Iranian Advanced Malware Targets Human Rights Organizations
This article is based on a presentation at BlackHat USA 2016 by security researchers Claudio Guarnieri and Collin Anderson from Amnesty International and the Penn University -USA-. Their presentation indicated that the Iranian regime is targeting human rights organizations. Attacks in July and August 2016 against bloggers…
Ashiyane DST Discover WordPress Userpro Remote File Upload Bug
Userpro Wordpress Userpro Remote File Upload Security researchers at Iranian team Ashiyane Digital Security Team have discover remote file upload vulnerability in Wordpress -Google Dork: inurl:/wp-content/plugins/userpro/- Vulnerability risk is rated as high by cxsecurity.com This module -requires using Metasploit- exploits an arbitrary…
Iranian Expertise in IoT Security Research
Iranian academic security researchers at the ITRC (Information Technology Research Center) have published several white papers on the Internet of Things (IoT) which are available here: www.iot.itrc.ac.ir/fa/doc/list and the Security Challenges and Problems (security and privacy) in IoT and Proposed Solutions…
Iranonymous Deface Saudi Websites
Iranian hackers from Iranonymous have made deface of many Saudi websites include Saudi Hajj/Umrah pilgrimage website –http://www.dh.com.sa/– Dhafiri Services Company is allow pilgrims to make bookings for Hajj and Umrah The company was founded in the city of Khobar Deface…
Gray Hat Group Find Pixel2URL XSS Bug
Hacker MR.BL4CK of Gray Hat Group have discover new bug: Pixel2URL Cross Site Scripting -XSS- XSS -Cross Site Scripting- is type of computer security vulnerability found in web applications enable attackers to inject client-sides script into web pages viewed by other users Vendor is: http://pixel2url.com/ Greetz…
Android Security and Forensic Science by LinX64
A good article by Iranian academic is important step forward for people to understand security risks and how to undertake basic forensics if their Android device gets hacked. Mohammad Rezania -LinX64- of Firuzabad Campus of Islamic Azad University in Iran,…
ALFA-TEAM Hidden Shell V2.5 Released
ALFA-TEAM The ALFA-TEAM has made a newer version of the hidden shell called ALFA-SHELL -version 2.5- The application’s features are an improvement on the features found in V2.0: Block Google – Yahoo – Bing – Yandex And …. Crawlers Hidden…
Termint Team Find resane-pardaz SQLi Bug
Iranian Hackers of famous Termint Team is make discover of SQL Injection bug: Termint Team Find resane-pardaz SQL injection Bug Details is here: https://cxsecurity.com/issue/WLB-2016090177 SQLi -SQL injection- is code injection technique used to attack data application have malicious SQL statements is inserted into entry fields…
Ashiyane DST Discover Google Docs XSPA/SSRF
Iranian hackers of Ashiyane Digital Security Team is make discover of XSPA/SSRF -Cross Site Port Attack/Server Side Request Forgery- vulnerability in Google Docs The vulnerability is find by Ehsan Hosseini , V For Vendetta , Und3rgr0und Author: Ashiyane Digital Security Team Vendor…
OFFSEC Team Ice CTF Results
Offsec Research CTF Team: “Thinking out of the out of the box” Following our last post here where OFFSEC is take part in Icelandic Hacking Competition -Ice CTF, which took place between August 12 to 26 – see team points…