Demo - Information Management Today

Flaw in WordPress ThemeGrill Demo Importer WordPress theme plugin expose 200K+ sites to hack

Security Affairs

FEBRUARY 17, 2020

A serious flaw in the ThemeGrill Demo Importer WordPress theme plugin with over 200,000 active installs can be exploited to wipe sites and gain admin access to the site. Experts from the security firm WebARX have discovered a serious flaw in the WordPress theme plugin ThemeGrill Demo Importer with over 200,000 active installs.

GDPR

GDPR Authentication Access Security

ADVERSARIAL OCTOPUS – ATTACK DEMO FOR AI-DRIVEN FACIAL RECOGNITION ENGINE

Security Affairs

JUNE 22, 2021

ATTACK DEMO. You can see a demo of the ‘Adversarial Octopus’ targeted attack below. Original post at: Face Recognition Attack Demo: Adversarial Octopus. The post ADVERSARIAL OCTOPUS – ATTACK DEMO FOR AI-DRIVEN FACIAL RECOGNITION ENGINE appeared first on Security Affairs. Pierluigi Paganini.

Authentication

Authentication Government IT Security

Demo of AES GCM Misuse Problems

Schneier on Security

JUNE 14, 2024

This is really neat demo of the security problems arising from reusing nonces with a symmetric cipher in GCM mode.

Security

Security Encryption

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

I demoed the new Snap Spectacles, and the future of AR glasses never looked more promising

Collaboration 2.0

OCTOBER 24, 2024

A world where your glasses seamlessly blend digital artifacts over reality may not be far off.

Best Practices for Accelerating the Sales Process

Advertiser: ZoomInfo

Think about it: with outbound prospecting, requests from management, scheduled demos, and inbound calls, chaos can quickly work its way into your strategy, deeming a “speed wins” selling mentality downright ineffective. The bottom line is that, in B2B sales, speed is useless without control.

Sales

'12 Days of OpenAI' promises product launches and demos - here's how to watch

Collaboration 2.0

DECEMBER 4, 2024

Starting tomorrow, OpenAI's daily livestream will unveil "a bunch of new things, big and small."

I wore the new Snap Spectacles, and the AR glasses felt like the future

Collaboration 2.0

OCTOBER 25, 2024

Here's how my demo went. A world where your glasses seamlessly blend digital artifacts over reality may not be far off.

Researchers Describe Windows 11 Preview Scam

Data Breach Today

JULY 27, 2021

And cybercriminals are taking advantage of that, slipping malware to those downloading a fake demo version, according to Kaspersky. Malware Distributed Using Fake Windows Installer Although Microsoft is slated to release the Windows 11 operating system in December, it's already available for a pre-release preview.

IT

'12 Days of OpenAI' product launches and demos start today - here's how to watch

Collaboration 2.0

DECEMBER 5, 2024

OpenAI's daily livestream will unveil "a bunch of new things, big and small," and later today, you can tune into the first one.

How to Package and Price Embedded Analytics

Just by embedding analytics, application owners can charge 24% more for their product. How much value could you add? This framework explains how application enhancements can extend your product offerings. Brought to you by Logi Analytics.

Analytics

I demoed Samsung's new Galaxy AI features - these 3 made my iPhone look bad

Collaboration 2.0

JANUARY 22, 2025

Apple needs to put a pep in its step, because Samsung may have just lapped it with the Galaxy S25 series.

IT

I tried Meta's Horizon Hyperscape demo: Welcome to the metaverse's first holodeck

Collaboration 2.0

SEPTEMBER 30, 2024

With Hyperscape, Meta is turning your smartphone into a powerful VR scanner. Here's how this cutting-edge tech could revolutionize everything from education to real estate.

Education

I tested an ink pen that records your handwriting and makes a digital copy. Spoiler: It works

Collaboration 2.0

JANUARY 10, 2025

I demoed the game-changing device at CES 2025. The Nuwa Pen utilizes three tiny cameras to capture what you write - on paper! - and save your notes in an accompanying app.

Paper

Paper IT

Tianfu Cup 2020 – 5 minutes to hack Windows 10, Ubuntu iOS, VMWare EXSi, and others

Security Affairs

NOVEMBER 9, 2020

11 out of 16 targets cracked with 23 successful demos: Chrome, Safari, FireFox Adobe PDF Reader Docker-CE, VMware EXSi, Qemu, CentOS 8 iPhone 11 Pro+iOS 14, GalaxyS20 Windows 10 2004 TP-Link, ASUS Router — TianfuCup (@TianfuCup) November 8, 2020. Many mature and hard targets have been pwned on this year’s contest.

