View CSAF 1. EXECUTIVE SUMMARY CVSS v4 6.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: Schneider Electric Equipment: PowerChute Serial Shutdown Vulnerability: Improper Authentication 2. RISK EVALUATION...
Read MoreCourse Description The Mass Metrology Seminar is a two-week, “hands-on” seminar. It incorporates approximately 30 percent lectures and 70 percent demonstrations and laboratory work in which the participant performs...
Read More
Executive Summary The Cybersecurity and Infrastructure Security Agency (CISA) conducted a red team...
Read MoreView CSAF 1. EXECUTIVE SUMMARY CVSS v3 10.0 ATTENTION: Exploitable remotely/low attack complexity Vendor: ABB Equipment: ASPECT-Enterprise, NEXUS, and MATRIX series Vulnerabilities: Files or Directories Accessible to External...
Read More
New security regulations are more than compliance hurdles โ they’re opportunities to build...
Read MoreThis blog post focuses on how the vulnerabilities in firmware popularized by the Uniform Extensible Firmware Interface create a lucrative target for high-profile attackers.
Read MoreThis post is part of a series on privacy-preserving federated learning. The series is a collaboration between NIST and the UK governmentโs Responsible Technology Adoption Unit (RTA), previously known as the Centre for Data...
Read MoreA few days ago, I wrote a diary[1] about a link file that abused the ssh.exe tool present in modern versions of Microsoft Windows. At the end, I mentioned that I will hunt for more SSH-related files/scripts. Guess what? I...
Read More
Occasionaly I decompile Python code, with decompilers written in Python. Recently I discovered...
Read More
By default, DShield Honeypots [1] collect firewall, web and cowrie (telnet/ssh) [2] data and log...
Read More
It is again the time of the year when scammers are asking to verify banking information, whether...
Read More
With the end of the year quickly approaching, it is undoubtedly a good time to take a look at what...
Read More