Ax Sharma
Author Bio
Ax Sharma is a Security Researcher, Engineer, and Tech Columnist. His works and expert analyses have frequently been featured by leading media outlets like Fortune, The Register, TechRepublic, CIO, etc. Ax's expertise lies in vulnerability research, reverse engineering, software development, and web app security. He's an active community member of the OWASP Foundation and the British Association of Journalists (BAJ).
Send any tips via email or Twitter DM.
-
.jpg)
GitHub-hosted malware calculates Cobalt Strike payload from Imgur pic
A new strand of malware uses Word files with macros to download a PowerShell script from GitHub. This PowerShell script further downloads a legitimate image file from image hosting service Imgur to decode a Cobalt Strike script.
- December 28, 2020
- 06:57 AM
-
0
-
Gitpaste-12 worm botnet returns with 30+ vulnerability exploits
Recently discovered Gitpaste-12 worm that spreads via GitHub and also hosts malicious payload on Pastebin, has returned with over 30 vulnerability exploits, according to researchers at Juniper Labs.
- December 19, 2020
- 01:01 PM
-
0
-
Bouncy Castle crypto authentication bypass vulnerability revealed
A severe authentication bypass vulnerability has been reported in Bouncy Castle, a popular open-source cryptography library. When exploited, the vulnerability (CVE-2020-28052) can allow an attacker to gain access to user and administrator accounts due to a cryptographic weakness in the manner passwords are checked.
- December 17, 2020
- 03:26 PM
-
0
-
WordPress plugin with 5 million installs has a critical vulnerability
The team behind a popular WordPress plugin has disclosed a critical file upload vulnerability and issued a patch. The vulnerable plugin, Contact Form 7, has over 5 million active installations making this upgrade a necessity for WordPress site owners out there.
- December 17, 2020
- 10:52 AM
-
0
-
Critical Golang XML parser bugs can cause SAML authentication bypass
This week, Mattermost, in coordination with Golang has disclosed 3 critical vulnerabilities within Go language's XML parser. If exploited, these vulnerabilities, also impacting multiple Go-based SAML implementations, can lead to a complete bypass of SAML authentication which powers prominent web applications today.
- December 14, 2020
- 08:23 PM
-
0
-
Samsung fixes critical Android bugs in December 2020 updates
This week Samsung has started rolling out Android's December security updates to mobile devices to patch critical security vulnerabilities in the operating system. This comes after Android had published their December 2020 security updates bulletin, which includes patches for critical bugs.
- December 11, 2020
- 01:08 PM
-
0
-
DHS-CISA urges admins to patch OpenSSL DoS vulnerability
This week OpenSSL has released fixes for a high severity Denial of Service (DoS) vulnerability, CVE-2020-1971. U.S. DHS Cybersecurity and Infrastructure Security Agency (CISA) has warned admins to upgrade their vulnerable OpenSSL instances immediately.
- December 09, 2020
- 12:25 PM
-
0
-
Monolith mystery solved: Artist claims he made 'alien' structures
An artist has claimed responsibility for the mysterious monoliths that have been appearing across the world, including Utah, California, and Romania. The pseudonymous artist has these monumental structures for sale on their website for $45,000.
- December 04, 2020
- 03:24 PM
-
0
-
HMRC phishing scam abuses mail service to bypass spam filters
Threat actors are exploiting legitimate SendGrid mailing service to send HMRC phishing emails that bypass spam filters.
- December 02, 2020
- 05:10 PM
-
0
-
CBS Last.fm fixes admin password leakage via Symfony profiler
This week, British music streaming service, Last.fm has fixed a credentials leak on their systems. The leak occurred due to a misconfigured Symfony profiler, exposing admin username and password.
- November 27, 2020
- 09:43 AM
-
1
-
Passwords exposed for almost 50,000 vulnerable Fortinet VPNs
A hacker has now leaked the credentials of almost 50,000 Fortinet SSL VPNs vulnerable to CVE-2018-13379. Exploits for these VPNs had been posted over the weekend on hacker forums, as reported by BleepingComputer.
- November 25, 2020
- 08:16 AM
-
0
-
TrickBot malware uses obfuscated Windows batch script to evade detection
This week researchers analyze BAT script obfuscation techniques used by Trickbot's 100 to evade antivirus detection.
- November 24, 2020
- 09:00 AM
-
0
-
Hacker posts exploits for over 49,000 vulnerable Fortinet VPNs
Thousands of domains, including those belonging to high street banks and government organizations are vulnerable to a critical Path Traversal flaw in Fortinet SSL VPN.
- November 22, 2020
- 11:40 AM
-
0
-
Joe Biden's 'Vote Joe' website defaced by Turkish Hackers
The Vote Joe site set up by Biden Presidential campaign was hacked this week and defaced by a Turkish group called RootAyyıldız. The defacement appears to have lasted for over 24 hours.
- November 21, 2020
- 09:22 AM
-
1
-
Coil payments platform leaks user emails in 'Privacy Policy' update
Micropayments platform Coil, used by content creators and popular blogs accidentally exposed the email addresses of some users in a mass email announcement.
- November 17, 2020
- 09:11 AM
-
1
-min.jpg)
Sponsor Posts
VMDR Vulnerability Management, Detection and Response — Discover, assess, prioritize, and patch critical vulnerabilities in real time and across your global hybrid-IT landscape all from a single solution.
JSCM's Intelligent & Flexible Cyber Security — Helping organizations assess risk and solve complex CyberSecurity problems for more than 20 years.