Code execution bug patched in Imunify360 Linux server security suite

A severe PHP deserialization vulnerability leading to code execution has been patched in Imunify360.  Discovered by Cisco Talos researcher Marcin ‘Icewall’ Noga, the vulnerability “could cause a deserialization condition with…

Imunify360 Bug Leaves Linux Web Servers Open to Code Execution, Takeover

CloudLinux’ security platform for Linux-based websites and web servers contains a high-severity PHP deserialization bug. A high-severity security vulnerability in CloudLinux’s Imunify360 cybersecurity platform could lead to arbitrary code execution…

Tool Release: Serialized Payload Generator

TL;DR: A new tool released https://github.com/NotSoSecure/SerializedPayloadGenerator/ to help with “Serialized Payload Generation” Serialization bugs have been making rounds across the internet. The exploitation of serialization bugs has grown in leaps…

OffSec 2020 Recap

2020 has been quite a year, hasn’t it? It’s been challenging in so many ways, but it was also exciting for us at OffSec. We thrive on bringing new training…

OffSec 2020 Recap

2020 has been quite a year, hasn’t it? It’s been challenging in so many ways, but it was also exciting for us at OffSec. We thrive on bringing new training…