Aggregator
CVE-2021-34751 | Cisco Firepower Management Center sensitive information in gui (cisco-sa-fmc-infodisc-Ft2WVmNU)
CVE-2021-34753 | Cisco Firepower Threat Defense Software Ethernet Industrial Protocol access control (cisco-sa-ftd-enip-bypass-eFsxd8KP)
CVE-2024-5512 | Kofax Power PDF JP2 File Parser out-of-bounds
CVE-2024-5511 | Kofax Power PDF JP2 File Parser out-of-bounds
CVE-2024-5510 | Kofax Power PDF JP2 File Parser out-of-bounds
CVE-2024-5513 | Kofax Power PDF JP2 File Parser out-of-bounds write
CVE-2024-8185 | HashiCorp Vault/Vault Enterprise up to 1.18.0 API Endpoint failing open (Nessus ID 210710)
CVE-2024-20504 | Cisco Secure Email Web-based Management Interface cross site scripting (cisco-sa-esa-wsa-sma-xss-zYm3f49n / Nessus ID 210599)
Sophisticated Kimsuky Campaign: New Malware Bypasses Windows Defender
The Kimsuky group has once again found itself at the center of attention following a campaign that deftly combined social engineering tactics with sophisticated techniques for bypassing Windows security mechanisms. Their targets included South...
The post Sophisticated Kimsuky Campaign: New Malware Bypasses Windows Defender appeared first on Penetration Testing Tools.
日程确定!2025 Let's GoSSIP 暑期学校火热报名中!
Looking for Real Ones: Where Can I Learn Real-World Hacking from the Ground Up (Not Just Theory)?
全周期防护,威努特给农业大数据上“保险”
全周期防护,威努特给农业大数据上“保险”
科技爱好者周刊(第 360 期):Dan Wang 的新书
史上最大规模GreedyBear攻击:650种黑客工具窃取百万美元资产
TeamFiltration: enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts
TeamFiltration TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts. See the Example Attack flow at the bottom of this readme for a general introduction into how TeamFiltration works! This tool has...
The post TeamFiltration: enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts appeared first on Penetration Testing Tools.
Lynx
You must login to view this content
UnitedHealth Group's Latest Health Data Breach Woes
When you've been the victim of the largest health data breach in U.S. history, and you've been under intense public and regulatory scrutiny for months, the last thing you want to do is to report another major breach less than a year after the last one. But that just happened to UnitedHealth Group.
Nvidia Pushes Back on Chinese 'Kill-Switch' Claims
Artificial intelligence chip-making powerhouse Nvidia is rejecting claims from China’s top cyber agency that its H20 chips include location tracking and kill-switch features - while warning U.S. lawmakers against requiring those capabilities in future chip designs.