Write-ups from Threat Nix - Purge your threats with Threat Nix

Exploiting CSP in Webkit to Break Authentication & Authorization

Sachin / Prakash, Nov 13, 2021,

When it comes to the web, browsers are the first line of defence.

#0day, #Exploit, #Research, #CSP, # CORS, #Apple, #WebKit,

CVE-2021-41773: Zero-Day in Apache HTTP Server exploited in the wild

Madhu Sudan Acharya, Oct 10, 2021,

Apache Software has released patches to address a security vulnerability in its HTTP Web Server project that has been actively exploited in the wild.

#Apache, #0day,

615000+ Facebook Credentials Stolen – Large Scale Phishing Campaign

Guest, Dec 27, 2020,

Threat Nix has uncovered a large scale phishing campaign using GitHub pages and targeted Facebook ads that has affected more than 615000 users.

#Spam, #Phishing,

The Nepali Email Dump and Its Implications

Guest, Jul 4, 2019,

Last Saturday, June 29, 2019, a group calling themselves Black Hawk Caphilates released a list of 37,122 email addresses, supposedly belonging to Nepali people and claimed it to be the largest email leak in Nepal’s history.

#Email, #Dump,

Threat Report 2018, Nepal – TL;DR

Guest, Mar 4, 2019,

As with last year, Threat Nix has continued in its effort to assess the state of security of Nepali cyberspace with its annual Threat Report.

Subscribe to our newsletter

Curated list with top cybersecurity news of the week