attack

Home / attack

DDoS Attack on Dyn DNS and Level3 Outages

Twitter, Reddit, Spotify, PSN, XBox, Netflix, Github, PayPal and bunch of other websites were offline earlier today. That’s because someone conducted a massive distributed denial of service (DDoS) attack on the Dyn DNS, a world renowned Domain Name Servers (DNS) service provider. You can read the most recent status messages at DynDNS. So far there [...]

By | October 21st, 2016|Attacks, Security|

CVE-2016-6415 IKEv1 Information Disclosure Vulnerability in Multiple Cisco Products

On Friday, Cisco published a high level security advisory CVE-2016-6415 for an IKEv1 Information Disclosure Vulnerability that affects multiple Cisco products including: Cisco IOS, Cisco IOS XR, and Cisco IOS XE. The vulnerability is in the IKEv1 packet processing code which could allow an unauthenticated remote attacker to retrieve memory contents, which could lead to [...]

By | September 19th, 2016|Attacks, Cisco, Security, System Administration|

Mozilla Plans Firefox Update Tuesday For MitM Attacks

Mozilla officials have announced that they plan to push a security update for their Firefox browser on Tuesday, September 20, 2016. This patch fixes the same cross-platform, malicious code-execution vulnerability patched Friday in the Tor browser. The Attack The vulnerability allows an attacker who has a man-in-the-middle position and is able to obtain a forged [...]

By | September 16th, 2016|Attacks, Security|

Attack Leverages Windows Safe Mode

Researchers at CyberArk have published a proof-of-concept attack that leverages Windows Safe Mode to expose credentials and gain further access to a PC or Windows Servers. They first discovered this attack back in February and even reported it to the Microsoft Security Response Center who said it was not a valid vulnerability. An attacker would [...]

By | September 15th, 2016|Attacks, Security|

JAMF Could Allow For MITM Attack

JAMF Software has a number of solutions for fleet management of Apple products, including their own Apple MDM. The issue discussed in this post applies to the self-hosted JAMF Casper Suite and deploying a JSS. This suite of tools includes software that will help track inventory, manage devices, implement security policies, and deployment of software [...]

By | September 12th, 2016|Attacks, Security|
Load More Posts