Security

Security Government Information Security IT

Zoom client for Windows could allow hackers to steal users’Windows password

Security Affairs

APRIL 1, 2020

The latter also created a simple demo of the Zoom UNC path injection issue. I made a simple demo of the latest Zoom UNC Path Injection Vulnerability, Take care and don't click on ANY UNC Path hyperlinks! The screen shot below shows an example UNC path link and the credentials being exposed (redacted).

Passwords

Passwords Communications Privacy Security

One Malicious Link Unlocks Alexa's Voice History

Data Breach Today

AUGUST 17, 2020

Amazon Has Patched the Issues, Says Demo Video Is Misleading Researchers at Check Point developed a one-click attack against Amazon's popular voice-controlled assistant Alexa that could reveal a user's voice history or personal information. Amazon has fixed the web application security flaws but says Check Point's demo video is misleading.

Security

I demoed Lenovo's auto-swiveling ThinkBook at IFA 2024, and it's as bizarre as it sounds

Collaboration 2.0

SEPTEMBER 5, 2024

Lenovo's new Intel ThinkBooks can rotate 270 degrees and open and close on their own, raising some interesting questions -- good and bad.

IT

Magnify your screen and more with PowerToys' new ZoomIt tool - here's how

Collaboration 2.0

FEBRUARY 3, 2025

A handy tool for presentations, demos and even accessibility, ZoomIt lets you zoom in on the screen, mark up the current page, and even capture your screen activity.

Access

Black Hat 2022 Opens Today With Focus on Emerging Threats

Data Breach Today

AUGUST 10, 2022

Ransomware, New Tactics and Geopolitical Threats Among the Key Conference Topics Black Hat 2022 kicks off today with security experts sharing cutting-edge research and insights through demos, technical trainings and hands-on labs.

Ransomware

Ransomware Risk Security

I demoed this rare tri-foldable phone at MWC - it gave me glimpse at Samsung's next big thing

Collaboration 2.0

MARCH 6, 2025

The Tecno tri-fold is real and even comes with pre-installed Google apps. While there's no launch date yet, I'm hoping Tecno reveals one soon - here's why.

IT

A zero-day flaw allows to run arbitrary commands on macOS systems

Security Affairs

SEPTEMBER 21, 2021

” The researcher also PoC exploit code for this issue and a video demo: According to BleepingComputer , at the time of this writing, the PoC code has a detection rate of zero VirusTotal. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini. SecurityAffairs – hacking, zero-day).

Security

Security IT Information Security

AI in the Real World

AIIM

NOVEMBER 21, 2023

Recently, I was lucky enough to be part of a networking group that got to see a real world demo of Chat GPT in a highly practical use case. The demo sparked great conversations about what various organizations are doing with pre-trained Large Language Model tools like those provided by Open AI and Microsoft.

Artificial Intelligence

Artificial Intelligence IT

Google releases Spectre PoC code exploit for Chrome browser

Security Affairs

MARCH 14, 2021

Below the description of the demo published on a site set up by Google to host the PoC code. “This demo is split into three parts: Calibrating the timer to observe side effects of the CPU’s speculative execution. A demonstration that infers the memory layout of a JavaScript array.

Metadata

Metadata Encryption Authentication Security

FragAttacks vulnerabilities expose all WiFi devices to hack

Security Affairs

MAY 12, 2021

“As the demo illustrates, the Wi-Fi flaws can be abused in two ways. In the demo above, this is illustrated by remotely controlling a smart power plug and by taking over an outdated Windows 7 machine. Vanhoef pointed out that only NetBSD and OpenBSD were not impacted because they do not support the reception of A-MSDUs.

Encryption

Encryption Paper Security Authentication

Vulnerabilities in car alarm systems exposed 3 million cars to hack

Security Affairs

MARCH 9, 2019

Both products allow anyone to create a test/demo account. With that demo account it’s possible to access any genuine account and retrieve their details, ” states Pen Test Partners. Experts also discovered that it was possible for both car alarm systems to create a test account that they used to hack into a genuine account.

Authentication

Authentication IoT Manufacturing Passwords

[Live Demo] Ridiculously Easy Security Awareness Training and Phishing

KnowBe4

JULY 9, 2024

Old-school awareness training does not hack it anymore. Your email filters have an average 7-10% failure rate; you need a strong human firewall as your last line of defense.

