Wednesday, July 30, 2025
Latest:

Computer Security Articles

RSS Reader for Computer Security Articles

Vulnerability

QuickHealSecurity
admin

CVE-2017-9805 | Apache Struts 2 Remote Code Execution Vulnerability – An analysis by Quick Heal Security Labs

Credit to Author: Pradeep Kulkarni| Date: Thu, 07 Sep 2017 09:06:18 +0000

A critical remote code execution vulnerability has been discovered in the popular web application framework Apache Struts, which allows attackers to execute an arbitrary code. To address this issue, Apache Struts has issued a security advisory and CVE-2017-9805 has been assigned to it. The attacker may use this vulnerability to…

The post CVE-2017-9805 | Apache Struts 2 Remote Code Execution Vulnerability – An analysis by Quick Heal Security Labs appeared first on Quick Heal Technologies Security Blog | Latest computer security news, tips, and advice.

Read More
QuickHealSecurity
admin

CVE-2017-9805 – Apache Struts 2 Remote Code Execution Vulnerability by Quick Heal Security Labs

Credit to Author: Pradeep Kulkarni| Date: Thu, 07 Sep 2017 09:06:18 +0000

A critical remote code execution vulnerability has been discovered in famous web application framework Apache Struts, which allows attackers to execute arbitrary code. To address this issue, Apache Struts has issued a security advisory and CVE-2017-9805 has been assigned to it. The attacker may use this vulnerability to target organizations…

The post CVE-2017-9805 – Apache Struts 2 Remote Code Execution Vulnerability by Quick Heal Security Labs appeared first on Quick Heal Technologies Security Blog | Latest computer security news, tips, and advice.

Read More
MalwareBytesSecurity
admin

HTTPS… Everywhere!

Credit to Author: Jérôme Boursier| Date: Tue, 06 Jun 2017 14:00:43 +0000

We recently updated our redirections rule in HTTPS-Everywhere, a browser extension that automatically redirects you to the HTTPS version of the website you are trying to visit. Now is a good time for us to give a short overview of how important HTTPS is. We’ll also talk about a few major HTTPS-related events that happened lately.

Categories:

Tags:

(Read more…)

The post HTTPS… Everywhere! appeared first on Malwarebytes Labs.

Read More
QuickHealSecurity
admin

Anatomy of Flash Exploit (CVE-2015-8651) integrated into Rig Exploit Kit

Credit to Author: Pavankumar Chaudhari| Date: Tue, 25 Apr 2017 08:58:48 +0000

We all know how the infamous RIG Exploit Kit have been used to infect the end users. We are seeing a constant spike in the usage of the RIG Exploit Kit by malware actors to spread malware. Its use has been noticed in different campaigns such as EITest, pseudoDarkleech, and…

The post Anatomy of Flash Exploit (CVE-2015-8651) integrated into Rig Exploit Kit appeared first on Quick Heal Technologies Security Blog | Latest computer security news, tips, and advice.

Read More
QuickHealSecurity
admin

Cosmos Bank website compromised with RIG Exploit Kit which drops Cerber Ransomware

Credit to Author: Pradeep Kulkarni| Date: Thu, 23 Mar 2017 13:22:25 +0000

Update: The incident has been taken care of by Cosmos Bank and its website (URL) is now clean and safe to use. Compromising popular websites has become a common strategy for attackers to spread infection in a widespread fashion. Attackers exploit unpatched vulnerabilities present on web servers in order to compromise…

The post Cosmos Bank website compromised with RIG Exploit Kit which drops Cerber Ransomware appeared first on Quick Heal Technologies Security Blog | Latest computer security news, tips, and advice.

Read More
QuickHealSecurity
admin

CVE-2017-0199 – Microsoft Office/WordPad Remote Code Execution Vulnerability w/Windows API

Credit to Author: Pradeep Kulkarni| Date: Fri, 14 Apr 2017 09:52:28 +0000

The newly discovered zero-day vulnerability (CVE-2017-0199) in Microsoft Office/WordPad is being actively exploited in the wild. Almost all Microsoft Office versions are affected with this bug. To fix this vulnerability, Microsoft released a security update on April 11, 2017. Vulnerable Versions According to Microsoft, the following are the affected products…

The post CVE-2017-0199 – Microsoft Office/WordPad Remote Code Execution Vulnerability w/Windows API appeared first on Quick Heal Technologies Security Blog | Latest computer security news, tips, and advice.

Read More
QuickHealSecurity
admin

Clicking an image could have hacked your WhatsApp account

Credit to Author: Rajib Singha| Date: Thu, 16 Mar 2017 13:12:12 +0000

Users of WhatsApp Web (the browser-based version of the app) were recently targeted with an image-based security threat where simply clicking an image could have hacked their accounts. A security vulnerability was present in WhatsApp Web and it was recently patched by WhatsApp. By exploiting this vulnerability, an attacker could…

The post Clicking an image could have hacked your WhatsApp account appeared first on Quick Heal Technologies Security Blog | Latest computer security news, tips, and advice.

Read More
QuickHealSecurity
admin

CVE-2017-5638 – Apache Struts 2 Remote Code Execution Vulnerability

Credit to Author: Pradeep Kulkarni| Date: Tue, 14 Mar 2017 11:01:23 +0000

The well-known open source web application framework Apache Struts 2 is being actively exploited in the wild allowing hackers to launch a remote code execution attack.  To address this issue, Apache has issued a security advisory and CVE-2017-5638 has been assigned to it. The zero-day bug has been rated with…

The post CVE-2017-5638 – Apache Struts 2 Remote Code Execution Vulnerability appeared first on Quick Heal Technologies Security Blog | Latest computer security news, tips, and advice.

Read More