BugCrowd Bug Bounty Disclosure: P5 – Information exposure through Directory Listing – By jaibalaji
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: P5 – CSRF Leads to Logout any Loggedin user from their session – By DeadSniper
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
BugCrowd Bug Bounty Disclosure: P5 – Clickjack Bug in Website – By ethicalpanther
The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct...
LockBit 2.0 Ransomware Victim: multimmobiliare[.]ch
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
LockBit 2.0 Ransomware Victim: schriesheim[.]de
LockBit 2.0 Ransomware NOTE: The information on this page is automated and scraped directly from the LockBit 2.0 Onion Dark...
A week in security (April 18 – 24)
Last week on Malwarebytes Labs: Why you shouldn’t automate your VirusTotal uploadsNorth Korean Lazarus APT group targets blockchain tech companiesWatch out...
Conti Ransomware Victim: https-website
continews NOTE: The information on this page is automated and scraped directly from the Conti .onion Dark Web Tor Blog...
Oracle Critical Patch Update Advisory – April 2022-CVE-2022-21449
NAME Oracle - Multiple Platforms Affected:MultipleRisk Level:mediumCVE Type:Unspecified DESCRIPTION CVE-2022-21449 is an unspecified vulnerability impacting multiple versions of Oracle Java...
Combodo iTop cross-site scripting | CVE-2022-24870
NAME Combodo iTop cross-site scripting Platforms Affected:Combodo iTop 3.0.0-beta Combodo iTop 3.0.0-beta2Risk Level:8.7Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION Combodo iTop is vulnerable to...
ASUS RT-AX88U code execution | CVE-2022-26674
NAME ASUS RT-AX88U code execution Platforms Affected:ASUS RT-AX88U 3.0.0.4.386.4606Risk Level:9.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION ASUS RT-AX88U could allow a remote attacker to...
Combodo iTop cross-site scripting | CVE-2021-41161
NAME Combodo iTop cross-site scripting Platforms Affected:Combodo iTop 3.0.0-beta Combodo iTop 3.0.0-beta2 Combodo iTop 3.0.0-beta3 Combodo iTop 3.0.0-beta4 Combodo iTop...
Combodo iTop cross-site scripting | CVE-2021-41162
NAME Combodo iTop cross-site scripting Platforms Affected:Combodo iTop 3.0.0-beta Combodo iTop 3.0.0-beta2 Combodo iTop 3.0.0-beta3 Combodo iTop 3.0.0-beta4 Combodo iTop...
BlackCat Ransomware gang breached over 60 orgs worldwide
At least 60 entities worldwide have been breached by BlackCat ransomware, warns a flash report published by the U.S. FBI....
Experts warn of a surge in zero-day flaws observed and exploited in 2021
The number of zero-day vulnerabilities exploited in cyberattacks in the wild exploded in the last years, security firm report. Google...
CISA: Google Releases Security Updates for Chrome
Google Releases Security Updates for Chrome Google has released Chrome version 100.0.4896.127 for Windows, Mac, and Linux. This version addresses...
CISA: CISA Releases Secure Cloud Business Applications (SCuBA) Guidance Documents for Public Comment
CISA Releases Secure Cloud Business Applications (SCuBA) Guidance Documents for Public Comment CISA has released draft versions of two guidance...
CISA: Cisco Releases Security Updates for Multiple Products
Cisco Releases Security Updates for Multiple Products Cisco has released security updates to address vulnerabilities in multiple Cisco products. An...
CISA: VMware Releases Security Updates for Cloud Director
VMware Releases Security Updates for Cloud Director VMware has released security updates to address a remote code execution vulnerability in...
CISA: Drupal Releases Security Updates
Drupal Releases Security Updates Drupal has released security updates to address vulnerabilities affecting Drupal 9.2 and 9.3. An attacker could...
CISA: Oracle Releases April 2022 Critical Patch Update
Oracle Releases April 2022 Critical Patch Update Oracle has released its Critical Patch Update for April 2022 to address 520...
CISA: North Korean State-Sponsored APT Targets Blockchain Companies
North Korean State-Sponsored APT Targets Blockchain Companies CISA, the Federal Bureau of Investigation (FBI), and the U.S. Treasury Department have...
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Adds Three Known Exploited Vulnerabilities to Catalog CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog,...
CISA: Russian State-Sponsored and Criminal Cyber Threats to Critical Infrastructure
Russian State-Sponsored and Criminal Cyber Threats to Critical Infrastructure The cybersecurity authorities of the United States, Australia, Canada, New Zealand,...
CISA: FBI Releases IOCs Associated with BlackCat/ALPHV Ransomware
FBI Releases IOCs Associated with BlackCat/ALPHV Ransomware The Federal Bureau of Investigation (FBI) has released a Flash report detailing indicators of...