Security awareness

Security awareness Phishing Security IT

Researcher hacked Apple AirTag two weeks after its launch

Security Affairs

MAY 11, 2021

Built a quick demo: AirTag with modified NFC URL (Cables only used for power) pic.twitter.com/DrMIK49Tu0 — stacksmashing (@ghidraninja) May 8, 2021. After hours of trying (and bricking 2 AirTags) I managed to break into the microcontroller of the AirTag! /cc

IT

IT Security Access Cybersecurity

[Live Demo] Ridiculously Easy Security Awareness Training and Phishing

KnowBe4

AUGUST 31, 2023

Old-school awareness training does not hack it anymore. Your email filters have an average 7-10% failure rate; you need a strong human firewall as your last line of defense.

Security awareness

Security awareness Phishing Security IT

[Live Demo] Ridiculously Easy Security Awareness Training and Phishing

KnowBe4

SEPTEMBER 29, 2023

Old-school awareness training does not hack it anymore. Your email filters have an average 7-10% failure rate; you need a strong human firewall as your last line of defense.

Security awareness

Security awareness Phishing Security IT

VMware fixed critical VM Escape bug demonstrated at Geekpwn hacking contest

Security Affairs

DECEMBER 13, 2022

Here is my demo of the VM escape exploit on the latest version of VMware Fusion along with ESXi and Workstation. A working exploit for the CVE-2022-31705 vulnerability was demonstrated by Ant Security researcher Yuhao Jiang during the Geekpwn, a hacking contest run by the Tencent Keen Security Lab.

Authentication

Authentication Access Security IT

[Live Demo] Ridiculously Easy Security Awareness Training and Phishing

KnowBe4

NOVEMBER 29, 2023

Old-school awareness training does not hack it anymore. Your email filters have an average 7-10% failure rate; you need a strong human firewall as your last line of defense.

Security awareness

Security awareness Phishing Security IT

[Live Demo] Ridiculously Easy Security Awareness Training and Phishing

KnowBe4

OCTOBER 26, 2023

Old-school awareness training does not hack it anymore. Your email filters have an average 7-10% failure rate; you need a strong human firewall as your last line of defense.

Security awareness

Security awareness Phishing Security IT

[Live Demo] Ridiculously Easy Security Awareness Training and Phishing

KnowBe4

JANUARY 4, 2024

Old-school awareness training does not hack it anymore. Your email filters have an average 7-10% failure rate; you need a strong human firewall as your last line of defense.

Security awareness

Security awareness Phishing Security IT

[Live Demo] Ridiculously Easy Security Awareness Training and Phishing

KnowBe4

JUNE 6, 2022

Old-school awareness training does not hack it anymore. Your email filters have an average 7-10% failure rate; you need a strong human firewall as your last line of defense.

Security awareness

Security awareness Phishing Security IT

[Live Demo] Customizing Your Compliance Training to Increase Effectiveness

KnowBe4

OCTOBER 27, 2023

Linking compliance training to specific outcomes is hard. Compliance training has a reputation for being challenging for organizations to offer, difficult to do right and employees are not engaged.

Compliance

Google addressed another Chrome zero-day exploited at Pwn2Own in March

Security Affairs

APRIL 3, 2024

Palo Alto Networks security researchers Edouard Bochin and Tao Yan demoed the zero-day on the second day of Pwn2Own Vancouver 2024 to defeat V8 hardening. The exploitation can lead to the disclosure of sensitive information or a crash. “The Stable channel has been updated to 123.0.6312.105/.106/.107

Access

Access Security IT Information Security

Video model Sora drops on day 3 of OpenAI's 12 days of products and demos

Collaboration 2.0

DECEMBER 9, 2024

The OpenAI daily live stream is unveiling 'new things, big and small.' With the holiday season upon us, many companies are finding ways to take

Artificial Intelligence

YouTube creators’ accounts hijacked with cookie-stealing malware

Security Affairs

OCTOBER 20, 2021

a demo for anti-virus software, VPN, music players, photo editing or online games) to hijack the channel of YouTube creators. According to Google’s Threat Analysis Group (TAG) researchers, who spotted the campaign, the attacks were launched by multiple hack-for-hire actors recruited on Russian-speaking forums.

Phishing

Phishing Archiving Encryption Passwords

M1RACLES, the unpatchable bug that impacts new Apple M1 chips

Security Affairs

MAY 27, 2021

A demo app to access this register is available here.” This is a per-cluster register that can be simultaneously accessed by all cores in a cluster. This makes it a two-bit covert channel that any arbitrary process can use to exchange data with another cooperating process. ” said Hector Martin.

Access

Access Risk Security IT

[Live Demo] Customizing Your Compliance Training to Increase Effectiveness

KnowBe4

JANUARY 31, 2024

Linking compliance training to specific outcomes is hard. Compliance training has a reputation for being challenging for organizations to offer, difficult to do right and employees are not engaged.

