LDAP Passback and Why We Harp on Passwords
LDAP passback exploits are easy when companies fail to change default passwords on network devices[…]
SonicWall Patches Three Zero-Day Vulnerabilities
Cybersecurity company SonicWall has released patches for three zero-day vulnerabilities that are currently being exploited.
NSA, FBI, CISA Statement on Russian SVR Activity
The US government is warning businesses to beware of vulnerabilities being exploited by the Russian[…]
Remediating Account Enumeration Vulnerabilities
Account enumeration reveals to an attacker whether or not he or she has valid user[…]
New Metasploit Module: Microsoft Remote Desktop Web Access Authentication Timing Attack
Raxis team member Matt Dunn has uncovered a vulnerability in Microsoft’s Remote Desktop Web Access[…]
How to Pull Off a Mousejacking Attack
Raxis demonstrates how to conduct a mousejacking attack as part of a penetration test.
Sudo Privilege Escalation Vulnerability Discovered
Qualys has discovered and reported a serious vulnerability (CVE-2021-3156) affecting the sudo utility. Patches are[…]
Cisco Patches Critical Security Vulnerabilities
Cisco releases patches for some critical and high-severity vulnerabilities.
SolarWinds Supply Chain Attack – Updated 12/18/2020
More details on the SolarWinds supply chain attack.
Why you should turn off Cisco Smart Install now
Cisco Smart Install is handy for admins, but a security risk if it’s improperly managed.
AttackTek: How to Launch a Broadcast Resolution Poisoning and SMB Relay Attack
An easy, effective way to test corporate networks is with broadcast poisoning and SMB relay[…]
Why Worry About Unauthorized Entry?
What’s the worst that can happen if a hacker breaks through your physical defenses and[…]
2870 Peachtree Road
Suite #915-8924
Atlanta, GA 30305 USA
+1 678.421.4544
© 2024 Raxis, LLC – All rights reserved