cyberalerts

Tier3 Cyber Alerts Service in Pakistan. This service provides subscription to cyber alert mail service which deliver regular cyber alerts generated by Tier3 Systems.These alerts include vulnerabilities and other cyber security issues being faced or reported in Cyber space of Pakistan

August 14, 2017

Pakistani government websites hacked on 70th Independence Day

  In a major hacking attempt Indian hackers on 70th independence day of Pakistan have hacked several government websites and posted Indian flag and Indian anthem, […]
March 10, 2017

Cyber Security and Corporate Governance in Pakistan: The five principles

Cyber Security and Corporate Governance in Pakistan: The five principles every Pakistani corporate director should follow Tier3 is a leading cyber security firm in Pakistan.The Institute […]
February 18, 2017

Zuckerberg publishes a 6,000-word world-saving manifesto

I have long expected more organizations and startups to build health and safety tools using technology, and I have been surprised by how little of what must be built has even been attempted. There is a real opportunity to build global safety infrastructure, and I have directed Facebook to invest more and more resources into serving this need.
February 13, 2017

Hitachi Payment (India) Confirms ATM malware hit

breach at a private bank's ATM network last year that led to 32 lakh debit cards being exposed, forcing banks to replace most of them, has been solved. Hitachi Payment Services — the company to which Yes Bank had outsourced processing of ATM transactions — has said that investigations show that its systems were hit by a sophisticated malware attack and it is not possible to say how many cards' details have been extracted.
February 11, 2017

HACKING CAMPAIGN TARGETING MINISTRY AND EMBASSY SITES

malicious reconnaissance campaign that targets websites. It is unknown what is the intent behind the campaign as of this writing, however, the profile of the targets resembles those that are common targets of Advanced Persistent Threat (APT) actors. As the attack is currently active, it effectively turns compromised sites into attack surfaces against their visitors.
February 2, 2017

Microsoft Power Point 2016, Java Code Execution

If the user have JAVA (or python or similar interpreters) an attacker can insert jar file or py file into the presentation and trigger it when mouse moves, for easier exploitation the attacker can use ppsx file which will load automatically in presentation mode and once the user opens the file and moves mouse it will trigger the payload.
July 26, 2016

http://www.aiou.edu.pk – sql vulnerability

Allama Iqbal Open University website : http://www.aiou.edu.pk/All_Dept_List.asp?dt=1 (GET) vuln type : sql injection submitted by : Waqas Haider Poc : Parameter: dt (GET) Type: stacked queries Title: […]
July 26, 2016

www.hu.edu.pk – Sql Vulnerability

website : www.hu.edu.pk/oldwebsitehu/webtest/view_deg_prog.php?id=1 Vuln type : Sql Injection Submitted by : Waqas Haider POC : Vuln-Parameter: id (GET) Type: AND/OR time-based blind Title: MySQL >= 5.0.12 […]