Affordable, manageable, understandable solution for cyber security. Get early access for Product X !
MiniWeb HTTP Server 0-day Vulnerability (CVE-2020-29596)
MiniWeb HTTP Server 0-day Vulnerability (CVE-2020-29596)

MiniWeb is open-source software that often acts as a tiny HTTP server for small systems. The software was developed in C language and received the latest update in 2018. As a result of our researches, we detected the buffer overflow vulnerability in the POST parameter sent to the MiniWeb server. How Did We Detect MiniWeb HTTP Server Buffer Overflow Vulnerability?  As the Security For Everyone team, we regularly look for vulnerabilities in the software we have chosen to find 0-day. One of the software we chose was the MiniWeb HTTP server, which serves as an HTTP server. After deciding…

Read More
Wordpress Security Tips to Protect Your Site
Wordpress Security Tips to Protect Your Site

One of the most tightly protected platforms is WordPress compared to others. However, the saying "no system is secure" is, of course, also valid for WordPress. The more known a platform is, the more people looking for its vulnerabilities will increase, and attackers will found them. If you have built your website on WordPress, this can become one of your biggest concerns as malware can affect your website in various ways. This article will focus on what are the things that make your WordPress not secure, how to secure WordPress site, and WordPress security plugins. What damage can malware do…

Read More
FireEye Hacked
FireEye Hacked

FireEye, one of the world's largest cybersecurity companies, was attacked on December 8, 2020. The attack stated that the company's tools used in Red Team penetration tests and vulnerability assessments were stolen. He also announced that as a result of the attack, data from customers, including governments, was accessed. It was stated that the attack was investigated with other vital partners, including the FBI and Microsoft. While who was behind this incident has not been confirmed yet, FBI deputy director of Cyber Security, Matt Gorham, "The FBI is investigating the incident, and initial findings show a state-sponsored and highly complex…

Read More
The Hidden Threat in Emails: Ransomware
The Hidden Threat in Emails: Ransomware

We know that social engineering attacks are continuously being made by cyber attackers using fake emails. Using fake emails, they can tell you that you won a lottery and ask for money, want you to write your username and password elsewhere or threaten to publish your private and confidential videos and try to earn revenue. I'm sure one or two of them are familiar to you. But are you aware of even more dangerous ransomware software?  There are a few critical features that distinguish ransomware malwares from other malwares. The first is that if your system infected with ransomware, it is impossible for…

Read More