-
Intezer - EvilGnome: Rare Malware Spying on Desktop Users
July 17, 2019 at 17:52:43 GMT+2 - permalink -Tiens tiens tiens, (enfin?) un malware qui cible les Desktop sous linux (Gnome).
- https://www.intezer.com/blog-evilgnome-rare-malware-spying-on-linux-desktop-users/
-
Hackers Can Manipulate Media Files You Receive Via WhatsApp and Telegram
July 16, 2019 at 13:40:26 GMT+2 - permalink -Donc, ne faites confiance à personne :) même sur WhatsApp (évidement ...) ou Telegram !
- https://thehackernews.com/2019/07/media-files-whatsapp-telegram.html
-
CVE-2019-11360: BufferOverflow in iptables-restore v1.8.2 | Sebastian Neef - 0day.work
July 12, 2019 at 17:52:10 GMT+2 - permalink -intéressant, j’étais passé à coté de cette faille iptables(-restore).
- https://0day.work/cve-2019-11360-bufferoverflow-in-iptables-restore-v1-8-2/
-
Full Disclosure: Mozilla's MSI installers: FUBAR (that's spelled "fucked-up beyond all repair")
July 10, 2019 at 09:42:48 GMT+2 - permalink -Hum, il est pas tendre avec Mozilla et son .msi de firefox.. (à raison ?)
- https://seclists.org/fulldisclosure/2019/Jul/12
-
VMSA-2019-0009
June 6, 2019 at 13:30:59 GMT+2 - permalink -Hum, CVE-2019-5525 : use-after-free or Guest-To-Host (on ALSA enabled backend)
- https://www.vmware.com/security/advisories/VMSA-2019-0009.html
-
-
CVE - CVE-2019-11815
May 15, 2019 at 07:54:40 GMT+2 - permalink -Bon ben... On paaaatch (si dispo - _-)
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11815
-
-
CVE - CVE-2019-7690
May 13, 2019 at 21:28:01 GMT+2 - permalink -Ah ben ça donne envie d'utiliser l'outil tiens...
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7690
-
DSA-2019-028: Dell EMC iDRAC Multiple Vulnerabilities | Dell France
April 27, 2019 at 00:57:58 GMT+2 - permalink -ah ben tiens, une petite faille du coté de l'iDRAC chez Dell.
- https://www.dell.com/support/article/fr/fr/frdhs1/sln316930/dsa-2019-028-dell-emc-idrac-multiple-vulnerabilities?lang=en
-
Gaza Cybergang Group1, operation SneakyPastes | Securelist
April 10, 2019 at 08:24:02 GMT+2 - permalink -first time it happens, this article, on my RSS feed throw me an antivirus blocks for Win32/TrojanDownloader.AutoHK ... but not the article itself °o°
- https://securelist.com/gaza-cybergang-group1-operation-sneakypastes/90068/
-
Unpatched Flaw in Xiaomi's Built-in Browser App Lets Hackers Spoof URLs
April 5, 2019 at 17:10:33 GMT+2 - permalink -"the issue only affects the international variants of both the web browsers, though the domestic versions, distributed with Xiaomi smartphones in China, do not contain this vulnerability." hum
- https://thehackernews.com/2019/04/xiaomi-browser-vulnerability.html
-
New Apache Web Server Bug Threatens Security of Shared Web Hosts
April 3, 2019 at 09:10:23 GMT+2 - permalink -Pas dispo sur debian encore, mais si possible, on paaaaatch apache !
- https://thehackernews.com/2019/04/apache-web-server-security.html
-
VMSA-2019-0005
March 29, 2019 at 10:54:51 GMT+1 - permalink -miam, du guest-to-host chez vmware
- https://www.vmware.com/security/advisories/VMSA-2019-0005.html
-
Operation ShadowHammer | Securelist
March 25, 2019 at 16:48:20 GMT+1 - permalink -Si vous avez du matos ASUS, vérifiez le d'un peu plus près ... l'application ASUS Update, signée, envoyée depuis les serveurs d'ASUS ... pdt 5 mois !
- https://securelist.com/operation-shadowhammer/89992/
-
Hackers Take Down Safari, VMware and Oracle at Pwn2Own | Threatpost
March 22, 2019 at 12:58:30 GMT+1 - permalink -Voilà voilà, on attend les patchs maintenant :)
- https://threatpost.com/hackers-take-down-safari-vmware-and-oracle-at-pwn2own/143042/
-
Ghidra quickstart & tutorial: Solving a simple crackme - YouTube
March 20, 2019 at 18:02:12 GMT+1 - permalink -Superbe (et accessible) introduction à Ghidra en vidéo, l'outil de reverse engineering de la NSA
- https://www.youtube.com/watch?v=fTGTnrgjuGA
-
Libssh Releases Update to Patch 9 New Security Vulnerabilities
March 19, 2019 at 22:28:08 GMT+1 - permalink -on paaaaatch libssh2 ... (et pas libssh qui n'est pas concerné ... merci à l'auteur pour la confusion -_-)
- https://thehackernews.com/2019/03/libssh2-vulnerabilities.html
-
Download PuTTY: latest release (0.71)
March 19, 2019 at 21:36:35 GMT+1 - permalink -La dernière version stable de Putty (0.71) est dispo avec des corrections de sécurité. On se met à jour !!
PS: J'ai contacté l'auteur de Kitty (un "fork" aux stéroid), il estime qu'avec la nouvelle version de putty, il doit re-faire 80% de re-écriture !- https://www.chiark.greenend.org.uk/~sgtatham/putty/latest.html
-
Zero-Days in Counter-Strike Client Used to Build Major Botnet
March 18, 2019 at 11:30:28 GMT+1 - permalink -Ah les salops, des malwares dans CS1.6 (oui parfaitement, ca se joue encore !)
- https://threatpost.com/zero-days-counter-strike-botnet/142823/