CVE-2019-16759

Frank Crast

Threat actors are launching web shell attacks

Configuration Management, Cybersecurity Attacks, Vulnerabilities & Exploits, Zero-days / Frank Crast / February 5, 2020 / CVE-2019-0604, CVE-2019-16759, DART, GALLIUM, KRYPTON, Microsoft, Web server, web shell, ZINC

Security experts from Microsoft have revealed threat actors are increasingly using web shell attacks in their campaigns. Microsoft’s investigation revealed actors such as ZINC, KRYPTON, and GALLIUM, exploit known vulnerabilities to implant web shells on internet-facing web servers.

Threat actors are launching web shell attacks Read More »

Frank Crast

Hacker publishes vBulletin zero-day exploit

Cybersecurity Attacks, Vulnerabilities & Exploits, Zero-days / Frank Crast / September 25, 2019 / CVE-2019-16759, Exploit, Palo Alto Networks, POC, Social Media, Unit 42, vBulletin, Vulnerabilities

An anonymous hacker posted exploit code for a remote code execution vulnerability in version 5 of the popular vBulletin forum software, used on over 100,000 social websites.

Hacker publishes vBulletin zero-day exploit Read More »