eLearnSecurity Blog

Category: Researches

18 Year-Old Security Flaw Discovered in All Versions of Windows

redirect to smb

An 18 year-old security flaw has been recently discovered which affects all versions of Windows and lets an attacker steal a victim’s information from some of the products and services in the victim’s network. Cylance cybersecurity firm disclosed the flaw and mentions in a blog post that this was based on a security hole dating back to 1997.

Tags: , , ,

Read more

$1 Million Stolen Using Dyre Wolf Malware + Social Engineering Tactics

dyre-wolf-attack

Hackers have stolen millions from various enterprises in an attack using a variation of the Dyre Wolf Malware plus some Social Engineering tactics. These attackers have  come up with a sophisticated method that consists of spear phishing, malware and DDOS attacks during this crime.

Tags: , , , , ,

Read more

British Airways Executive Club Accounts Suffer from Cyberattack

british airways cyberattack

A few members of the British Airways Executive Club complained about their points from their accounts getting stolen. Some of these points were used to book a hotel room and others had all their points wiped out. According to a report from BBC, this issue was dated back at least 2 weeks.

Tags: , , ,

Read more

Web Vulnerability Discovered in Hilton Hotel Site

hilton honors web vulnerability security

A security flaw was discovered in the Hilton.com website that allowed an attacker to gain access to a client’s account simply by knowing or guessing the account number. Bansec security firm found the flaw at the Hilton HHonors page wherein an attacker could hijack any other account just by changing the site’s HTML content to reflect the other account number, then reloading the page.

Tags: , , , , , , , , ,

Read more

Top 5 Hackmes in January 2015

jan 2015 hackmes

We rounded up the Top 5 Hackme challenges started by users in January 2015. Based on the list, we have a new entry which is the Simple Directory Traversal 2 Challenge.

Hack.me is a free-for-all virtual lab on web application security that offers various fun and challenging scenarios to test your penetration testing skills.

Tags: , ,

Read more

Go to top of page