Author Topic: Technical  (Read 843532 times)

0 Members and 2 Guests are viewing this topic.

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 64794
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Technical
« Reply #2880 on: March 06, 2020, 06:47:21 AM »
Ghostcat - A high-risk file read/include vulnerability in Tomcat
https://www.chaitin.cn/en/ghostcat
Win 8.1 [x64] - Avast PremSec 20.4.2410.BUC [UI.522] - CC 5.65 - EEK - FF ESR 68.9 [NS/AOS/uBO/PB] - TB 68.9 - ASB/ACP/ASL.BUC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 64794
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Technical
« Reply #2881 on: March 07, 2020, 07:35:52 AM »
Emoji to Zero-Day: Latin Homoglyphs in Domains and Subdomains
https://www.soluble.ai/blog/public-disclosure-emoji-to-zero-day
Win 8.1 [x64] - Avast PremSec 20.4.2410.BUC [UI.522] - CC 5.65 - EEK - FF ESR 68.9 [NS/AOS/uBO/PB] - TB 68.9 - ASB/ACP/ASL.BUC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 64794
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Technical
« Reply #2882 on: March 08, 2020, 10:21:47 AM »
The CIA Hacking Group (APT-C-39) Conducts Cyber-Espionage Operation on China's Critical Industries for 11 Years
http://blogs.360.cn/post/APT-C-39_CIA_EN.html
Win 8.1 [x64] - Avast PremSec 20.4.2410.BUC [UI.522] - CC 5.65 - EEK - FF ESR 68.9 [NS/AOS/uBO/PB] - TB 68.9 - ASB/ACP/ASL.BUC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Online DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 83068
  • No support PMs thanks
Re: Technical
« Reply #2883 on: March 08, 2020, 11:18:44 AM »
The CIA Hacking Group (APT-C-39) Conducts Cyber-Espionage Operation on China's Critical Industries for 11 Years
http://blogs.360.cn/post/APT-C-39_CIA_EN.html

I don't know how much confidence I would have in this information coming out of China.  There have been many instances of the reverse being reported.
WinXP ProSP3/ Core2Duo E8300/ 4GB Ram/ avast! free 18.5.2342/ Firefox ESR, uBlock Origin, uMatrix/ MailWasher Pro7.11.0/ DropMyRights/ WinPatrol+/ Drive Image 7.1/ SnagIt 10.0/ avast! mobile security
Windows 10 Home 1909 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 20.4.2410 (build 20.4.5312.561) UI-1.0.522/ WinPatrol+/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 43586
  • 60 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: Technical
« Reply #2884 on: March 08, 2020, 01:36:03 PM »
The CIA Hacking Group (APT-C-39) Conducts Cyber-Espionage Operation on China's Critical Industries for 11 Years
http://blogs.360.cn/post/APT-C-39_CIA_EN.html

