Ulterius Zero Day Disclosure

Ulterius Zero Day Disclosure

Every now and then, an regular penetration test project can take a decidedly irregular detour into the land of zero-day exploits.  In October 2017, I discovered a zero-day vulnerability in Ulterius, a widely used, open-source remote access software. Come along. I have...

Enough with the Stunt Hacking

In the information security industry’s latest attention-grabbing headline, we have the tale of Charlie Miller and Chris Valasek hacking a Jeep Cherokee and disabling it while driving down the highway.  You can read about this hack here. This is stunt hacking. That is,...

Shellshock: What You Need to Know

The Shellshock (or Bash) bug is the latest serious bug to hit the scene.  So what do you need to know about this bug?  Anitian has a quick summary. What is Shellshock? It is a very serious bug to Bash, a ubiquitous command shell for Unix and Linux systems.  When...