fbpx

This website uses cookies to ensure you get the best experience. More Information...

SECURITY LABS

Obrela Security Industries Advisory (OSI-1301)

pfSense versions 2.0.1 and prior are vulnerable to semi-persistent XSS and CSRF attack vectors, exploited by sending Javascript/HTML code as a username during the XAuth user authentication phase. For further information please see here: http://www.exploit-db.com/exploits/24439/ For more information about pfSense see the main site: http://www.pfsense.org/ pfSense is a very popular Open Source Firewall and Routing […]

READ MORE
Man-in-the-Browser Attacks – Citadel

While the Man-in-the-Browser (MitB) type of attacks have been around for quite some time, the last year has seen a significant increase in amount of money being stolen as well as the “quality” and capabilities of the attack mechanisms. The “EuroGrabber” banking Trojan variant stole almost 47 Million USD from 30,000 accounts across Europe and […]

READ MORE
7