I don't know how much confidence I would have in this information coming out of China.  There have been many instances of the reverse being reported.
When it comes to government spying, I would always suspect that the message would be slanted. It all depends on who's government is doing the spying.
Free avast! Security Seminar: http://bit.ly/2N1eaR2  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 10 Pro v1909 64bit, 24 Gig Ram, 1TB SSD, AvastOmni 20.3.xxx, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 64794
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Technical
« Reply #2885 on: March 08, 2020, 02:31:46 PM »
The CIA Hacking Group (APT-C-39) Conducts Cyber-Espionage Operation on China's Critical Industries for 11 Years
http://blogs.360.cn/post/APT-C-39_CIA_EN.html
I don't know how much confidence I would have in this information coming out of China.  There have been many instances of the reverse being reported.
When it comes to government spying, I would always suspect that the message would be slanted. It all depends on who's government is doing the spying.
Let's put it this way, the efforts are certainly bidirectional.
Win 8.1 [x64] - Avast PremSec 20.4.2410.BUC [UI.522] - CC 5.65 - EEK - FF ESR 68.9 [NS/AOS/uBO/PB] - TB 68.9 - ASB/ACP/ASL.BUC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 64794
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Technical
« Reply #2886 on: March 09, 2020, 10:20:53 AM »
Mailto Ransomware under the skin of explorer.exe
https://blogs.quickheal.com/mailto-ransomware-hiding-under-explorer-exe/
Win 8.1 [x64] - Avast PremSec 20.4.2410.BUC [UI.522] - CC 5.65 - EEK - FF ESR 68.9 [NS/AOS/uBO/PB] - TB 68.9 - ASB/ACP/ASL.BUC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 64794
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Technical
« Reply #2887 on: March 10, 2020, 10:02:20 AM »
670+ Subdomains of Microsoft are Vulnerable to Takeover (Lead to Account Takeover)
https://vullnerability.com/blog/microsoft-subdomain-account-takeover
Win 8.1 [x64] - Avast PremSec 20.4.2410.BUC [UI.522] - CC 5.65 - EEK - FF ESR 68.9 [NS/AOS/uBO/PB] - TB 68.9 - ASB/ACP/ASL.BUC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 64794
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Technical
« Reply #2888 on: March 11, 2020, 09:15:37 AM »
Win 8.1 [x64] - Avast PremSec 20.4.2410.BUC [UI.522] - CC 5.65 - EEK - FF ESR 68.9 [NS/AOS/uBO/PB] - TB 68.9 - ASB/ACP/ASL.BUC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 64794
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Technical
« Reply #2889 on: March 11, 2020, 01:41:05 PM »
New action to disrupt world’s largest online criminal network
https://blogs.microsoft.com/on-the-issues/2020/03/10/necurs-botnet-cyber-crime-disrupt/
Win 8.1 [x64] - Avast PremSec 20.4.2410.BUC [UI.522] - CC 5.65 - EEK - FF ESR 68.9 [NS/AOS/uBO/PB] - TB 68.9 - ASB/ACP/ASL.BUC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 64794
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Technical
« Reply #2890 on: March 12, 2020, 08:14:30 AM »
Win 8.1 [x64] - Avast PremSec 20.4.2410.BUC [UI.522] - CC 5.65 - EEK - FF ESR 68.9 [NS/AOS/uBO/PB] - TB 68.9 - ASB/ACP/ASL.BUC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 64794
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Technical
« Reply #2891 on: March 13, 2020, 07:53:07 AM »
Win 8.1 [x64] - Avast PremSec 20.4.2410.BUC [UI.522] - CC 5.65 - EEK - FF ESR 68.9 [NS/AOS/uBO/PB] - TB 68.9 - ASB/ACP/ASL.BUC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 64794
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Technical
« Reply #2892 on: March 14, 2020, 09:08:27 AM »
Mokes and Buerak distributed under the guise of security certificates
https://securelist.com/mokes-and-buerak-distributed-under-the-guise-of-security-certificates/96324/
Win 8.1 [x64] - Avast PremSec 20.4.2410.BUC [UI.522] - CC 5.65 - EEK - FF ESR 68.9 [NS/AOS/uBO/PB] - TB 68.9 - ASB/ACP/ASL.BUC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 64794
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Technical
« Reply #2893 on: March 15, 2020, 09:44:30 AM »
Win 8.1 [x64] - Avast PremSec 20.4.2410.BUC [UI.522] - CC 5.65 - EEK - FF ESR 68.9 [NS/AOS/uBO/PB] - TB 68.9 - ASB/ACP/ASL.BUC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 64794
    • >>>  Avast Forum - Deutschsprachiger Bereich  <<<
Re: Technical
« Reply #2894 on: March 16, 2020, 07:21:32 AM »
LVI - Hijacking Transient Execution with Load Value Injection
https://lviattack.eu/
https://lviattack.eu/lvi.pdf
Win 8.1 [x64] - Avast PremSec 20.4.2410.BUC [UI.522] - CC 5.65 - EEK - FF ESR 68.9 [NS/AOS/uBO/PB] - TB 68.9 - ASB/ACP/ASL.BUC
Deutschsprachiger Bereich -> Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0