SHELLBIND Malware Exploits SambaCry Vulnerability–Allows Attackers to Gain Control Over Targeted device

A malware known as SHELLBIND has been detected and is said to have advanced capabilities to target network-attached storage (NAS) appliances. The malware which basically exploits the CVE-2017-7494 vulnerability dubbed as the SambaCry that allows...

Vulnerability in Oracle E-Business Suite Allows Attackers to Download Data—Patch Available!

Oracle has released approximately 300 patches yesterday in its ‘Critical Patch Update Advisory’. The vast amount of patches released will ensure that Oracle admin’s across the world would be busy patching up vulnerabilities. After digging deep and...

WikiLeaks Publishes CIA Project 'Cherry Blossom'—Revealing How Wireless Networking Devices Are Compromised

Wikileaks — an independent non-profit organization that has actively been publishing news, classified information provided by whistle blowers and anonymous sources has disclosed a CIA project called ‘Cherry Blossom’. It’s a tool that is based on the...

SambaCry Exploit Now Used to Turn Infected Linux Systems into Crypto-Currency Mining Zombies

Omri Ben Bassat – an independent security researcher is one of the first to observe a campaign dubbed “EternalMiner”. He has tweeted about the campaign which is said to exploit the ‘SambaCry Flaw’ that allowed attackers to gain remote access of...

Android Malware ’Dvmap’ Infects Devices Via Google Play Store — First Android Malware that has Code Injection Capabilities

A well known Russian cyber security and anti-virus provider has discovered one of the first kinds of Android malware which has code injection capabilities. The Android malware is named as “Dvmap” and according to the researchers it is a rooting...