BeGone is a free online multi-player first person shooter (FPS) game where each team tries to eliminate the opposing team before time runs out. It's a game which can be played from within a user's browser. After playing this game for a while, I became curious if it would be possible to trick the game achievements. Normally [...]
Today a serious issue was discovered, Internet Explorer Arbitrary Code Execution: While browsing the internet I came across a piece of HTML code that is able to run arbitrary code while using Internet Explorer. This was tested on Windows 8.1 with Internet Explorer 11 on a fully patched system. The video demonstrates the arbitrary code [...]
One of our members - __jn - reported that the Technicolor TC7200 is vulnerable to an authentication bypass. After some more digging it was also found that the TC7200 is vulnerable to slow HTTP Denial of Service attacks. Authentication Bypass The problem is that the TC7200 allows any internal user to download the unencrypted gateway [...]
The following video is a presentation by Jacob Applebaum at the 30c3, a detailed technical talk about the tools used by the National Security Agency (NSA) and how they protect and infect our systems. The slides of his presentation can be found here.
As of Internet Explorer 11, Microsoft decided to ignore the Autocomplete=Off setting. This setting tells the browser not to use the store password option in order to protect the user from saving their username and password on their machine. The reason Microsoft did this, is that they think that the user should be in control. I happen [...]