Uncategorized Archives

3 Ways, Passwords are Failing the Enterprises

Online world majorly relies on passwords for access control and content security. Enterprises and individuals alike use passwords to keep sensitive information out of the wrong hands. However, enterprises are an extremely high value target for attackers and that level of attention cannot be handled by the humble passwords. In this blog I will be […]

Atharva Chincholkar February 22, 2021 Uncategorized

Logokit – The most advanced phishing tool kit; You cannot ignore

Amongst the many known cyber-attacks, Phishing takes the throne. Users, including the experienced ones, can fall prey to phishing. Phishing has become a very cost effective, low skill & straightforward way for cyber criminals over the years now to harvest credentials from across the globe. The effectiveness of phishing attacks is getting better and better […]

Ramya Erramilli February 4, 2021 Uncategorized

Nissan : Git, default-set, Gone..

Git Server with default credentials When you set up things that are connected to the internet, they generally require protection from unauthorized access. This protection is often provided by passwords. In most of these cases, a default password with a username is given for first time configuration. As a general security practice, you are supposed […]

Atharva Chincholkar February 4, 2021 Uncategorized

Old vulnerability haunts unpatched FortiOS installations

In 2018, a vulnerability (CVE-2018-13379) allowed attackers to read FortiOS files without authentication by sending a carefully crafted HTTP request. This vulnerability only existed in the SSL VPN. It affected FortiOS version 5.6.3 to FortiOS version 6.0.4. According to CloudSEK this vulnerability has come back to haunt networks that use FortiOS and missed the memo […]

Atharva Chincholkar November 27, 2020 Uncategorized

Dumping & Abusing Windows Credentials [Part-1]

Introduction: We all know how crucial our credentials are to us, these shared secrets are basically the access to our resources present on various platforms. The whole process of authentication and authorization is pretty much always dependent on these shared secrets which can be in the format of passwords, access tokens, keys, tickets etc. Today […]

Satyam Dubey September 13, 2020 Uncategorized

Passwords are like Plastic; Lets get rid of ’em

Passwords are at the foundation of security and access control ever since humans felt the need of securing resources and access to it. Passwords have been used and abused since millennium and the best documented example of this is “Open Sesame”. The surprising fact is even after millennium passwords are ubiquitous, and mean anything but […]

Ajit Hatti May 31, 2020 Uncategorized

Category: Uncategorized

Popular Posts