Tag: PHP
-
Workings of MalSync Malware Unveiled: DLL Hijacking & PHP Malware
Researchers have discovered the workings of the MalSync malware known as the “DuckTail” or “SYS01”. The analysis of the malware …
-
MalSync Teardown: From DLL Hijacking to PHP Malware for Windows
Your Enterprise Defense Partner Our portfolio of security services offers comprehensive coverage to protect and defend your business from …
-
Warning: 3 Critical Vulnerabilities Expose ownCloud Users to Data Breaches
The maintainers of the open-source file-sharing software ownCloud have warned of three critical security flaws that could be exploited to …
-
Warning! WordPress Plugin ”Gravity Forms” Vulnerable to PHP Object Injection
Researchers revealed that the largely used WordPress plugin ”Gravity Forms” is vulnerable to unauthenticated PHP Object Injection. The …
-
PHP Packagist supply chain poisoned by hacker “looking for a job”
We’ve written about PHP’s Packagist ecosystem before. Like PyPI for Pythonistas, Gems for Ruby fans, NPM for JavaScript programmers, or …
-
SHA-3 code execution bug patched in PHP – check your version!
You’ve probably seen story after story in the media in the past week about a critical bug in OpenSSL, though at the time of writing this …
-
A flaw in the Packagist PHP repository could have allowed supply chain attacks
Experts disclosed a flaw in the PHP software package repository Packagist that could have been exploited to carry out supply chain attacks. …
-
Researchers Report Supply Chain Vulnerability in Packagist PHP Repository
Researchers have disclosed details about a now-patched high-severity security flaw in Packagist, a PHP software package repository, that …
-
Hackers Targeting VoIP Servers By Exploiting Digium Phone Software
VoIP phones using Digium’s software have been targeted to drop a web shell on their servers as part of an attack campaign designed to …
-
QNAP warns of a critical PHP flaw that could lead to remote code execution
Taiwanese company QNAP is addressing a critical PHP vulnerability that could be exploited to achieve remote code execution. Taiwanese …
-
Hijacking of popular ctx and phpass packages reveals open source security gaps
The Python module “ctx” and a fork of the PHP library “phpass” have recently been modified by an unknown attacker to grab AWS …
-
FBI warns of scraping attacks targeting online checkout pages
The U.S. Federal Bureau of Investigation has issued a flash alert warning businesses that cybersecurity actors are scraping credit card …
●●●