Author: Cybernoz

Metagaming: An Interview With Andrew Ringlein
26
Apr
2023

Metagaming: An Interview With Andrew Ringlein

Created/Updated: September 7, 2022 In today’s standalone episode I’m going to talk about some new gaming ideas I’ve not seen…

Share: X : Metagaming: An Interview With Andrew RingleinFacebook : Metagaming: An Interview With Andrew RingleinLinkedin : Metagaming: An Interview With Andrew RingleinReddit : Metagaming: An Interview With Andrew RingleinTelegram : Metagaming: An Interview With Andrew RingleinWhatsApp : Metagaming: An Interview With Andrew RingleinEmail : Metagaming: An Interview With Andrew Ringlein
26
Apr
2023

Halo Security detects exposed secrets and API keys in JavaScript

Web properties are increasingly relying on third-party JavaScript to increase functionality, but this can also bring inherent risks. A report…

Share: X : Halo Security detects exposed secrets and API keys in JavaScriptFacebook : Halo Security detects exposed secrets and API keys in JavaScriptLinkedin : Halo Security detects exposed secrets and API keys in JavaScriptReddit : Halo Security detects exposed secrets and API keys in JavaScriptTelegram : Halo Security detects exposed secrets and API keys in JavaScriptWhatsApp : Halo Security detects exposed secrets and API keys in JavaScriptEmail : Halo Security detects exposed secrets and API keys in JavaScript
Log4j Vulnerability Activity on the HackerOne Platform
26
Apr
2023

Log4j Vulnerability Activity on the HackerOne Platform

December 17th Update:  Vulnerabilities in Log4j have been evolving over the course of this week since the original disclosure of…

Share: X : Log4j Vulnerability Activity on the HackerOne PlatformFacebook : Log4j Vulnerability Activity on the HackerOne PlatformLinkedin : Log4j Vulnerability Activity on the HackerOne PlatformReddit : Log4j Vulnerability Activity on the HackerOne PlatformTelegram : Log4j Vulnerability Activity on the HackerOne PlatformWhatsApp : Log4j Vulnerability Activity on the HackerOne PlatformEmail : Log4j Vulnerability Activity on the HackerOne Platform
New WordPress plugin vulnerabilities
26
Apr
2023

How attackers exploit the WordPress Easy-WP-SMTP zero-day

On November 6th, 2019, Detectify added security tests for 50+ of the most popular WordPress plugins, including Easy-WP-SMTP. Although the…

Share: X : How attackers exploit the WordPress Easy-WP-SMTP zero-dayFacebook : How attackers exploit the WordPress Easy-WP-SMTP zero-dayLinkedin : How attackers exploit the WordPress Easy-WP-SMTP zero-dayReddit : How attackers exploit the WordPress Easy-WP-SMTP zero-dayTelegram : How attackers exploit the WordPress Easy-WP-SMTP zero-dayWhatsApp : How attackers exploit the WordPress Easy-WP-SMTP zero-dayEmail : How attackers exploit the WordPress Easy-WP-SMTP zero-day
Black Basta ransomware attacks Yellow Pages Canada
26
Apr
2023

Black Basta ransomware attacks Yellow Pages Canada

Yellow Pages Canada has suffered a cyberattack by the Black Basta ransomware group. The Canadian Yellow Pages Group has confirmed it…

Share: X : Black Basta ransomware attacks Yellow Pages CanadaFacebook : Black Basta ransomware attacks Yellow Pages CanadaLinkedin : Black Basta ransomware attacks Yellow Pages CanadaReddit : Black Basta ransomware attacks Yellow Pages CanadaTelegram : Black Basta ransomware attacks Yellow Pages CanadaWhatsApp : Black Basta ransomware attacks Yellow Pages CanadaEmail : Black Basta ransomware attacks Yellow Pages Canada
RhondaMiessler
26
Apr
2023

My Mom Died on Saturday

Created/Updated: September 21, 2022 My mom died on Saturday. My biological mother became unable to function when I was around…

Share: X : My Mom Died on SaturdayFacebook : My Mom Died on SaturdayLinkedin : My Mom Died on SaturdayReddit : My Mom Died on SaturdayTelegram : My Mom Died on SaturdayWhatsApp : My Mom Died on SaturdayEmail : My Mom Died on Saturday
Abusing Service Location Protocol to cause never seen before 2,200x DDoS amplification attacks
26
Apr
2023

