VLC Player Enables Hackers To Stream Malicious Video To Your PC - Risk to 200 Million Computers


Serious flaws in VLC Media Player allow attackers to load specially crafted video files into a vulnerable system and execute arbitrary code. It's time for hackers to hack your PC using malformed video files.

The two vulnerabilities that allow attackers to execute untrusted video files on systems running vulnerable VLC media player have been fixed by VideoLAN in a security update for VLC Media Player.

The VideoLAN project created the open source, cross-platform VLC media player, which supports streaming media.
More than 200 million people have downloaded VLC Player worldwide, and it is installed on hundreds of millions of computers running Windows, iOS, Android, and Mac.
Zhangyang from Hackerone and Symeon Paraschoudis from pentest partners found and reported two vulnerabilities.

According to Symantec's cybersecurity specialists, the Windows operating system is being used by the Chinese hacking group Cicada (also known as Stone Panda or APT10) to spread malware that is used to spy on governments and other related organizations. Cicada has also targeted businesses in the legal and nonprofit sectors as well as institutions with ties to religion. With targets in the United States, Canada, Hong Kong, Turkey, Israel, India, Montenegro, and Italy, the hackers have cast a wide net.

Obtaining a clean copy of VLC, Cicada, according to Symantec, drops a malicious file alongside the media player's export options. Hackers frequently use this method to embed malware in software that is otherwise trustworthy. Cicada then fully owns the compromised system using a VNC remote-access server.

Comments

Post a Comment

Popular posts from this blog

The Positive Power of Deepfake Technology

Image
Deepfake  the word itself conjures images of malicious misinformation and celebrity puppetry.  But beneath the dark headlines lies a technology brimming with potential for good.  Yes,  deepfake can be misused,  but let's not overlook their ability to revolutionize fields like education,  accessibility,  and even art. 1. Educational Adventures Through Time:   Imagine history coming alive,  not just in dusty textbooks,  but on your screen.  Deepfake can recreate historical figures,  placing them right in the classroom.  Witness Julius Caesar address the Roman Senate,  or watch Marie Curie explain her groundbreaking discoveries in her own voice.  Interactive learning takes on a whole new meaning when the past walks into the present. 2. Breaking the Language Barrier: Deepfake can translate spoken word in real-time,  making communication seamless across borders.  Imagine a world where a scientist in Jap...
Read more

World's Largest Digital Camera Takes 3200 Megapixel Photos! (LSST) Large Synoptic Survey Telescope

Image
The Large Synoptic Survey Telescope (LSST) is a revolutionary telescope designed to study the universe and help us understand its mysteries. It is currently under construction and is expected to begin scientific operations in 2023. The LSST will be one of the most powerful telescopes in the world, capable of capturing images of the entire visible sky every few nights. The LSST will be located in Chile, at an altitude of 8,800 feet in the foothills of the Andes Mountains. It will have an 8.4-meter primary mirror, making it one of the largest telescopes in the world. The telescope's wide field of view and the high resolution will allow it to capture unprecedented images of the night sky. One of the primary objectives of the LSST is to study dark matter and dark energy, two of the most mysterious and elusive components of the universe. Dark matter makes up a significant portion of the universe's mass, but we cannot see it directly. Dark energy is believed to be the force responsi...
Read more

Get Free Quill Bot Free Premuim Account ( Ghansham Amrani )

How to get free Quill Bot Premium Free Account 2022 Open the Quill Bot website and test some with text file, In normal  free account you have some limited acces to Paragraph, check spelling , check grammer mistakes  paraphrasing and summarizing etc. This Software seems, by all accounts, to be a straightforward program, however it isn't. It has a strong rewording motor, first of all. It permits clients to look for data from any source and returns a great many outcomes from different sources. QuillBot likewise gives the client a simple to-utilize and helpful program for summing up or rehashing data. Assuming you've at any point considered how a straightforward PC program can turn out to be so strong, look no farther than QuillBot. QuillBot will be better perceived assuming you read a QuillBot audit. QuillBot has four unique sorts of choices and three primary capacities. The first is alluded to as "summarizing." This is a to some degree keen web search tool. It can...
Read more