CVE-2021-3246
Summary: A heap buffer overflow vulnerability in msadpcm_decode_block of libsndfile 1.0.30 allows attackers to execute arbitrary code via a crafted...
CVE-2021-3246
Summary: A heap buffer overflow vulnerability in msadpcm_decode_block of libsndfile 1.0.30 allows attackers to execute arbitrary code via a crafted...
CVE-2017-12613
Summary: When apr_time_exp*() or apr_os_exp_time*() functions are invoked with an invalid month field value in Apache Portable Runtime APR 1.6.2...
CVE-2020-21684
Summary: A global buffer overflow in the put_font in genpict2e.c of fig2dev 3.2.7b allows attackers to cause a denial of...
CVE-2021-28216
Summary: BootPerformanceTable pointer is read from an NVRAM variable in PEI. Recommend setting PcdFirmwarePerformanceDataTableS3Support to FALSE. Reference Links(if available): https://bugzilla.tianocore.org/show_bug.cgi?id=2957...
ESET: 77% of Russian residents believe they are being tracked via their smartphones
According to a survey conducted by ESET, a company specializing in anti-virus software development and protection against cyberthreats, most Russians...
Hackers Publish Classified Documents Stolen from Lithuanian Ministry of Foreign Affairs
The Lithuanian Ministry of Foreign Affairs has refused to comment regarding the credibility of e-mail files allegedly stolen from its...
Supply Chain Attacks Using Container Images
According to cybersecurity firm Aqua Security, a recently discovered crypto mining technique used malicious Docker images to takeover companies' computing...
Researchers Uncovered Russian Spy Agencies Targeting Slovak Government
For months, the Slovak government has been targeted by a cyber-espionage group associated with a Russian intelligence agency, Slovak security...
Microsoft Azure Credentials Exposed in Plaintext by Windows 365
Mimikatz has been used by a vulnerability researcher to dump a user's unencrypted plaintext Microsoft Azure credentials from Microsoft's new...
Raider – Web Authentication Testing Framework
This is a framework designed to test authentication for web applications. While web proxies like ZAProxy and Burpsuite allow authenticated...
Tko-Subs – A Tool That Can Help Detect And Takeover Subdomains With Dead DNS Records
This tool allows: To check whether a subdomain can be taken over because it has: a dangling CNAME pointing to...
Security Affairs newsletter Round 327
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free...
Glowworm Attack allows sound recovery via a device’s power indicator LED
The Glowworm attack leverages optical emanations from a device’s power indicator LED to recover sounds from connected peripherals and spy...
Four years after its takedown, AlphaBay marketplace revamped
The popular black marketplace AlphaBay is back, four years after law enforcement agencies took down the popular hidden service. The darknet marketplace...
Classified documents from Lithuanian Ministry of Foreign Affairs are available for sale
Emails allegedly stolen from the Lithuanian Ministry of Foreign Affairs are available for sale in a cybercrime forum, some emails...
CVE-2020-22023
Summary: A heap-based Buffer Overflow vulnerabililty exists in FFmpeg 4.2 in filter_frame at libavfilter/vf_bitplanenoise.c, which might lead to memory corruption...
CVE-2020-22025
Summary: A heap-based Buffer Overflow vulnerability exists in gaussian_blur at libavfilter/vf_edgedetect.c, which might lead to memory corruption and other potential...
CVE-2020-22031
Summary: A Heap-based Buffer Overflow vulnerability exists in FFmpeg 4.2 at libavfilter/vf_w3fdif.c in filter16_complex_low, which might lead to memory corruption...
CVE-2020-22032
Summary: A heap-based Buffer Overflow vulnerability exists FFmpeg 4.2 at libavfilter/vf_edgedetect.c in gaussian_blur, which might lead to memory corruption and...
CVE-2020-22036
Summary: A heap-based Buffer Overflow vulnerability exists in FFmpeg 4.2 in filter_intra at libavfilter/vf_bwdif.c, which might lead to memory corruption...
‘DeepBlueMagic’ – Newly Discovered Ransomware With Unique Modus Operandi
Heimdal Security researchers have unearthed a new ransomware strain along with a ransomware note, signed by a group calling itself...
Cyber Criminals Using a New Darknet Tool to Escape Detection
There has been an ongoing war between criminals and authorities in cyberspace for years. Although cryptocurrencies are anonymous in nature,...
Snake Keylogger: Enters Top 10 List for the Most Prominent Malwares
Check Point Research reveals that for straight three months the Trickbot is by far the most common malware, whereas, for...
