#DigitalSignatures

Alert: HotPage Adware Disguised as Ad Blocker Installs Malicious Kernel Driver

by

July 18, 2024 at 09:45AM Cybersecurity researchers have discovered an adware called HotPage, capable of running arbitrary code on Windows hosts. The malware intercepts and modifies browser traffic, displaying ads and redirecting webpages. It exfiltrates system information to a Chinese company’s server and exploits a Microsoft Windows policy loophole. HotPage’s kernel component is signed by … Read more

PuTTY SSH client flaw allows recovery of cryptographic private keys

by

April 16, 2024 at 11:07AM The PuTTY version 0.68 through 0.80 contains a vulnerability (CVE-2024-31497) that could allow attackers with access to 60 cryptographic signatures to recover the private key used for their generation. It affects systems using ECDSA keys and could be exploited to gain unauthorized access to SSH servers or sign commits as … Read more