SecureBug allows you to evaluate your offensive and defensive skills, in addition, to let you exchange your ideas and methodologies with thousands of people in the security field.
Join Nordic's No.1 Crowdsourced Security Platform For Offensive & Defensive Security Strategies.

Threat Hunting Images: Detect Turla PNG Dropper Malware via Sigma Detection Rule

Detect Turla PNG Dropper Malware via Sigma Detection Rule

[vc_row][vc_column][vc_column_text]The Turla Group developed and used the PNG Dropper malware. It was first discovered back in August 2017 by Carbon Black researchers. Back in 2017 it was being used to distribute Snake, but recently NCC Group researchers have uncovered samples with a new payload that they have internally named RegRunnerSvc. This method detects malicious services…

WordPress ThemeREX

WordPress ThemeREX Addons Vulnerability Now Patched

WordPress security plugin, Wordfence, released security patches for the vulnerable ThemeREX Addons plugin; they previously released a firewall rule for the Wordfence Premium users. Wordfence published a list of all affected ThemeREX themes and their patched versions, along with the vulnerable versions of the ThemeREX Addons plugin and the corresponding newly patched versions. ThemeREX Creates…

Wormable Vulnerability Found In Windows

Wormable Vulnerability Found In Windows, No Patch Available

Shortly after releasing its monthly security update, Microsoft separately issued an advisory warning billions of its Windows users of a new critical, unpatched, and wormable vulnerability affecting Microsoft Server Message Block (SMB) protocol. The issue, tracked as CVE-2020-0796, is pre- remote code execution vulnerability that resides in the Server Message Block 3.0 (SMBv3) network communication protocol. Microsoft did…

Microsoft Exchange

Microsoft Exchange Server Flaw Exploited by state-sponsored Hackers

Multiple state-sponsored hacking groups are exploiting a vulnerability in Microsoft Exchange email Servers that the company patched in February. The exploitation attempts were first spotted by UK cyber-security firm Volexity on Friday. Volexity confirmed that exploitation of this security flaw began in late February, with several organizations already having their networks compromised after state-backed advanced persistent…

Zoho Logo

Zoho ManageEngine Zero-day Vulnerability Discovered and Fixed

A zero-day vulnerability is discovered in Zoho ManageEngine Desktop Central endpoint which could cause serious damage to customers if exploited. web-based office suite and SaaS provider, Zoho, was revealed to contain a zero-day vulnerability in the ManageEngine Desktop Central endpoint. ManageEngine Desktop Central endpoint is an endpoint management tool that helps managed service providers (MSPs)…