Monthly Archives: June 2013

Trendmicro Alerts of a digitally signed malware

New malware has been reported by Trendmicro that are using an expired Opera code signing certificate. The malware is detected as TSPY_FAREIT.ACU and it is able to steal sensitive information from FTP clients including usernames, passwords, and server names. The

Kali Linux Advanced Offensive Distribution

The penetration testing distribution BackTrack has changed its name to Kali and moved from Ubuntu based operating system to Debian. Kali can be used for penetration testing and security assessment different systems. It is completely similar to what BackTrack provides

Aircrack-ng Updated

New release have been announced for  aircrack-ng a wardriving utility that can be used to search and pentest wireless network. the program is widely used to make packet capture, packet injection and recover 802.11 WEP and WPA-PSK encryption keys. Release

Oracle plans to fix 40 holes in Java

Oracle is planning Critical security patch update for the Java SE that are going to be released on Tuesday, June 18, 2013. This Critical Patch Update is a collection of patches for multiple security vulnerabilities in Oracle Java SE. This

Weevely 1.1 – PHP Webshell

Weevely – is a PHP webshell that provides SSH connection to manage website remotely. it can be used as a backdoor system to PoC during a pentest or a web shell to manage legit web accounts. The shell consists of

OWASP published 2013 Top 10 Vulnerabilities

The Open Web Application Security Project (OWASP) have published the top 10 most dangerous vulnerabilities in web-applications for 2013. This release comes to raise awareness about application security by identifying some of the most critical risks facing organizations. The OWASP

Android hit by a sophisticated malware

New malware was detected over this week by Kaspersky. at first glance the threat seems to be a common malicious file but after investigation and analyses this Trojan goes beyond what was expected. The malware exploit several vulnerabilities on Android system