Cyber Defense Advisors

Cyber News

  • by
  • October 12, 2023

ShellBot Uses Hex IPs to Evade Detection in Attacks on Linux SSH Servers

The threat actors behind ShellBot are leveraging IP addresses transformed into its hexadecimal notation to infiltrate poorly managed Linux SSH servers and deploy the DDoS malware. “The overall flow remains the same, but the download URL used by the threat actor to install ShellBot has changed from a regular IP address to a hexadecimal value,” […]

Cyber News, Cyber Threat Trends

Bounty to Recover NIST’s Elliptic Curve Seeds

This is a fun challenge: The NIST elliptic curves that power much of modern cryptography were generated in the late ’90s by hashing seeds provided by the NSA. How were the seeds generated? Rumor has it that they are in turn hashes of English sentences, but the person who picked them, Dr. Jerry Solinas, passed […]

Cyber News, Cyber Threat Trends

Bounty to Recover NIST’s Elliptic Curve Seeds

This is a fun challenge: The NIST elliptic curves that power much of modern cryptography were generated in the late ’90s by hashing seeds provided by the NSA. How were the seeds generated? Rumor has it that they are in turn hashes of English sentences, but the person who picked them, Dr. Jerry Solinas, passed […]

Cyber News, Cyber Threat Trends

Half of Small Businesses Hit by Cyber-Attack Over the Past Year

A new survey from accounting software provider Sage showed that most SMEs have developed a cybersecurity posture but struggle to keep up with the threats

Cyber News, Cyber Threat Trends

Half of Small Businesses Hit by Cyber-Attack Over the Past Year

A new survey from accounting software provider Sage showed that most SMEs have developed a cybersecurity posture but struggle to keep up with the threats

Cyber News, Cyber Threat Trends

Fifth of UK Cybersecurity Pros Work Excessive Hours

Workload is biggest concern for industry professionals

Cyber News, Cyber Threat Trends

Fifth of UK Cybersecurity Pros Work Excessive Hours

Workload is biggest concern for industry professionals

Cyber News, Cyber Threat Trends

Fifth of UK Cybersecurity Pros Work Excessive Hours

Workload is biggest concern for industry professionals

Cyber News, Cyber Threat Trends
  • by
  • October 12, 2023

Two High-Risk Security Flaws Discovered in Curl Library – New Patches Released

Patches have been released for two security flaws impacting the Curl data transfer library, the most severe of which could potentially result in code execution. The list of vulnerabilities is as follows – CVE-2023-38545 (CVSS score: 7.5) – SOCKS5 heap-based buffer overflow vulnerability CVE-2023-38546 (CVSS score: 5.0) – Cookie injection with none file CVE-2023-38545 is the more severe of […]

Cyber News, Cyber Threat Trends