JWT Attack – Most Common Scenarios ...
What is a Json web token (JWT)? A JWTtoken is an open standard that defines the compact and secure way of transmitting data or information….
Read MoreSecurity Advisory – Tecnimont Cyber Theft ...
Background: Maire Tecnimont SpA is the parent company of the Italian group Maire Tecnimont, which consists of at least 50 operating companies in the engineering…
Read MoreSecurity Advisory – Saipem Cyber Attack by S ...
1. Introduction Saipem identified cyber-attack on Monday i.e. on 10th December 2018 that had primarily affected its servers in the Middle East. The cyber-attack hit…
Read MoreThreat Advisory Report on Petya Ransomware (Critic ...
Ransomware: An Introduction Ransomware is a form of malicious software that locks up users files on the computer system, encrypts them, and demands that the…
Read MoreBuffer Overflow Attacks ...
Introduction Buffer is a storage place in memory where data can be stored. It’s mostly bound in a conditional statements to check the value given…
Read MoreThreat Advisory Report on WannaCry Ransomware (Cri ...
1. Introduction On Friday, May 12, countless organizations around the world began fending off attacks from a ransomware strain variously known as WannaCrypt, WanaDecrypt and…
Read MoreAdobe Flash Player Zero Day Attacks Found In Hacki ...
Hacking Team is a Milan-based information technology company that sells offensive intrusion and surveillance capabilities to governments, law enforcement agencies and corporations.Its “Remote Control Systems”…
Read MoreCSRF Vulnerability on LinkedIn ...
In previous blog we have seen a critical vulnerability in LinkedIn password reset module allowing an attackers to compromise LinkedIn user’s account and how helpless…
Read MoreBetter Secure Than Sorry! Neglected, Assumed and H ...
On July 16, 1998, CERT reported an incident where an attacker had found 186,126 encrypted passwords. By the time they were discovered, they had already…
Read MoreCategories
- Android Security (8)
- Authentication & Authorization (12)
- Blockchain Security (1)
- Bug Bounty (1)
- BYOD (4)
- Case Study (28)
- Chatbot Security (1)
- Cloud Security (3)
- Containerization Security (1)
- Corporate Training (4)
- Cyber Attack (9)
- Data Breaches (11)
- Data Leakage (14)
- Data Privacy (14)
- Email Phishing (2)
- Encryption & Cryptography (10)
- Ethical Hacking (11)
- General (1)
- iOS Security (2)
- IOT Security (2)
- Java Security (2)
- Mobile Application Security (11)
- Mobile Device Management (6)
- Network Pentesting (5)
- Password Security (2)
- Patch Management (3)
- Ransomware Attack (4)
- Reverse Engineering (3)
- Secure SDLC (3)
- Security Advisory (24)
- Security Best Practices (19)
- Security Hardening (19)
- Social Engineering Attack (4)
- Social Networking Security (4)
- Source Code Review (2)
- SPAM (2)
- Student Oriented Courses (2)
- Thick Client Penetration Testing (2)
- Unix/Linux Security (1)
- Viruses & Malware (9)
- VoIP Penetration Testing (4)
- Vulnerability Disclosure (16)
- Web Application Security (6)
- Windows Mobile Security (1)
- Zero Day Attack (5)