On this page, you can find my blog talking about interesting recent events, vulnerabilities, and exploits as well as walkthroughs of HackTheBox and TryHackMe machines. Make sure to check out my LinkedIn page, where I will post some additional content or re-posts with interesting and insightful information
Recent Posts
- Zero-Day Bug in MOVEit Massively Exploited
A critical zero-day vulnerability in Progress Software’s MOVEit Transfer app has been actively exploited by a threat group with likely links to financially motivated organizations. The exploit allows unauthorized access to the application’s database through an SQL injection flaw, enabling attackers to steal sensitive data uploaded by users. The attacks began prior to the vulnerability being disclosed, highlighting the urgency to patch the flaw. Promptly applying the patches and reviewing systems for signs of compromise is crucial to prevent data breaches and potential future ransomware attacks on affected organizations. … Continue readingZero-Day Bug in MOVEit Massively Exploited - Offensive Security Certified Professional (OSCP) Review
On May 28th, after three tries, I finally passed my Offensive Security Certified Professional (OSCP) certification. So in this post, I will go over my experience, how I prepared and could pass the exam. This story is not going to be one of “passed on the first try and here is how”, but rather how you can do anything in this world with persistence, hard work, and constant improvement of yourself. … Continue readingOffensive Security Certified Professional (OSCP) Review - Critical GitLab Vulnerability CVE-2023-2825
A recently discovered critical security flaw, identified as CVE-2023-2825, has exposed vulnerabilities within GitLab, a widely used web-based Git repository for developers. The flaw allows unauthenticated attackers to gain access to arbitrary files on the system, potentially compromising sensitive data such as user tokens, files, and credentials. Promptly reported during a bug bounty campaign by security researcher “pwnie,” this vulnerability has been addressed with the release of a patch, version 16.0.1. Cybersecurity professionals are strongly advised to update their installations immediately and maintain vigilance against Advanced Persistent Threats (APTs), recognizing the importance of meticulous software maintenance in securing Git repositories. … Continue readingCritical GitLab Vulnerability CVE-2023-2825 - Barracuda Email Security Appliances Compromise
Barracuda, a leading provider of email and network security solutions, has released software patches in response to a zero-day vulnerability discovered on May 19. This vulnerability, identified as CVE-2023-2868, exploits the use of .tar files sent via email and allows attackers to remotely execute code with the privileges of the Email Security Gateway (ESG) software. While the patches effectively address the vulnerability in ESG, Barracuda advises additional analysis of customer environments. The company has promptly notified clients and initiated a comprehensive assessment to identify any potential additional vulnerabilities related to the zero-day exploit. … Continue readingBarracuda Email Security Appliances Compromise - Unveiling WINTAPIX: The Evasive Malware Taking System Privileges by Storm
Fortinet’s malware researchers have unveiled a powerful and evasive new malware called WINTAPIX. This sophisticated threat leverages a position-independent shellcode, Donut, to execute executables from memory and gain elevated system privileges. Operating within the kernel, it bypasses local security mechanisms, making it a critical component of multi-staged attacks. By establishing persistence in the Windows Registry and acting as a backdoor and proxy, WINTAPIX poses a significant risk to networks. Safeguarding against this threat requires implementing Driver Signature Enforcement to prevent unauthorized driver installations. … Continue readingUnveiling WINTAPIX: The Evasive Malware Taking System Privileges by Storm
Categories
- New Exploits (7)
- Recent Cyberscurity Events (2)
- Reviews (2)