Article Archives - Real Malware Guide

US warns against active abuse of Dirty Pipe leak in Linux

Article / By Maxim / April 26, 2022 April 26, 2022

The US government has issued a warning that attackers are actively exploiting the Dirty Pipe vulnerability in Linux. The vulnerability allows a local user to gain root privileges. Government agencies in the US have been instructed to fix the vulnerability in their systems before May 16.

EFF: Anonymous Twitter Accounts Are Essential for Users

Article / By Maxim / April 26, 2022 April 26, 2022

The ability to be anonymous on Twitter is essential for users and an important part of freedom of expression, the EFF believes. The American civil rights movement is concerned that new owner Elon Musk does not fully appreciate the human rights value of pseudonymous speech.

British government discovers new variant of spy malware SparrowDoor

Article / By Maxim / April 26, 2022 April 26, 2022

Last year, the UK’s National Cyber Security Center (NCSC) found a variant of the spy malware SparrowDoor on an undisclosed UK network. An analysis of the variant was published today, which can now steal data from the clipboard, among other things. In addition, indicators of compromise and Yara rules have been made available that allow …

British government discovers new variant of spy malware SparrowDoor Read More »

NCSC: logging in with password is the most insecure form of authentication

Article / By Maxim / April 26, 2022 April 26, 2022

Logging in with a username and password is the most insecure form of authentication. Organizations that want to better protect their accounts are therefore advised to choose stronger authentication methods, such as two-factor authentication (2FA) and the FIDO2 standard from the FIDO Alliance. This is stated by the National Cyber Security Center (NCSC) in a …

NCSC: logging in with password is the most insecure form of authentication Read More »

Homeland Security bug bounty program yields 122 vulnerabilities

Article / By Maxim / April 26, 2022 April 26, 2022

The first bug bounty program organized by the US Department of Homeland Security has revealed a total of 122 vulnerabilities, 27 of which have been labeled critical. Last December, Homeland Security launched the “Hack DHS” program. The program consists of three phases. First, a model was developed that other government agencies can also use to …

Homeland Security bug bounty program yields 122 vulnerabilities Read More »

Cookie	Duration	Description
cookielawinfo-checkbox-advertisement	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category .
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
CookieLawInfoConsent	1 year	Records the default button state of the corresponding category & the status of CCPA. It works only in coordination with the primary cookie.
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
__gads	1 year 24 days	The __gads cookie, set by Google, is stored under DoubleClick domain and tracks the number of times users see an advert, measures the success of the campaign and calculates its revenue. This cookie can only be read from the domain they are set on and will not track any data while browsing through other sites.
_ga	2 years	The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
_ga_KS7E3BLSDM	2 years	This cookie is installed by Google Analytics.
_gat_gtag_UA_161622343_1	1 minute	Set by Google to distinguish users.
_gid	1 day	Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously.
advanced_ads_page_impressions	10 years	This cookie is set by the Advanced Ads. This cookie is used to measure the number of previous page impressions.

Cookie	Duration	Description
advanced_ads_browser_width	1 month	This cookie is set by Advanced ads plugin.This cookie is used to measure and store the user browser width for adverts.
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.

Article

US warns against active abuse of Dirty Pipe leak in Linux

EFF: Anonymous Twitter Accounts Are Essential for Users

British government discovers new variant of spy malware SparrowDoor

NCSC: logging in with password is the most insecure form of authentication

Homeland Security bug bounty program yields 122 vulnerabilities

Several Russian government sites inaccessible after ddos attacks

Nvidia investigates cyber attack on internal systems

WordPress Patches Four Serious Threats Ahead of Version 5.9

Steam’s peak concurrent users increased by 10 million in two years

Have I Been Pwned Adds Passwords Of 7.5 Million DatPiff Members