PoC Archives - GBHackers Security | #1 Globally Trusted Cyber Security News Platform

PoC Exploit Released for QNAP QTS zero-day RCE Flaw

Divya — Tue, 21 May 2024 06:43:14 +0000

Researchers have shown a proof-of-concept (PoC) attack for a zero-day remote code execution (RCE) flaw in the QTS operating system from QNAP. Users of QNAP’s Network-Attached Storage (NAS) devices, which are common in both small and big business settings, are in grave danger because of this flaw, which has been named CVE-2024-27130. Network-attached storage (NAS) […]

The post PoC Exploit Released for QNAP QTS zero-day RCE Flaw appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

PoC Exploit Published for 0-day Vulnerability in Google Chrome

Divya — Mon, 20 May 2024 10:21:31 +0000

A proof-of-concept (PoC) exploit for a critical zero-day vulnerability (CVE-2024-4947) in Google Chrome has been made public. The potential for exploitation of this vulnerability, which impacts the V8 JavaScript engine, has generated considerable apprehension among members of the cybersecurity community. Details of CVE-2024-4947 The CVE-2024-4947 vulnerability arises from erroneous AccessInfo values assigned to module namespace […]

The post PoC Exploit Published for 0-day Vulnerability in Google Chrome appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Indicator Of Attack(IoA’s) And Activities – SOC/SIEM – A Detailed Explanation

Balaji — Sun, 04 Jun 2023 07:41:00 +0000

What is an Indicator of Attack (IOA) IoAs is some events that could reveal an active attack before indicators of compromise become visible. The use of IoAs provides a way to shift from reactive cleanup/recovery to a proactive mode, where attackers are disrupted and blocked before they achieve their goal such as data thief, ransomware, […]

The post Indicator Of Attack(IoA’s) And Activities – SOC/SIEM – A Detailed Explanation appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Android Ecosystem Contains Several Hidden Patch Gaps that Can be Exploited by Hackers

Balaji — Mon, 16 Apr 2018 06:03:34 +0000

The Android operating system is one of the most widely used platforms with 2 billion active users at the same time it facing a lot of security issues that need frequent fixes and release the patch for the users is one of the main processes in Android Ecosystem. Android Phones are receiving monthly security patches […]

The post Android Ecosystem Contains Several Hidden Patch Gaps that Can be Exploited by Hackers appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Hackers Can Steal Password Hashes & Crash Windows systems Automatically with Microsoft Outlook and OLE

Balaji — Sat, 14 Apr 2018 10:27:56 +0000

The researcher discovered a flaw that combined with Microsoft Outlook and OLE which leads to steal the Password hash and eventually crash the windows system. OLE (Object Linking and Embedding) is a component document technology created by Microsoft that helps to dynamically link files and applications together. Microsoft Outlook is an email client that comes […]

The post Hackers Can Steal Password Hashes & Crash Windows systems Automatically with Microsoft Outlook and OLE appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Critical Flaw in Popular BitTorrent Transmission Client Leads to an Attacker Perform Remote Hack into Your PC

Balaji — Tue, 16 Jan 2018 13:13:01 +0000

A critical flaw discovered in BitTorrent Transmission client app that allows an attacker can remotely control the victims PC by using a method called DNS Rebinding which leads to Transmission control can remotely access by an attacker via a malicious website. This bug was discovered by Google Researcher Tavis Ormandy and it serving under google […]

The post Critical Flaw in Popular BitTorrent Transmission Client Leads to an Attacker Perform Remote Hack into Your PC appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Risk with Steganography and Importance of running Steganalysis with Network Systems

Gurubaran — Sat, 30 Dec 2017 16:20:08 +0000

Steganography is an art of hiding messages covert way so that exclusive the sender and recipient know the original message. This technique permits sender and receiver to communicate secretly and the third party won’t mindful of the correspondence happen. It replaces bits of unused information into the standard files—graphic, sound, text,video—with some different bits that […]

The post Risk with Steganography and Importance of running Steganalysis with Network Systems appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Using n1n3 to Simulate an Evasive Fileless Malware – Proof Of Concept

Balaji — Thu, 14 Dec 2017 08:08:18 +0000

Fileless malware are types of malicious code used in cyber attacks that don’t use files to launch the attack and carry on the infection on the affected device or network. The infection is run in the RAM memory of the device, so traditional antivirus and antimalware solutions can’t detect it at all. Malicious hackers use […]

The post Using n1n3 to Simulate an Evasive Fileless Malware – Proof Of Concept appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Hackers can use Surveillance Cameras and Infrared Light to Transfer Signals to Malware

Gurubaran — Wed, 20 Sep 2017 18:56:47 +0000

Organizations use to protect their internal networks from Internet attacks by using firewalls, intrusion detection systems(IDSs) and intrusion prevention systems (IPSs). For a higher degree of protection, so-called ‘air-gap‘ isolation is used. Once the malware deployed attackers try to establish communication over the covert channel to bypass IPS, IDS, and Firewalls. Over the years various […]

The post Hackers can use Surveillance Cameras and Infrared Light to Transfer Signals to Malware appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Critical Vulnerability with OnePlus devices allows Remote Exploitation

Gurubaran — Fri, 12 May 2017 05:12:56 +0000

[jpshare]Security specialists from Alephsecurity found new insignificant vulnerabilities (CVE-2017-5948, CVE-2017-8850, CVE-2017-8851, CVE-2016-10370) on OnePlus One/X/2/3/3T OxygenOS and HydrogenOS. They vulnerabilities influence with the most recent versions (4.1.3/3.0) and beneath. This vulnerability reported to OnePlus Security on January 26/2017, by Roee Hay from Aleph Research. OnePlus group neglected to meet the standard 90-day divulgence due date […]

The post Critical Vulnerability with OnePlus devices allows Remote Exploitation appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.