Exploit | SC Media
Skip to navigation Skip to main content

Exploit

Network Security, Penetration Testing, Vulnerability Assessment, Risk Assessment, Research, Security News, Vulnerabilities

Metasploit Project publishes exploit for Bluekeep bug

By
Publish Date

Coders late last week publicly released a working exploit for the dangerous Bluekeep bug that was found and patched earlier this year in Microsoft’s Remote Desktop Protocol implementation. Designated as CVE-2019-0708, BlueKeep is a remote Windows kernel use-after-free vulnerability that could be used to create wormable attacks similar to the WannaCry ransomware incident of May…

Apple issues seven updates, fixes more than 40 vulnerabilities in iOS 8, OS 10.9.5
APTs/cyberespionage, Cybercrime, Malware, Mobile Security, Security News

Watering-hole attack campaign designed to infect iOS users via exploit chains

By
Publish Date

Researchers at Google’s Project Zero yesterday lifted the curtain on a long-running mobile malware operation that for years attempted to infect iOS device users with a malware implant, using exploits delivered via a small number of compromised websites. In an online blog post report, Google researcher Ian Beer did not reveal the specific websites that…

AppleMalware2
Mobile Security, Security News, Vulnerabilities

iOS 12.4 update reintroduced old bug, enabling jailbreak for current devices

By
Publish Date

Apple’s latest iOS update reportedly undid a patch that was introduced in the previous release, a mistake that allowed a security researcher to publish a jailbreak for the most up-to-date version of the operating system. The unpatched vulnerability is CVE-2019-8605, an arbitrary code execution bug caused by a use-after-free condition. Working in tandem with Google…

Mobile Security, Privacy & Compliance News and Analysis, Research, Security News, Vulnerabilities, Wireless Security

Researchers devise method to track Bluetooth devices, despite built-in protections

By
Publish Date

Researchers from Boston University (BU) have discovered a way to circumvent anonymization protections on Bluetooth Low Energy devices, allowing potentially malicious actors to passively track the movements of these devices and their users. BLE devices rely on non-encrypted advertising messages to signal their availability to other devices to pair up. To prevent third-party actors from…

Cryptocurrency, Cybercrime, Malware, Ransomware, Security News

ShadowGate malvertising group serves up SEON ransomware via Greenflash Sundown exploit kit

By
Publish Date

The cybercriminal group ShadowGate has emerged from a long quiet period, launching a global malvertising campaign that redirects victims to the Greenflash Sundown exploit kit, in order to infect them with SEON ransomware, a cryptominer and the Pony credential-stealer. Also known as WordsJS, the ShadowGate group is more typically known for targeting Asia, especially South…

Cybercrime, Phishing, Ransomware, Security News

Sodinokibi ransomware campaigns span growing array of attack vectors

By
Publish Date

Since its discovery of Sodinokibi ransomware last April, cybercriminals have reportedly been attempting to infect networks with the malicious encryption program through a growing number of vectors, including supply chain attacks, spam, and malvertisements that redirect victims to an exploit kit. Sodinokibi encrypts data found in the user directory and prevents data recovery by leveraging…

Malware, Security News, Vulnerabilities

New OSX/Linker malware created to exploit bypass bug in macOS X Gatekeeper

By
Publish Date

Mac researchers have discovered a new malware program designed to specifically exploit a recently disclosed zero-day bypass vulnerability in macOS X Gatekeeper, which has still yet to be patched. Dubbed OSX/Linker, the malware appears to be crafted by the same developers behind OSX/Surfbuyer, an adware program that also targets Mac users, according to Joshua Long,…

Cryptocurrency, Cybercrime, Malware, Security News

Plurox backdoor opens up networks to cryptominers and protocol exploits

By
Publish Date

Researchers earlier this year discovered a modular backdoor that delivers one of eight different cryptominers to infected systems, as well as malicious plug-ins that exploit the UPnP and SMB protocols. Written in C and compiled with Mingw GCC, the malware, dubbed Plurox, was discovered last February by researchers at Kaspersky, who believe they detected the…

Monero crypto-currency (Cryptonic.net)
Cryptocurrency, Cybercrime, Malware, Security News, Vulnerabilities

Adversaries exploit WebLogic bug to deliver cryptominer, use .cer files for obfuscation

By
Publish Date

Cybercriminals have been using a recently discovered critical vulnerability in the Oracle WebLogic server to deliver a Monero cryptomining program, while using certificate files to obfuscate malicious code. Caused by a deserialization error, the flaw, CVE-2019-2725, was patched in an April 26 out-of-band security update. The SANS ISC InfoSec forums originally hosted reports of malicious actors exploiting…

Next post in Cybercrime