Tag Archives | 0day

Apple’s Password Storing Keychain Cracked on iOS & OS X

June 18, 2015 | 6,723 views

And another password shocker, a few days after ‘cloud’ password service LastPass was pretty seriously hacked (yah if you’re using it, change your master password) critical 0-day flaws in Apple’s password storing keychain have been exposed. Which is kinda funny, as after the LastPass hack I saw some people espousing the usage of Apple’s keychain […]

Share279

Tweet131

+122

Share224

Shares 656

Tags: 0day, apple, apple 0day, apple keychain security, apple password cracking, apple password security, apple xara, apple zero day, apple-security, cross app resource access, xara, zero-day

Posted in: Apple, Cryptography, Exploits/Vulnerabilities, Password Cracking, Privacy | Add a Comment

Microsoft Zero Day OLE Vuln Being Exploited In Powerpoint

October 25, 2014 | 1,436 views

So the latest news is, don’t open any .ppt files if you aren’t entirely sure where they came from as there is a Microsoft Zero Day vulnerability in OLE (Object Linking and Embedding) handling in Microsoft Office that is currently being exploited in the wild by malicious Powerpoint slide decks. Not that anyone reading this […]

Shares 162

Tags: 0day, microsoft 0day, microsoft office exploit, microsoft security, microsoft zero day, ole exploit, powerpoint, powerpoint security, powerpoint zero day, zero-day

Posted in: Exploits/Vulnerabilities, Windows Hacking | Add a Comment

2 Different Hacker Groups Exploit The Same IE 0-Day

February 19, 2014 | 1,384 views

It hasn’t been too long since the last serious Internet Explorer 0-day, back in November it was used in drive-by attacks – Another IE 0-Day Hole Found & Used By In-Memory Drive By Attacks. And earlier last year there was an emergency patch issued – Microsoft Rushes Out ‘Fix It’ For Internet Explorer 0-day Exploit. […]

Share33

+16

Share13

Shares 52

Tags: 0day, IE, ie 0day, ie zeroday, IE-exploit, internet explorer 0day, internet explorer security, internet-explorer, microsoft, zero-day

Posted in: Exploits/Vulnerabilities, Windows Hacking | Add a Comment

Another IE 0-Day Hole Found & Used By In-Memory Drive By Attacks

November 12, 2013 | 1,634 views

So another IE 0-Day has been uncovered, and is in use in the wild for drive-by attacks on unwitting web users. I have to say, technically speaking, this attack is rather impressive – in terms of the exploit, the delivery method and the way that it runs. It retrieves the PE headers from a DLL […]

Shares 68

Tags: 0day, IE, ie hack, IE-exploit, IE-security, internet explorer security, internet explorer zero day, internet-explorer, internet-explorer-exploit, zero-day

Posted in: Exploits/Vulnerabilities, Malware, Windows Hacking | Add a Comment

Zero Day Java Vulnerability Exploited – Macs Infected With Flashback Malware

April 3, 2012 | 1,839 views

Interesting timing this one, just a couple of days ago we reported – Avira Joins The Crowd & Starts To Offer Mac Antivirus Software – and now an unpatched vulnerability in Java for Mac OS that is being exploited in the wild. The vulnerability (CVE-2012-0507) was patched in Java by Oracle back in February, but […]

Tweet50

+19

Share14

Shares 73

Tags: 0day, CVE-2012-0507, flashback, flashback malware, java vulnerability, mac exploit, mac trojan, mac vulnerability, mac-security, mac-virus, zero day java vulnerability, zero-day

Posted in: Apple, Exploits/Vulnerabilities, Malware | Add a Comment

Adobe Promises Patch For Flash 0-day Being Used In Targeted Attacks

March 15, 2011 | 5,009 views

With all the new vulnerabilities with working exploits pouring out of Pwn2Own, I can’t say I expected to see another 0-day in Adobe Flash outside of the contest. It wasn’t that long ago (back in October 2010) when there was another Critical 0-day Vulnerability In Adobe Flash Player, Reader & Acrobat and Adobe were scrambling […]

Tweet19

Share7

Shares 26

Tags: 0-day, 0day, adobe, adobe flash, adobe flash security, adobe security, flash 0-day, flash exploit, flash security, flash vulnerability, flash zero day, hacking-flash, out of band patch, zero-day

Posted in: Exploits/Vulnerabilities, General News | Add a Comment

Internet Explorer Zero-Day Accidentally Leaked To Chinese Hackers

January 4, 2011 | 9,731 views

First up, happy new year – let’s hope 2011 is an interesting year for the infosec community. Anyway today’s story is about the recently released tool cross_fuzz by Michal Zalewski and an inadvertent leak that have occurred. tl;dr version is something like this: Michal Zalewski writes a DOM fuzzer, fuzzes IE, finds flaws, Chinese dudes […]

Tweet51

Shares 51

Tags: 0day, breakaaspecial, breakcircularmemoryreferences, cross_fuzz, IE, ie 0day, ie zero day, IE-exploit, IE-vulnerability, internet explorer 0day, internet-explorer-exploit, lcamtuf, michal-zalewski, zalewski, zero-day

Posted in: Exploits/Vulnerabilities, Windows Hacking | Add a Comment

Windows Vista & Windows 7 Kernel Bug Can Bypass UAC

November 30, 2010 | 9,656 views

Now this is not the first time Windows UAC has hit the news for being flawed, back in February 2009 it was discovered that Windows 7 UAC Vulnerable – User Mode Program Can Disable User Access Control and after that in November 2009 it was demonstrated that Windows 7 UAC (User Access Control) Ineffective Against […]

Share4

Tweet23

Shares 27

Tags: 0day, bypass uac, malware, prevx, sophos, uac, user access control, win7 0day, windows 7 exploit, windows 7 zero-day, windows kernel exploit, windows kernel vulnerability, windows uac, windows vista exploit, windows-security, zero-day

Posted in: Exploits/Vulnerabilities, Windows Hacking | Add a Comment

Critical 0-day Vulnerability In Adobe Flash Player, Reader & Acrobat

October 29, 2010 | 17,134 views

Well this seems to be a frequently recurring theme, yes there is yet another critical 0day vulnerability in Adobe products – pretty much across the board this time. It was that long ago that a critical flaw in Flash put Android phones at risk. The core vulnerability exists in Flash but it’s being actively exploited […]

Share1

Tweet48

Shares 49

Tags: 0-day, 0day, adobe, adobe flash 0day, adobe flash exploit, adobe flash security, adobe reader, adobe reader 0day, adobe reader exploit, adobe reader vulnerability, adobe security, authplay, authplay exploit, flash, zeroday

Posted in: Exploits/Vulnerabilities, Malware, Windows Hacking | Add a Comment

Hackers Exploit Unpatched Firefox 0day Using Nobel Peace Prize Website

October 27, 2010 | 12,766 views

It’s been a while since Firefox has been in the news, but this is a fairly high profile case involving the Nobel Peace Prize website. It seems there is a race condition vulnerability in the latest versions of Firefox (including 3.6.11) that allows remote exploitation. In this case it was used via an iFrame on […]

Tweet24

Shares 24

Tags: 0-day, 0day, belmoo, firefox, firefox 0day, firefox exploit, firefox-security, firefox-vulnerability, liu xiaobo, malware, nobel peace prize, race condition, Web Hacking, web-security