Cyber Threat Intelligence – Alerts

  Website : https://www.24hours.pk Bug : Reflected XSS ( Cross site scripting) Submitted By  : Haq Khokhar ( https://twitter.com/Abdulhaqkhokhar ) Location/ URL  :   https://www.24hours.pk/deals/search Vulnerable Field : Search bar Steps to Reproduce : 1)Goto : https://www.24hours.pk and select […]

Controversial Cyber Crime Bill Pakistan approved by NA The controversial Prevention of Electronic Crimes Bill 2015 was approved in the National Assembly (NA) on Wednesday. The bill must be approved by Senate before it can […]

Cyber Alert eduvision.edu.pk – XSS Vulnerability   EduVision-A project of ease foundation. Eduvision is Pakistan’s largest educational Information website offering Program Finder, Admission Updates, My College, MY Career, On-line counselling and Merit calculators. 11 April, […]

FOR MOST OF the past six weeks, the biggest story out of Silicon Valley was Apple’s battle with the FBI over a federal order to unlock the iPhone of a mass shooter. The company’s refusal […]

Panama Papers –  IT Security and Pakistan While Politicians around the world and specially in Pakistan are busy “point scoring” against each other on basis of revelations in Mossack Fonseca’s Leaks or popularly known as […]

Access Control – Accountability – Analytical Model – Asset – Attack – Attribute Audit – Audit Scope – Authentication – Authenticity – Availability – Base Measure Business Continuity – Competence – Confidentiality – Conformity – […]

  Data Breach Alert web address : http://energy.pec.org.pk/ Breach Date : MAR 6TH, 2016 pastebin link : http://pastebin.com/sEznQigs Admin details Username: admin Password: energy211 Users details http://energy.pec.org.pk/si.php Username|password shvenergy|supergas1 cupid|aa ABC|ABC XYZ|XYZ PEC|pec heeco|heeco dea123|dea786 fbhutta|algemine56 m.ashraf|paksolar7889 […]

Description : safeguard.com.pk Safeguard is a leading antibacterial soap in Pakistan. Safeguard is a leading antibacterial soap in Pakistan. Vulnerability Type : xss Notification & Disclosure Timeline 28 January, 2016 at 13:12 GMT Vulnerability reported 28 […]