Photo by Barefoot Communications on Unsplash

Facebook Data Leak? Again?

About 533 million user phone numbers now for 'free'


Author: Felipe Ruiz

Category: attacks

Tags: cybersecurity,  software,  vulnerability,  mistake,  hacking,  application

This post outlines the most recent Facebook data leak with approximately 533 million records,...



Photo by Jonathan Petersson on Unsplash

Tribe of Hackers Red Team 5.0

Learning from the red team expert Carlos Perez


Author: Felipe Ruiz

Category: opinions

Tags: cybersecurity,  red-team,  hacking,  pentesting,  ethical-hacking,  blue-team

This post is based on the book 'Tribe of Hackers Red Team' by Carey and Jin. Here we share...



Photo by Joshua Sukoff on Unsplash

What's in the FBI's 2020 Report?

Get a digest of Internet crime over the last year


Author: Felipe Ruiz

Category: attacks

Tags: cybersecurity,  social,  documentation,  risk,  social-engineering,  hacking

This post gives you an overview of the FBI's 2020 Internet Crime Report, based on the activity...



Photo by Alejandro Luengo on Unsplash

Microsoft Exchange Server Hack

Hafnium exploits four zero-day vulnerabilities


Author: Felipe Ruiz

Category: attacks

Tags: cybersecurity,  software,  vulnerability,  hacking,  application,  discovery

This post describes the Microsoft Exchange Server hack that has affected multiple companies and...



Photo by Charles Deluvio on Unsplash

Security Breaches Are Your Fault!

Confusion with the cloud shared responsibility model


Author: Felipe Ruiz

Category: philosophy

Tags: cloud,  information,  cybersecurity,  security,  mistake,  company

Do you know what is happening with those who don't understand the cloud security shared...



Photo by Christopher Skor on Unsplash

Time for the U.S. to Strike Back?

SolarWinds could be the start of a U.S.-Russia cyberwar


Author: Felipe Ruiz

Category: attacks

Tags: cybersecurity,  software,  vulnerability,  hacking,  application,  risk

Here you can find experts' opinions about the SolarWinds attack and some suggestions that could...



Photo by Cristofer Jeschke on Unsplash

And Don't Forget ISO/IEC 30111

Guidelines for the vulnerability handling processes


Author: Felipe Ruiz

Category: politics

Tags: cybersecurity,  standard,  vulnerability,  information,  company,  challenge

This post is related to vulnerability handling processes (ISO/IEC 30111), complementing the...



Photo by Keagan Henman on Unsplash

Don't Be Ignorant of ISO/IEC 29147

Guidelines for the vulnerability disclosure processes


Author: Felipe Ruiz

Category: politics

Tags: cybersecurity,  standard,  vulnerability,  information,  company,  challenge

Would you like to get a clearer idea about vulnerability disclosure? Start with reading this...



Photo by Shannon Litt on Unsplash

Sudo Heap Overflow CVE-2021-3156

Replicating CVE-2021-3156 with AFL


Author: Andres Roldan

Category: attacks

Tags: fuzzing,  vulnerability,  hacking,  exploit,  discovery

In this article we will be able to reproduce the bug described on CVE-2021-3156 using fuzzing.



Photo by Jono Hirst on Unsplash

Thoughtless Vulnerability Reporting

The Colombian Foreign Ministry faced a big trouble


Author: Felipe Ruiz

Category: opinions

Tags: cybersecurity,  vulnerability,  information,  web,  risk,  standard

Here I give you an overview of the recent Colombian Foreign Ministry's security problem and the...



Photo by Daniel Joshua on Unsplash

SolarWinds Supply Chain Attack

A concise summary of the SolarWinds security fiasco


Author: Felipe Ruiz

Category: attacks

Tags: cybersecurity,  software,  vulnerability,  hacking,  application,  discovery

This post outlines the SolarWinds supply chain attack that has affected multiple companies and...



Photo by Guido Hofmann on Unsplash

Babuk Locker for the 2021

The first ransomware (as a gift) for this new year


Author: Felipe Ruiz

Category: attacks

Tags: software,  security,  vulnerability,  hacking,  mistake

Here's a post dedicated to the new form of ransomware, Babuk Locker. I mention its encryption...



1 2 3 4 5 6 7 8 9 10 11 12 13 14 >

OWASP logo

Corporate member of The OWASP Foundation

Clutch Review
Service status - Terms of Use - Privacy Policy - Cookie Policy

Copyright © 2021 Fluid Attacks, We hack your software. All rights reserved.