Three UEFI Firmware flaws found in tens of Lenovo Notebook models
IT giant Lenovo released security fixes to address three vulnerabilities that impact the UEFI firmware shipped with over 70 product...
Bypass-Url-Parser – Tool That Tests Many URL Bypasses To Reach A 40X Protected Page
Tool that tests MANY url bypasses to reach a 40X protected page. If you wonder why this code is nothing...
Cobalt Stike Beacon Detected – 81[.]68[.]122[.]239:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 159[.]75[.]33[.]64:4433
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 47[.]110[.]90[.]89:4443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Stike Beacon Detected – 152[.]89[.]252[.]108:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Insecure password leads to Mangatoon data breach
The hugely popular Manga comics platform Mangatoon has fallen victim to a data breach. No fewer than 23 million user...
PyPI starts rolling out required 2FA for important projects
The Python Package Index (PyPI) says it has begun rolling out a two-factor authentication (2FA) requirement which enforces maintainers of...
Microsoft Windows Graphics code execution | CVE-2022-30221
NAME Microsoft Windows Graphics code execution Platforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows 7 SP1 x64 Microsoft Windows 8.1...
Samsung Mobile devices security bypass | CVE-2022-33702
NAME Samsung Mobile devices security bypass Platforms Affected:Samsung Q 10.0 Samsung R 11 Samsung S 12.0Risk Level:8.4Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION Samsung...
Microsoft Windows Client/Server Runtime Subsystem Service privilege escalation | CVE-2022-22026
NAME Microsoft Windows Client/Server Runtime Subsystem Service privilege escalation Platforms Affected:Microsoft Windows 7 SP1 x32 Microsoft Windows 7 SP1 x64...
SAP BusinessObjects Business Intelligence Platform information disclosure | CVE-2022-35228
NAME SAP BusinessObjects Business Intelligence Platform information disclosure Platforms Affected:SAP BusinessObjects Business Intelligence Platform 420 SAP BusinessObjects Business Intelligence Platform...
HUAWEI EMUI/Magic UI buffer overflow | CVE-2022-34740
NAME HUAWEI EMUI/Magic UI buffer overflow Platforms Affected:Huawei EMUI 11.0.0 Huawei Magic UI 4.0.0 Huawei EMUI 11.0.1 Huawei EMUI 12.0.0Risk...
HUAWEI EMUI/Magic UI buffer overflow | CVE-2022-34741
NAME HUAWEI EMUI/Magic UI buffer overflow Platforms Affected:Huawei EMUI 11.0.0 Huawei Magic UI 4.0.0 Huawei EMUI 11.0.1 Huawei EMUI 12.0.0Risk...
Samsung Mobile devices privilege escalation | CVE-2022-33704
NAME Samsung Mobile devices privilege escalation Platforms Affected:Samsung Q 10.0 Samsung R 11 Samsung S 12.0Risk Level:8.4Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION Samsung...
Microsoft Azure Site Recovery privilege escalation | CVE-2022-33674
NAME Microsoft Azure Site Recovery privilege escalation Platforms Affected:Microsoft Azure Site Recovery VMWare to AzureRisk Level:8.3Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION Microsoft Azure...
Microsoft Windows Network File System code execution | CVE-2022-22029
NAME Microsoft Windows Network File System code execution Platforms Affected:Microsoft Windows Server 2012 Microsoft Windows Server 2012 R2 Microsoft Windows...
Microsoft Windows Shell code execution | CVE-2022-30222
NAME Microsoft Windows Shell code execution Platforms Affected:Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft Windows 10 1809 for...
Microsoft Windows Remote Procedure Call Runtime code execution | CVE-2022-22038
NAME Microsoft Windows Remote Procedure Call Runtime code execution Platforms Affected:Microsoft Windows Server 2012 Microsoft Windows 8.1 x32 Microsoft Windows...
Microsoft Windows Server Service Tampering | CVE-2022-30216
NAME Microsoft Windows Server Service Tampering Platforms Affected:Microsoft Windows 10 20H2 for 32-bit Systems Microsoft Windows 10 20H2 for ARM64-based...
Samsung Mobile devices privilege escalation | CVE-2022-33703
NAME Samsung Mobile devices privilege escalation Platforms Affected:Samsung Q 10.0 Samsung R 11 Samsung S 12.0Risk Level:8.4Exploitability:UnprovenConsequences:Gain Privileges DESCRIPTION Samsung...
HIVE Ransomware Victim: Yurtiçi Kargo
HIVE Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
Large-scale AiTM phishing campaign targeted +10,000 orgs since 2021
A large-scale phishing campaign used adversary-in-the-middle (AiTM) phishing sites to hit more than 10,000 organizations Microsoft observed a large-scale phishing campaign...
HIVE Ransomware Victim: SuperAlloy Industrial Co[.], Ltd[.]
HIVE Ransomware NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating to the content of...
