2020-08 Patch Tuesday ! 2 Zero days fixed in wild
Microsoft has plugged 120 flaws, two of which are being exploited in attacks in the wildAdobe has delivered security updates for Adobe Acrobat, Reader and LightroomApple has released updates for…
Agent Tesla ! Upgraded & sophisticated of Stealing..
Upgraded version of Agent Tesla remote access Trojan now come with modules dedicated to stealing credentials from applications including popular web browsers, VPN software, as well as FTP and email…
Manage Engine hits with a critical flaw
A critical vulnerability (CVE-2020-11552) in ManageEngine ADSelfService Plus, an Active Directory password-reset solution, could allow attackers to remotely execute commands with system level privileges on the target Windows host. CVE-2020-11552…
If Https with TLS 1.3..! Censored..⛔
China's Great Firewall "is now blocking HTTPS connections with TLS 1.3 and which use ESNI (Encrypted Server Name Indication) The reason for the ban is obvious for experts. HTTPS connections negotiated…
Bug in Windows.. Printers can be hijacked
Windows users have been warned to ensure their security protections are up to date following the disclosure of a new bug that could affects printer services. Researchers were able to…
MacOS macros in to spotlight
Building successful macro attacks means getting past several layers of security, but a Black Hat speaker found a way through.Microsoft Office is no stranger to vulnerabilities and exploits. Most of…
Evil cursor attack .. Firefox patched…
Firefox with a new patch for evil cursor attacks In an update from last week, Firefox patched a vulnerability that tech support scammers exploited in the wild to build artificial…
Posted incybersecurity Http Security
HTTP Smuggling Attack
HTTP Request Smuggling AttacksA new research has identified four new variants of HTTP request smuggling attacks that work against various commercial off-the-shelf web servers and HTTP proxy servers. What is…