VPNFilter Malware

VULNERABILITYThe 23rd of March 2018, Talos Intelligence published a research about a critical malware spreading across internet using SOHO internet devices like modem/router/firewall.The study shows that at this time at least 500K devices has been infected by this malware, by using well known (and different) bugs present on the firmware of the targets. Right now is not … Continue reading VPNFilter Malware

Drive to Future

Live the event organized by Sorint.SEC in collaboration with the partner SentinelOne. Guest star: Tesla!At the end of the day a test drive experience on board the Tesla Model S e Model X. Condividi su facebook Condividi su twitter Condividi su linkedin

Samba 4 Vulnerability

On March 12 th 2018, Samba developers have released a new version that corrects two critical vulnerabilities:Denial of Service Attack on external print serverAuthenticated users can change other users' password DOS ATTACK ON EXTERNAL PRINT SERVERAffected Version: >= 4.0.0CVE: CVE-2018-1050Summary: Missing null pointer checks may crash the external print server process All versions of Samba from 4.0.0 … Continue reading Samba 4 Vulnerability

4G LTE Attack

In the last few days a whitepaper concerning a research about 4G LTE protocol has been published by Purdue University and University of Iowa's researchers.The whitepaper describes a set of vulnerabilities identified on the protocol, succesfully tested both in theory and in a test environment. The document describes also vulnerabilities detected and the exploiting method. Actually … Continue reading 4G LTE Attack

SGX Spectre

On January 3, 2018 3 new vulnerabilities have been identified, named "Meltdown" and "Spectre", with the following CVE:Variant 1: bounds check bypass (CVE-2017-5753) - SpectreVariant 2: branch target injection (CVE-2017-5715) - SpectreVariant 3: rogue data cache load (CVE-2017-5754) – Meltdown In the last days a reserchears group from Ohio State University have pulished a new research about these … Continue reading SGX Spectre

Meltdown & Spectre

On 3td Janury 2018, 3 new vulnerabilities have been identified, named "Meltdown" & "Spectre", with the following CVE:Variant 1: bounds check bypass (CVE-2017-2753) - SpectreVariant 2: branch target injection (CVE-2017-5715) - SpectreVariant 3: rogue data cache load (CVE-2017-5754) - Meltdown Following is a link to official website where it's possible to find every information and vulnerability details:Spectre … Continue reading Meltdown & Spectre

PetrWrap: A new Ransomware attack

Today, 27 June2017, a massive Ransomware attack, PetrWrap variant of Ransomware/Petya, has been identified world wide. Firsts data revelaed that threat has been distributed in particular in Ukraine, Russia, Poland, Italy and Germany and some sources confirm also an infection in the USA, England, France, India and Spain.  Technical AnalysisPetrWrap is part of Malware Ransomware macro-family, threats able to crypt users' and organizations' … Continue reading PetrWrap: A new Ransomware attack