Entersoft Team

Entersoft Team
Your friendly neighbourhood hackers.

Recent Posts

Addressing RBI compliance requirements for banks & NBFCs

Posted by Entersoft Team on Feb 13, 2019 3:19:38 AM

 

Segasec and Entersoft to strengthen their partnership in India

Tel Aviv, February 13, 2019 – India is among the top four nations targeted by phishing attacks according to a recent research. Consequently, the Reserve Bank of India (RBI) lately regulated that all Indian banks need to have in place a robust cybersecurity framework. This should include a Cyber Crisis Management Plan (CCMP) that addresses early detection, fast response, recovery and containment including protection against customer facing phishing attacks.

Read More

Topics: Application Security, FinTech Security, Hacks and news

Remote Code Execution Vulnerability in Adobe Flash Player

Posted by Entersoft Team on Mar 22, 2018 9:10:18 PM

Adobe Flash Player is prone to an unspecified remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the affected applications. Failed exploit attempts will likely cause a denial-of-service condition. Adobe Flash Player version 28.0.0.137 and prior versions are vulnerable.

Read More

Topics: cybersecurity, Hacks and news, cyber attack, vulnerability

Implementing Security in IoT

Posted by Entersoft Team on Nov 29, 2017 9:44:36 PM

 

The Internet of Things continues to connect an ever-increasing number of devices. We're heading towards a seamlessly connected world that will have 24 billion IoT devices by 2020. Connected devices are making headway into each and every aspect of our lives, including homes, offices, cars and even cities.

Read More

Topics: Application Security, Application Security Guidelines, cyber security, IOT Security

Vulnerability: XSS in Image Name

Posted by Entersoft Team on Oct 25, 2017 9:54:32 PM
We have frequently come across cross-site scripting vulnerability ( more about XSS ) in input fields where HTML special characters are not sanitized. However, these days most developers are aware of this vulnerability and diligently filter user-supplied inputs in forms and URLs.
Read More

Topics: Application Security, XSS, Cross site scripting, vulnerability

Race Condition Vulnerabilities in Web Applications

Posted by Entersoft Team on Sep 15, 2017 8:14:29 PM

Race conditions in software arise when two concurrent threads of execution access a shared resource in a way that unintentionally produces different results; depending on the time at which the code is executed. For example, a multi-threaded program may spawn 2 threads that have access to the same location in memory.

Read More

Topics: Application Security, Application Security Guidelines, cyber security

Demystifying ARP Spoofing

Posted by Entersoft Team on Sep 11, 2017 10:14:18 PM

 

 What is ARP Poisoning or ARP Spoofing attack?

ARP spoofing attack is an attack in which an attacker sends falsified ARP (Address Resolution Protocol) messages over LAN. As a result, the attacker can link his MAC address with the IP address of a legitimate computer (or server) on the network.

Read More

Topics: Application Security, cyber security, cyber attack

New Attack "XSSJacking" Combines Clickjacking, Pastejacking, and Self-XSS

Posted by Entersoft Team on Aug 22, 2017 10:39:05 PM
Read More

Topics: Application Security, cyber security, cyber attack

New Vulnerability: IoT Devices Compromised by "Rakos"

Posted by Entersoft Team on Aug 8, 2017 10:41:03 PM
Have you been in situations in which you find your IoT devices getting overloaded with networking and computing tasks? If the answer is yes, the chances are high that your devices are Rakos’s latest victims.
Read More

Topics: Application Security, cyber security, IOT Security, cyber attack

IoT Attack Surface Mapping

Posted by Entersoft Team on Jul 17, 2017 5:24:09 PM
Read More

Topics: Android App Security, Application Security, cyber security, IOT Security, Internet of things

New Vulnerability: Raspberry Pi Malware Mines Cryptocurrency

Posted by Entersoft Team on Jul 4, 2017 10:19:51 PM

What is Raspberry Pi?

Read More

Topics: Application Security, cyber security, Hacks and news