BoundHook Attack Exploits Intel Skylake MPX Feature

A new attack method takes advantage a feature in Intel’s Skylake microprocessor allowing for post-intrusion application hooking and stealth manipulation of applications. Source: Threadpost

Critical Code Execution Flaw Patched in PeopleSoft Core Engine

Organizations running PeopleSoft exposed to the internet should pay attention to a remote code execution vulnerability patched in the latest Oracle Critical Patch Update. Source: Threadpost

Oracle Patches 250 Bugs in Quarterly Critical Patch Update

Three critical SQL injection vulnerabilities in Oracle's popular E-Business Suite make up a part of 250 bugs patched for the company's quarterly Critical Patch Update, Source: Threadpost

Lenovo Quietly Patches Massive Bug Impacting Its Android Tablets and Zuk, Vibe Phones

Lenovo customers are being told to update their Android tablets and handsets to protect themselves against a handful of critical vulnerabilities impacting tens of millions of vulnerable Lenovo devices. Source: Threadpost

ATM malware is being sold on Darknet market

Disclaimer and warning ATM systems appear to be very secure, but the money can be accessed fairly easily if you know what you are doing. Criminals are exploiting hardware and software vulnerabilities...

Factorization Flaw in TPM Chips Makes Attacks on RSA Private Keys Feasible

A flawed Infineon Technology chipset left HP, Lenovo and Microsoft devices open to what is called a 'practical factorization attack,' in which an attacker computes the private part of an RSA...

Adobe Patches Flash Zero Day Exploited by Black Oasis APT

Adobe today released an out-of-band Flash Player update addressing a zero-day vulnerability being exploited by a little-known Middle Eastern APT group called Black Oasis. Source: Threadpost

BlackOasis APT and new targeted attacks leveraging zero-day exploit

More information about BlackOasis APT is available to customers of Kaspersky Intelligence Reporting Service. Contact: intelreports@kaspersky.com Introduction Kaspersky Lab has always worked closely with vendors to protect users. As soon as we find...

KRACK Attack Devastates Wi-Fi Security

The KRACK, or key reinstallation attack, disclosed today allow attackers to decrypt encrypted traffic, steal data and inject malicious code depending on the network configuration. Source: Threadpost

Cyberespionage Group Steps Up Campaigns Against Japanese Firms

Researchers unearth new tactics and strategies used by the criminals behind the hacking group known as Bronze Butler. Source: Threadpost
- Advertisement -

APLICATIONS

RedCrossAntivirus

Se trata de un falso programa antivirus que alerta al usuario sobre amenazas inexistentes en su ordenador. Puede llegar al ordenador cuando el usuario...