Emotet Outbreak, Back in action – Hidden In XML File

Emotet Outbreak: The Emotet banking trojan was first identified in 2014. Emotet was originally designed as a banking malware that attempted to sneak onto your computer and steal sensitive and private information.Later versions of the software saw the addition of spamming and malware delivery services—including other banking Trojans. What is Emotet? Emotet is a Trojan …

Emotet Outbreak, Back in action – Hidden In XML File Read More »

What is malware and its type and how to identify and remove it?

Malware is any software intentionally designed to cause damage to a computer, server, client, or computer network. Malware does the damage after it is implanted or introduced in some way into a target’s computer and can take the form of executable code, scripts, active content, and other software. Malware can be categorized in different types …

What is malware and its type and how to identify and remove it? Read More »

What is term OSINT tools?

Open-source intelligence (OSINT) is data collected from publicly available sources to be used in an intelligence context. In the intelligence community, the term “open” refers to overt, publicly available sources (as opposed to covert or clandestine sources). It is one of the key aspects in understanding the cyber-security that rules the Internet these days. The term OSINT …

What is term OSINT tools? Read More »

Microsoft IIS Remote Code Execution Vulnerability

CVE-2017-7269 Affected Product:  IIS 6.0 for Microsoft Windows Server 2003 R2 This vulnerability was discovered by Zhiniang Peng and Chen Wu. (Information Security Lab & School of Computer Science & Engineering, South China University of Technology Guangzhou), China around July or August 2016. Description: Buffer overflow in the ScStoragePathFromUrl function in the WebDAV service in …

Microsoft IIS Remote Code Execution Vulnerability Read More »

CVE-ID : 2019-0686 Elevated Privileges Exploit

Technical findings: CVE-2019-0686 Relatable CVE-2019-0724 Affected Prdoucts:Microsoft Exchange Server 2010 SP3 UR26Microsoft Exchange Server 2013 CU22Microsoft Exchange Server 2016 CU12Microsoft Exchange Server 2019 CU1 Description: -Microsoft Exchange Server is affected by a elevation of privilege vulnerabilities. An attacker who successfully exploits the vulnerability may impersonate any other user of the Exchange server.-To exploit this vulnerability, …

CVE-ID : 2019-0686 Elevated Privileges Exploit Read More »