zero-day – Page 3

Malware

Apr 21, 2018

APT Cyber Attack Using Unpatched Internet Explorer Zero-Day to Hack Windows Computers

Cyber Criminals behind the APT attack using an Internet Explorer Zero-Day vulnerability to compromise the windows based computers. An APT hacking group using MS Office document attack using the browser 0day vulnerability exploit this vulnerability on victims PC. Cyber Criminals using variously advanced techniques to compromise the victims and execute the backdoor into their network and zero-day vulnerabilities […]

root

Vulnerabilities

Feb 20, 2018

Google Disclosed a Microsoft Edge Zero-day Bug Before Patch is Released – 90-day Deadline Crossed

Google Revealed a Microsoft Edge Zero-day Bug in public since Microsoft misses the 90-day deadline as well as an additional 14-day grace period. Google built a full-time dedicated Security team, known as Project Zero, that aims to prevent targeted attacks by reporting bugs to software vendors and filing them in an external database. A disclosed bug was […]

root

Vulnerabilities

Oct 29, 2017

All Versions of MS Office Affected with Critical Zero-day Vulnerability Allows Attackers Take Full Control of your System

A Critical MS Office Zero-day Remote Code Execution Vulnerability discovered in Microsoft Office that could allow attacker to take complete control of infected Windows Operating System and this vulnerability has been affected with all version of Microsoft Office. This Zero-day vulnerability discovered in Office Open XML parser where Microsoft Office software fails to properly handle objects […]

root

Hacked

Sep 14, 2017

Hack The Tor Browser For 0-Days And Get $1 Million Bug Bounty From Zerodium

Finding some zero-day exploits for Tor Browser on Windows and Tails (a Linux distribution with integrated Tor and other privacy features) can make you richer by up to $1 Million. That’s because of a bug bounty hosted by Zerdioum – the buys zero-day bugs and sells it to government agencies. In their announcement post, Zerodiam notes that […]

root

News

Aug 17, 2017

Two Critical Zero-Day Flaws Came Out In Foxit PDF Reader

Are you using Foxit PDF Reader? If so, then you need to look back. Security researchers discovered two critical security vulnerabilities Zero Day Foxit pdf Reader software that could allow malicious people to run arbitrary code on a target computer unless it is configured to open secure file reads. The first vulnerability (CVE-2.017-10.951) is an […]

root

Malware

Aug 16, 2017

PowerPoint Slide Show Infected by New Malware that Exploiting Zero-day RCE Vulnerability

New Malware that abuses MS Power point slide show by Exploiting the CVE-2017-0199 (Zero-day remote code execution vulnerability) flow Exists in Windows OLE (Object Linking and Embedding). Malicious Rich Text File (RTF) documents used for Exploit this Vulnerability by using Microsoft Office interface to Deliver this Malware. This Malware used by the same Method of DRIDEX […]

root

Vulnerabilities

Jun 28, 2017

Zero-day Skype flaw causes crashes, remote code execution

The critical flaw doesn’t require any user interaction, either. A critical flaw in Microsoft’s Skype web messaging and call service allows attackers to crash systems and execute code. This week, Vulnerability Lab security researcher Benjamin Kunz Mejri revealed the previously unknown vulnerability in a public security disclosure, saying the stack buffer overflow flaw, CVE-2017-9948, impacts […]

root

Hacked

May 31, 2017

Hackers Behind NSA Data Leak Launch “$21,000 Zero-Day Dump” Subscription For Whitehats, Govts.

Shadow Brokers, the infamous hacker group that indirectly fueled the WannaCry Ransomeware, has arrived with a new marketing strategy for the bunch of exploits related to NSA and probably other organizations as well. In the past, you already read on Fossbytes that Shadow Brokers would come up with a subscription-based plan to reveal more 0-day bugs. The […]

root

Hacked

Apr 10, 2017

Unpatched For Years, MS Word Zero-Day Attacks Even If Your Windows Is Fully Updated

Short Bytes: An unpatched 0-day bug affects all the versions of MS Office and Windows, including Office 2016 running on Windows 10. An attacker can make a user download malicious word file as an email attachment, execute codes, and install malware on victim’s system. Microsoft is currently working on an official fix for the vulnerability. Researchers […]

root

Vulnerabilities

Apr 09, 2017

New Zero Day Attack Discovered in MS Word Document Uses to Hack your PC – Still Not yet Patched

[jpshare] MS word Document is on of the main Vector to easily spread the Macro viruses to the Victims. an undisclosed vulnerability has been Discovered in Microsoft Office RTF( Rich Text Format) Document. FireEye Security Researchers Said, This vulnerability allows a malicious actor to execute a Visual Basic script when the user opens a document containing an embedded exploit.This vulnerability found […]

root

Vulnerabilities

Feb 02, 2017

WordPress Team Secretly Fixed A Zero-Day Critical Content Injection Vulnerability

The WordPress security team revealed that they’ve secretly fixed a zero-day vulnerability in the WordPress CMS REST API.The vulnerability in this case would allow for content injection as well as privilege escalation . This vulnerability allows an unauthenticated user to “modify the content of any post or page within a WordPress site” Sucuri, the company […]

root

Hacked

Jun 01, 2016

A Hacker Is Selling Dangerous Windows Exploit, Making All Versions Of OS Hackable

Short Bytes: A hacker is selling a dangerous zero day vulnerability on a Russian cybercrime website. This exploit is said to be affecting more than 1.5 billion Windows users as it works on all version of Windows. The hacker wishes to sell the complete source code and demo of the exploit to any person who pays […]

root

Hacked

Nov 02, 2015

Latest Adobe Flash Zero-Day Bug Already Part of Angler and Nuclear Exploit Kits

Short Bytes: Adobe Flash Player continues to remain the favorite target of the cyber attackers. The recent zero-day exploits that were earlier used in targeted attacks, are now a part of some of the most popular exploit kits making the dangers more obvious. The latest Adobe Flash zero-day exploit has found its place in some […]

root