Abusing Service Location Protocol to cause never seen before 2,200x DDoS amplification attacks

Service Location Protocol (SLP) is an older Internet protocol that has been found to contain a critical security flaw, which…

Share: X : Abusing Service Location Protocol to cause never seen before 2,200x DDoS amplification attacksFacebook : Abusing Service Location Protocol to cause never seen before 2,200x DDoS amplification attacksLinkedin : Abusing Service Location Protocol to cause never seen before 2,200x DDoS amplification attacksReddit : Abusing Service Location Protocol to cause never seen before 2,200x DDoS amplification attacksTelegram : Abusing Service Location Protocol to cause never seen before 2,200x DDoS amplification attacksWhatsApp : Abusing Service Location Protocol to cause never seen before 2,200x DDoS amplification attacksEmail : Abusing Service Location Protocol to cause never seen before 2,200x DDoS amplification attacks
GuLoader returns with a rotten shipment
26
Apr
2023

GuLoader returns with a rotten shipment

We take a look at a GuLoader campaign which comes bundled with an Italian language fake shipment email. GuLoader, a…

Share: X : GuLoader returns with a rotten shipmentFacebook : GuLoader returns with a rotten shipmentLinkedin : GuLoader returns with a rotten shipmentReddit : GuLoader returns with a rotten shipmentTelegram : GuLoader returns with a rotten shipmentWhatsApp : GuLoader returns with a rotten shipmentEmail : GuLoader returns with a rotten shipment
CWE (Common Weakness Enumeration) and the CWE Top 25 Explained
25
Apr
2023

CWE (Common Weakness Enumeration) and the CWE Top 25 Explained

Common Weakness Enumeration (CWE) is a system to categorize software and hardware security flaws—implementation defects that can lead to vulnerabilities….

Share: X : CWE (Common Weakness Enumeration) and the CWE Top 25 ExplainedFacebook : CWE (Common Weakness Enumeration) and the CWE Top 25 ExplainedLinkedin : CWE (Common Weakness Enumeration) and the CWE Top 25 ExplainedReddit : CWE (Common Weakness Enumeration) and the CWE Top 25 ExplainedTelegram : CWE (Common Weakness Enumeration) and the CWE Top 25 ExplainedWhatsApp : CWE (Common Weakness Enumeration) and the CWE Top 25 ExplainedEmail : CWE (Common Weakness Enumeration) and the CWE Top 25 Explained
Microsoft Defender logo on a colorful background
25
Apr
2023

How to enable Kernel-mode Hardware-enforced Stack Protection in Windows 11

Kernel-mode Hardware-enforced Stack Protection is a security feature introduced in Windows 11 22H2 that protects systems from various memory attacks,…

Share: X : How to enable Kernel-mode Hardware-enforced Stack Protection in Windows 11Facebook : How to enable Kernel-mode Hardware-enforced Stack Protection in Windows 11Linkedin : How to enable Kernel-mode Hardware-enforced Stack Protection in Windows 11Reddit : How to enable Kernel-mode Hardware-enforced Stack Protection in Windows 11Telegram : How to enable Kernel-mode Hardware-enforced Stack Protection in Windows 11WhatsApp : How to enable Kernel-mode Hardware-enforced Stack Protection in Windows 11Email : How to enable Kernel-mode Hardware-enforced Stack Protection in Windows 11
Detectify security updates for December 28
25
Apr
2023

Detectify security updates for December 28

Our Crowdsource ethical hacker community has been busy sending us security updates, including 0-day research. For Asset Monitoring, we now push out tests more…

Share: X : Detectify security updates for December 28Facebook : Detectify security updates for December 28Linkedin : Detectify security updates for December 28Reddit : Detectify security updates for December 28Telegram : Detectify security updates for December 28WhatsApp : Detectify security updates for December 28Email : Detectify security updates for December 28
alfred-safari
25
Apr
2023

Using Custom Searches in Safari (in 2022)

Created/Updated: September 25, 2022 I’ve just started using Safari again after being on Chrome for a while, and one of…

Share: X : Using Custom Searches in Safari (in 2022)Facebook : Using Custom Searches in Safari (in 2022)Linkedin : Using Custom Searches in Safari (in 2022)Reddit : Using Custom Searches in Safari (in 2022)Telegram : Using Custom Searches in Safari (in 2022)WhatsApp : Using Custom Searches in Safari (in 2022)Email : Using Custom Searches in Safari (in 2022)