Browsing tag
A couple of days ago, vulnerability testing specialists reported the detection of CVE-2019-11043, a dangerous remote code execution vulnerability that can affect any PHP 7 website that uses PHP-FPM. The use of this feature is very common on websites with NGINX, which makes them especially vulnerable to the exploitation of this flaw. It is important […]
Newly discovered cryptocurrency mining malware called MasssMiner using various powerful exploits to compromise web servers to mine monero Cryptocurrency around the world. Its act as a worn that has capable of self-replicating through a number of different exploits also perform brute-force attack to compromise and access the Microsoft SQL Servers. It using various hacking tools and […]
Bug patched in March is still being exploited to take full control of servers. Attackers are mass-exploiting a recently fixed vulnerability in the Drupal content management system that allows them to take complete control of powerful website servers, researchers from multiple security companies are warning. At least three different attack groups are exploiting “Drupalgeddon2,” the […]
In part one of our web shell series we analyzed recent trends, code bases, and explored defensive mitigations. In part two we investigate a new web shell created by Chinese-speaking actors. On March 26, 2016, Recorded Future’s natural language processing (NLP) engine produced an alert for Cknife. Recorded Future alert showing Cknife reference. Background A […]