资讯

SecurityWeek2 天

Hackers Exploit Sitecore Zero-Day for Malware Delivery

An ASP.NET feature, ViewState stores the state of a webpage in a hidden HTML field, for persistence. Attackers can target the ...
Infosecurity Magazine2 天

CMS Provider Sitecore Patches Exploited Critical Zero Day

Google Cloud’s Mandiant successfully disrupted an active ViewState deserialization attack affecting Sitecore deployments ...
The Register on MSN2 天

Attackers snooping around Sitecore, dropping malware via public sample keys

You cut and pasted the machine key from the official documentation? Ouch Unknown miscreants are exploiting a configuration ...
WeLiveSecurity2 天

GhostRedirector poisons Windows servers: Backdoors with a side of Potatoes

ESET researchers have identified a new threat actor targeting Windows servers with a passive C++ backdoor and a malicious IIS ...