-
2025-01-09: CVE-2017-0199 XLS –> HTA –> VBS –> steganography –> DBatLoader/GuiLoader style malware
2025-01-09: CVE-2017-0199 XLS –> HTA –> VBS –> steganography –> DBatLoader/GuiLoader style malware 2025-01-09 (THURSDAY): CVE-2017-0199 XLS –> HTA –> VBS –> STEGANOGRAPHY –> DBATLOADER/GUILOADER STYLE MALWARE NOTES: Zip files are password-protected. Of note, this site has a new password scheme … Read more Published Date: Jan 11, 2025 (1 day, 8 hours ago) Vulnerabilities has been…
-
CVE-2024-12847: Proof-of-Concept Exploit Code Released
CVE-2024-12847: Proof-of-Concept Exploit Code Released OverviewCVE-2024-12847 is a critical security vulnerability affecting certain models of NETGEAR routers, notably the DGN1000 and DGN2200 v1. This vulnerability has been assigned a CVSS score of 9.8, r … Read more Published Date: Jan 11, 2025 (1 day, 9 hours ago) Vulnerabilities has been mentioned in this article. CVE-2024-12847 CVE-2024-51741 CVE-2024-46981…
-
Reversing, Discovering, And Exploiting A TP-Link Router Vulnerability — CVE-2024–54887
Reversing, Discovering, And Exploiting A TP-Link Router Vulnerability — CVE-2024–54887 OverviewRecently, I picked up an interest in reverse engineering and exploit development. After a while, picking at Hack The Box challenges can get tired, and I started looking for a more interesting … Read more Published Date: Jan 11, 2025 (1 day, 10 hours ago) Vulnerabilities has been mentioned…
-
CVE-2024-12847 (CVSS 9.8): NETGEAR Router Flaw Exploited in the Wild for Years, PoC Published
CVE-2024-12847 (CVSS 9.8): NETGEAR Router Flaw Exploited in the Wild for Years, PoC Published A severe security vulnerability has been discovered in several Netgear routers, allowing remote attackers to gain unauthorized access and control over the devices. The vulnerability, identified as CVE … Read more Published Date: Jan 11, 2025 (1 day, 14 hours ago) Vulnerabilities has…
-
Ivanti Connect Secure Zero-Day Threat: 2,048 Vulnerable Devices and Critical Exploitation Details Unveiled
Ivanti Connect Secure Zero-Day Threat: 2,048 Vulnerable Devices and Critical Exploitation Details Unveiled On January 8, 2025, Ivanti disclosed an actively exploited zero-day vulnerability, tracked as CVE-2025-0282, affecting its Connect Secure appliances. This critical stack-based buffer overflow vulnerab … Read more Published Date: Jan 11, 2025 (1 day, 14 hours ago) Vulnerabilities has been mentioned in this…
-
Threat Actors Exploit a Critical Ivanti RCE Bug, Again
Threat Actors Exploit a Critical Ivanti RCE Bug, Again Source: Lobro via Alamy Stock PhotoA Chinese threat actor is once again exploiting Ivanti remote access devices at large.If you had a nickel for every high-profile vulnerability affecting Ivanti appli … Read more Published Date: Jan 10, 2025 (1 day, 17 hours ago) Vulnerabilities has been mentioned in…
-
China’s UNC5337 Exploits a Critical Ivanti RCE Bug, Again
China’s UNC5337 Exploits a Critical Ivanti RCE Bug, Again Source: Lobro via Alamy Stock PhotoA Chinese threat actor is once again exploiting Ivanti remote access devices at large.If you had a nickel for every high-profile vulnerability affecting Ivanti appli … Read more Published Date: Jan 10, 2025 (1 day, 17 hours ago) Vulnerabilities has been mentioned in…
-
Kdenlive 24.12.1 is out with more than a dozen of bug-fixes
Kdenlive, the popular KDE video editor, released the first maintenance update for the 24.12 series few days ago. It’s not officially announced in its website at the moment of writing, but the source tarball is out for those who want to compile by themselves. And, the Flatpak package has been updated for most Linux users.…
-
Shortwave Now Supports Play Internet Radio in the Background
Shortwave, the modern free open-source internet radio player, finally adds background playback support! Shortwave is an internet audio player designed for GNOME Desktop, though it also works in most other Linux desktops and even Linux phones. The app features a station database with over 50,000 stations, custom library, automatic recognition of songs, recording, and play…
-
An introduction to using tcpdump at the Linux command line
In my experience as a sysadmin, I have often found network connectivity issues challenging to troubleshoot. For those situations, tcpdump is a great ally.Take the course: Getting started with Linux fundamentalsTcpdump is a command-line utility that allows you to capture and analyze network traffic going through your system. It is often used to help troubleshoot…