Blue Mockingbird Monero-Mining Campaign Exploits Web Apps
The cybercriminals are using a deserialization vulnerability, CVE-2019-18935, to achieve remote code execution before moving laterally through the enterprise.
Read MoreTag: cryptography
VU#144389: TLS implementations may disclose side channel information via discrepencies between valid and invalid PKCS#1 padding
Vulnerability Note VU#144389 <h2>TLS implementations may disclose side channel information via discrepencies between valid and invalid PKCS#1 padding</h2> <p class=”meta-text”>Original Release date:...
Read MoreVU#228519: Wi-Fi Protected Access II (WPA2) handshake traffic can be manipulated to induce nonce and session key reuse
Vulnerability Note VU#228519 <h2>Wi-Fi Protected Access II (WPA2) handshake traffic can be manipulated to induce nonce and session key reuse</h2> <p class=”meta-text”>Original Release date: 16 Oct...
Read More