Wachtwoord beheer

Het is echt tijd om het serieus te gaan nemen…: hier het originele artikel With 1.4 Billion Stolen Log-Ins on the Dark Web, it’s Time to Take Password Management Seriously Last week you may have seen some worrying news: researchers probing the darkest corners of the underground web found a secret trove containing 1.4 billion breached usernames and… Read More »

Sonos en Bose…ook dat nog…

Hackers Can Rickroll Thousands of Sonos and Bose Speakers Over the Internet… klik voor de originele link. Perhaps you’ve been hearing strange sounds in your home—ghostly creaks and moans, random Rick Astley tunes, Alexa commands issued in someone else’s voice. If so, you haven’t necessarily lost your mind. Instead, if you own one of a few models of… Read More »

Microsoft beveiligingsprobleem dec2017

Volledige controle over je pc! Origineel artikels te lezen hier en hier:   Microsoft has just released an emergency security patch to address a critical remote code execution (RCE) vulnerability in its Malware Protection Engine (MPE) that could allow an attacker to take full control of a victim’s PC. Enabled by default, Microsoft Malware Protection Engine offers the… Read More »

Teamviewer gebruikers…even lezen

Nieuw probleem ontdekt: origineel artikel klik hier Do you have remote support software TeamViewer installed on your desktop? If yes, then you should pay attention to a critical vulnerability discovered in the software that could allow users sharing a desktop session to gain complete control of the other’s PC without permission. TeamViewer is a popular remote-support software that… Read More »

Microsoft Office probleem nov 2017

Even doorlezen voor Office gebruikers. Introduction Two weeks ago SensePost’s Etienne Stalmans and Saif-Allah El-Sherei published an interesting analysis of a Microsoft Office feature that can be easily exploited for running arbitrary code on user’s computer. In the next few days, Cisco Talos reported of detected in-the-wild attacks exploiting this very issue, while SANS reported it being exploited… Read More »

WiFi beveiliging: groot probleem!

Origineel artikel: Introduction We discovered serious weaknesses in WPA2, a protocol that secures all modern protected Wi-Fi networks. An attacker within range of a victim can exploit these weaknesses using key reinstallation attacks (KRACKs). Concretely, attackers can use this novel attack technique to read information that was previously assumed to be safely encrypted. This can be abused to… Read More »

Niet alle bekende software moet je zomaar vanzelfsprekend nemen

Niet alle bekende software moet je zomaar vanzelfsprekend nemen: origineel artikel hier. Warning: Malware-laden version of CCleaner 5.33 Security researchers found out that that one version of the popular system tuning application “CCleaner” was infected with malware. We take a brief look at this case as well as several other cases from the past. The popular system tuning… Read More »

Windows naar Linux

Beetje technisch, hier is het originele artikel… Often times on an engagement I find myself needing to copy a tool or a payload from my Kali linux attack box to a compromised Windows machine. As a perfect example, on a recent pentest, I found a vulnerable ColdFusion server and was able to upload a CFM webshell. It was… Read More »

Verander nu je wachtwoord voor LinkedIn

http://datanews.knack.be/ict/nieuws/verander-nu-je-wachtwoord-voor-linkedin/article-normal-705117.html Verander nu je wachtwoord voor LinkedIn! Beveiliger Kaspersky roept mensen op onmiddellijk hun wachtwoord voor LinkedIn te veranderen. Bij een grote hack in 2012 werden miljoenen gebruikersgegevens gestolen. Nu blijkt een hacker 117 miljoen van die inlognamen en wachtwoorden te koop aan te bieden.