerability Scanning https://www.hackingtutorials.org/scanning-tutorials/vulnerability-scanning-openvas-9-0-part-2/

Vulnerability Scanning with OpenVAS 9 part 1: Installation & Setup https://www.hackingtutorials.org/scanning-tutorials/vulnerability-scanning-openvas-9-pt-1/

Actualización de seguridad de Joomla! 3.8.8 Fecha de publicación: 23/05/2018 Importancia: 3 - Media Recursos afectados:  Joomla! CMS versiones desde la 1.5.0 hasta la 3.8.7 https://www.certsi.es/alerta-temprana/avisos-seguridad/actualizacion-seguridad-joomla-388

Hackers are exploiting a new zero-day flaw in GPON routers https://thehackernews.com/2018/05/hacking-gpon-routers.html

Samsung Galaxy S7 Edge: Overflow in OMACP WbXml String Extension Processing https://bugs.chromium.org/p/project-zero/issues/detail?id=1532

Técnicas para escapar de shells restringidas (restricted shells bypassing) http://www.hackplayers.com/2018/05/tecnicas-para-escapar-de-restricted--shells.html

PoCs and Papers for Spectre/Meltdown variant 3a Hypervisor detection using speculative execution https://github.com/bi-zone/

A journey into Radare 2 – Part 1: Simple crackme A journey into Radare 2 – Part 2: Exploitation https://www.megabeets.net/a-journey-into-radare-2-part-1/ https://www.megabeets.net/a-journey-into-radare-2-part-2/

Decrypting APT33’s Dropshot Malware with Radare2 and Cutter – Part 1 https://www.megabeets.net/decrypting-dropshot-with-radare2-and-cutter-part-1/