Фейковые новости влияют на политику больших стран, их создатели зарабатывают немалые деньги, используя различные схемы монетизации, а в будущем fake news смогут сокрушать бизнесы. Рассказываем, кто и зачем создает фейковые новости, как организуются поддельные информационные кампании и как распознать фейк обычному пользователю. Читать дальше →
The last couple of weeks are not so much cool news, but we have selected the most interesting and useful. In the contents you can find a short description for each section. Vulnerabilities: IOS research, android apps (check yours) and weblogic (again); Tools: Usefull tools. Depix and Karkinos should be tested; News: Only malware. IOS, … Continue reading Impressive IOS research, vulnerable android apps and malware news → The post Impressive IOS research, vulnerable android apps and malware news…
At the beginning of the year there is not much news, but we were able to collect a digest with the loudest and coolest news. Vulnerabilities: Zyxel fail, cool bug in Google docs and new side-channel attack, + it’s recommended to patch Nvidia drivers; Tools: Offensive staff only; News: Julian Assange, whatsapp transfers your data … Continue reading Hardcoded account in Zyxel, whatsapp user’s data → facebook and news about Julian Assange →
An issue was discovered in Suricata 5.0.0. It is possible to bypass/evade any tcp based signature by overlapping a TCP segment with a fake FIN packet. The fake FIN packet is injected just before the PUSH ACK packet we want to bypass. The PUSH ACK packet (containing the data) will be ignored by Suricata because it overlaps the FIN packet (the sequence and ack number are identical in the two packets). The client will ignore the fake FIN packet because the ACK flag is not set. Both linux and windows clients…