SMBLoris is a remote, unauthenticated application-level denial of service (DoS) attack against Microsoft Windows operating systems. It is caused by a very old memory-handling bug in the Server Message Block (SMB) network protocol implementation. The vulnerability lies in the way SMB packets are processed and memory is allocated. It was discovered by two RiskSense security researchers — Sean […]

Read More →

In the first week of April 2017, an unknown hacking group called Shadow Brokers leaked an exploitation framework referred as the FuzzBunch, from the Equation Group (one of the most sophisticated attack groups in the world and widely suspected of being tied to the United States National Security Agency (NSA)). This framework consisted of several unauthenticated […]

Read More →

A 7-year-old Critical Remote Code Execution vulnerability has been found in Samba networking software that could allow a remote attacker to take control of an affected Linux and Unix machines. Samba is the defacto standard for providing Windows-based file and print services on Unix and Linux systems. Many systems run Samba and it is usually […]

Read More →

Image Credit: Cybellum A 15-year-old Microsoft Windows Zero-Day vulnerability, dubbed as DoubleAgent, has been discovered. It could allow anyone to take full control of the system. It is a new code injection technique that works on all the versions of Microsoft Windows Operating Systems, even on the latest release of Windows 10. It can exploit […]

Read More →

Microsoft March 2017 Patch Tuesday brings 18 Security bulletins addressing 139 security vulnerabilities in addition to 7 vulnerabilities for Adobe Flash Player. Nine bulletins are rated as Critical, nine are rated as Important. The Nine Critical bulletins are as follows: MS17-006 for Internet Explorer browser covers 12 CVE’s MS17-007 for Microsoft Edge covers 32 CVE’s MS17-008 […]

Read More →

Adobe has released a critical security patch for Adobe Flash Player. The patch addresses seven (7) flaws including multiple code execution vulnerabilities. These flaws allow attackers to take complete control of the systems. The Linux and Mac operating systems are affected apart from Windows. Here are the details of the 7 vulnerabilities patched in APSB17-07 update: A […]

Read More →