SecureBug allows you to evaluate your offensive and defensive skills, in addition, to let you exchange your ideas and methodologies with thousands of people in the security field.
Join Nordic's No.1 Crowdsourced Security Platform For Offensive & Defensive Security Strategies.

Mozilla Firefox Logo

Mozilla releases security patches for Firefox critical vulnerabilities exploited in the wild

Mozilla patched two critical zero-days in Firefox 74.0.1. The vulnerabilities were exploited in the wild through targeted attacks. Mozilla is now urging users to update their Firefox browsers to fix the two bugs. The two vulnerabilities, tracked as CVE-2020-6819 and CVE-2020-6820, are both use-after-free. Use-after-free flaws are a type of memory corruption that could lead…

wininit.exe Windows process

wininit.exe: One Of The Most Important Windows Processes For Threat Hunting

“wininit.exe” stands for Windows Initialization. This process is an essential part of the Windows OS and it runs in the background. “wininit.exe” is responsible for launching the Windows Initialization process. In this new series, we analyze Windows processes and provide threat hunting tips. This process’s primary function is launching the majority of the background applications that are…

Docker

Attackers Are Exploiting Docker Containers to Deliver Cryptomining Malware

For the past few months, an organized attack campaign is targeting misconfigured open Docker Daemon API ports to spread the Kinsing malware which is designed for cryptomining. The Kinsing malware is a Linux-based malware that contains a cryptominer that spreads through containers with the purpose of mining the Bitcoin cryptocurrency. According to Gal Singer, cybersecurity…

vulnerabilities in WordPress SEO plugin - Rank Math

Vulnerabilities in WordPress SEO Plugin Modify Administrative Access, Create Malicious Redirects on Site

WordPress security plugin, Wordfence, discovered two high severity vulnerabilities in the WordPress SEO Plugin – Rank Math. The vulnerabilities, if exploited, allow unauthorized attackers to grant or revoke administrative privileges or lock admins out. The privilege escalation vulnerability in the WordPress SEO plugin, Rank Math, allows attackers to grant administrative access to any registered user…