Researchers just announced the discovery of a UPnP vulnerability that impacts any UPnP device exposed on the Internet. The attack, called CallStranger (CVE-2020-12695), is being used for massive DDoS attacks , to exfiltrate data, and to scan ports from Internet-facing UPnP devices. How the CallStranger exploit works The attack takes advantage of a Callback header…
Tag: windows 10
Microsoft’s Patch Tuesday breaks record with 129 patches including CVEs for 11 critical remote-code execution vulnerabilities.
Forget the 26 new USB bugs found in Linux and Windows, it’s the security fuzzer tool that discovered them that’s the news.
A research team from Purdue University has created a tool, USBFuzz, which fuzzes calls to the USB driver stack. Apparently the tool is pretty groundbreaking. The researchers said, “At its core, USBFuzz uses a software-emulated USB device to provide random device data to drivers (when they perform IO operations).” The researchers tested the tool on:…
Windows Subsystem for Linux (WSL) – how to create a Linux hacking toolkit that runs on Windows 10
Windows 10 – rough around the edges but the future looks bright!
Gotta give props to Microsoft – they did well with Windows 10 both in terms of the design and implementation of the OS and especially the unique rollout via Windows update. I’s obvious that Win10 is going to be a spectacular OS in the future. Why are my comments so forward looking? Because Windows 10,…