Compliance

Adobe fixes critical flaws in Magento, patch it immediately

Security Affairs

AUGUST 11, 2021

Yes – the demo is short enough to fit in a tweet.” . “One interesting bug being fixed here is CVE-2020-9697, which was found by ZDI Vulnerability Analysis Manager Abdul-Aziz Hariri. The reliable info disclosure leak appears to have existed for more than a decade. ” states the zero-day initiative.

IT

IT Authentication Security Cybersecurity

A Google Drive weakness could allow attackers to serve malware

Security Affairs

AUGUST 23, 2020

.” The researchers reported the issue to Google and shared his findings with TheHackerNews that published the following videos that show how to exploit the weakness. ” reads the post published by THN.

Phishing

Phishing Authentication Cloud IT

Phemedrone info stealer campaign exploits Windows smartScreen bypass

Security Affairs

JANUARY 15, 2024

After public disclosure of the vulnerability, multiple demos and proof-of-concept codes have been published on social media. This flaw can be exploited in phishing campaigns to evade user prompts that warn recipients about opening a malicious document.

Archiving

Archiving Phishing Ransomware Cloud

[Live Demo] Ridiculously Easy Security Awareness Training and Phishing

KnowBe4

FEBRUARY 1, 2024

Old-school awareness training does not hack it anymore. Your email filters have an average 7-10% failure rate; you need a strong human firewall as your last line of defense.

Security awareness

Security awareness Phishing Security IT

Flaw in WordPress ThemeGrill Demo Importer WordPress theme plugin expose 200K+ sites to hack

ADVERSARIAL OCTOPUS – ATTACK DEMO FOR AI-DRIVEN FACIAL RECOGNITION ENGINE

Webinars

Trending Sources

Demo of AES GCM Misuse Problems

Webinars

I demoed the new Snap Spectacles, and the future of AR glasses never looked more promising

Best Practices for Accelerating the Sales Process

'12 Days of OpenAI' promises product launches and demos - here's how to watch

I wore the new Snap Spectacles, and the AR glasses felt like the future

Researchers Describe Windows 11 Preview Scam

'12 Days of OpenAI' product launches and demos start today - here's how to watch

How to Package and Price Embedded Analytics

I demoed Samsung's new Galaxy AI features - these 3 made my iPhone look bad

I tried Meta's Horizon Hyperscape demo: Welcome to the metaverse's first holodeck

I tested an ink pen that records your handwriting and makes a digital copy. Spoiler: It works

Tianfu Cup 2020 – 5 minutes to hack Windows 10, Ubuntu iOS, VMWare EXSi, and others

Zoom client for Windows could allow hackers to steal users’Windows password

One Malicious Link Unlocks Alexa's Voice History

I demoed Lenovo's auto-swiveling ThinkBook at IFA 2024, and it's as bizarre as it sounds

Magnify your screen and more with PowerToys' new ZoomIt tool - here's how

Black Hat 2022 Opens Today With Focus on Emerging Threats

I demoed this rare tri-foldable phone at MWC - it gave me glimpse at Samsung's next big thing

A zero-day flaw allows to run arbitrary commands on macOS systems

AI in the Real World

Google releases Spectre PoC code exploit for Chrome browser

FragAttacks vulnerabilities expose all WiFi devices to hack

Vulnerabilities in car alarm systems exposed 3 million cars to hack

[Live Demo] Ridiculously Easy Security Awareness Training and Phishing

Researcher hacked Apple AirTag two weeks after its launch

[Live Demo] Ridiculously Easy Security Awareness Training and Phishing

[Live Demo] Ridiculously Easy Security Awareness Training and Phishing

VMware fixed critical VM Escape bug demonstrated at Geekpwn hacking contest

[Live Demo] Ridiculously Easy Security Awareness Training and Phishing

[Live Demo] Ridiculously Easy Security Awareness Training and Phishing

[Live Demo] Ridiculously Easy Security Awareness Training and Phishing

[Live Demo] Ridiculously Easy Security Awareness Training and Phishing

[Live Demo] Customizing Your Compliance Training to Increase Effectiveness

Google addressed another Chrome zero-day exploited at Pwn2Own in March

Video model Sora drops on day 3 of OpenAI's 12 days of products and demos

YouTube creators’ accounts hijacked with cookie-stealing malware

M1RACLES, the unpatchable bug that impacts new Apple M1 chips

[Live Demo] Customizing Your Compliance Training to Increase Effectiveness

Adobe fixes critical flaws in Magento, patch it immediately

A Google Drive weakness could allow attackers to serve malware

Phemedrone info stealer campaign exploits Windows smartScreen bypass

[Live Demo] Ridiculously Easy Security Awareness Training and Phishing

Stay Connected