Andrea Fortuna
AboutRss
  • Oct 2, 2019

    Also Node.js has been used to perform a Living off the Land (LotL) attack

    Researchers from Cisco Talos recently discovered a new malware loader being used to deliver and infect systems using NodeJS as well as the legitimate open-source utility WinDivert. The use of NodeJS is not something commonly seen across malware families, and… read more »
  • Oct 1, 2019

    CVE-2019-16928: a new vulnerability on Exim exposes millions of email servers to remote attacks

    Another potential RCE in Exim! Let's update, folks! Jeremy Harris, from Exim Development Team, has discovered a heap-based buffer overflow issue in all versions of Exim servers up to and including 4.92.1. The vulnerability (CVE-2019-16928) could allow remote attackers to… read more »
  • Sep 30, 2019

    My Weekly RoundUp #109

    Hurray! Finally i can saying that WhatsApp has a government backdoor without being looked as a conspiracy theorist! https://twitter.com/reuters/status/1176255850798821377?s=12 Technology Chrome cripples movie studio Mac Pros It’s not often that a single software bug can bring an entire industry to… read more »
  • Sep 28, 2019

    #WIBattack: Not only S@T Browser, but also WIB SIM toolKit is vulnerable to SimJacker attacks

    Do you remember the Simjacker vulnerability, that resides in the S@T Browser toolkit, installed on a variety of SIM cards provided by mobile operators in at least 30 countries? Well, a researcher at Ginno Security Lab has revealed that another… read more »
  • Sep 27, 2019

    Checkm8: a new 'unpatchable' jailbreak for all iOS devices from iPhone 4s to iPhone X

    The security expert Axi0mX has released a new jailbreak, dubbed Checkm8, that works on all iOS devices running on A5 to A11 chipsets: so all Apple products released between 2011 and 2017, including iPhone models from 4S to X. https://twitter.com/axi0mX/status/1177542201670168576 The exploit was released… read more »
  • Sep 27, 2019

    How the progress bar keeps you sane, by Daniel Engber

    It don't really matter if the progress bar is giving you the accurate percent done. What matter is that it is there at all: just see it there made people feel better! In this brief TED video, journalist Daniel Engber… read more »
  • Sep 26, 2019

    Windows Forensics: analysis of Recycle bin artifacts

    The Windows Recycle Bin contains files that have been deleted by the user, but not yet purged from the system: a valuable source of evidence for an examiner. Depending on the version of Windows, Recycle Bin evidences are stored in… read more »
  • Sep 25, 2019

    PEpper: a python script to perform malware static analysis on Portable Executable format

    A useful tool: fast and easy to use. What is Portable Executable The Portable Executable format is the standard file format for executables, object code and DLLs used in 32- and 64-bit versions of Windows operating systems. The PE file… read more »
« Previous page Next page »

Andrea Fortuna

  • Andrea Fortuna
  • andrea@andreafortuna.org
  • andreafortuna
  • andrea-fortuna
  • andrea

Cybersecurity expert, software developer, experienced digital forensic analyst, musician