Kaspersky Unvalidated redirection flaw exploitable to serve malware

The cyber Security Analyst Consultant at Q-CERT Ebrahim Hegazy has found an Unvalidated Redirection Vulnerability in the website of the giant security solutions vendor Kasperskys website. The vulnerability was reported to Kaspersky web-team and is now fixed. The consequences of unfixing of such vulnerability are critical infection – since the redirection is coming from a trusted source especially if the attacker registered a domain name similar to Karksky.com.”]

Source: https://securityaffairs.co/wordpress/17244/hacking/kaspersky-unvalidated-redirection-flaw-exploitable-to-serve-malware.html

Something Fresh

Zip Codes & PII: Are They Personal Data?

ZeroNet: 51% Attack Risks & Mitigation

Zero Knowledge Voting with Trusted Server

What People Reading

YubiKey Security: Initial Setup with Yubi Cloud

Zero-Day Vulnerabilities: User Defence Guide

Feedback and data-driven updates to Googles disclosure policy

ZAP: Brute Force Passwords

Security Insider Interview Series: John McArthur, Senior Product Manager, IP Intelligence; and Rupert Young, Senior Director Software Engineering, Data Compilation and Identity, Neustar

Categories

Partners

Just add here your partners image or promo text