SAP addresses a critical flaw in SAP Commerce Product
SAP released seven new security notes on February 2021 Security Patch Day, including a Hot News note for a critical issue affecting...
Anti-malware firm Emsisoft accidentally exposes internal DB
Antivirus firm Emsisoft discloses a data breach, a third-party had access to a publicly exposed database containing technical logs. The...
CVE-2020-14409
Summary: SDL (Simple DirectMedia Layer) through 2.0.12 has an Integer Overflow (and resultant SDL_memcpy heap corruption) in SDL_BlitCopy in video/SDL_blit_copy.c...
CVE-2019-20838
Summary: libpcre in PCRE before 8.43 allows a subject buffer over-read in JIT when UTF is disabled, and \X or...
CVE-2020-17419
Summary: This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Studio Photo 3.6.6.922. User interaction...
CVE-2021-22299
Summary: There is a local privilege escalation vulnerability in some Huawei products. A local, authenticated attacker could craft specific commands...
CVE-2020-17418
Summary: This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Studio Photo 3.6.6.922. User interaction...
What Google learned from 1 billion evil email scams
Google and researchers at Stanford University have released an in-depth study analysing 5 months of phishing / malware mails sent...
Big Patch Tuesday: Microsoft and Adobe fix in-the-wild exploits
Traditionally the second Tuesday of the month is Microsoft’s “patch Tuesday”. This is the day when they roll out all...
Hacker Attacked a Water Plant in Florida
A hacker penetrated computer networks at Oldsmar, Florida, water treatment plant, remotely delivering a 100-fold boost in a chemical that...
Threat Actors Attacked Israeli Tech Giant Ness Digital Engineering for Ransom
Ness Digital Engineering Company, an Israeli-based U.S. IT provider was targeted via ransomware cyberattack affecting computer networks in India, United...
Russian experts spoke about the most common fraud schemes on the Internet
One of the trends of the last year, continuing in 2021, was the exploitation of the COVID-19 theme. Denis Legezo,...
PyPI and GitLab Witness Spam Attacks
The GitLab, a source code hosting website, and the Python Package Index (PyPI) portal both are flooded with advertisements for...
Tokyo Gas Discloses Data Breach Impacting Anime-style Dating Simulation Game
Recently a cyber attack has been reported by Tokyo Gas, the game’s developer and also known as a Japanese...
Patriot-Linux – Host IDS For Desktop Users
Patriot Linux is a HIDS for desktop users who wants real time graphical alerts when something suspicious happens Patriot detect:...
ShellShockHunter – It’s A Simple Tool For Test Vulnerability Shellshock
It's a simple tool for test vulnerability shellshock Autor: MrCl0wnBlog: http://blog.mrcl0wn.comGitHub: https://github.com/MrCl0wnLabTwitter: https://twitter.com/MrCl0wnLabEmail: [email protected] Shellshock (software bug)Shellshock, also known as...
SOAR Tools: What to Look for When Investing in Security Automation Tech
Security orchestration and automation (SOAR) refers to a collection of software solutions and tools that organizations can leverage to streamline...
CD Projekt Red game maker discloses ransomware attack
The gaming firm CD Projekt Red, which developed popular games like Cyberpunk 2077 and The Witcher, has disclosed a ransomware...
Adobe fixes a buffer overflow issue in Reader which is exploited in the wild
Adobe released security patches for 50 flaws affecting six products, including a zero-day flaw in Reader that has been exploited in...
Microsoft February 2021 Patch Tuesday fixes 56 bugs, including an actively exploited Windows zero-day
Microsoft February 2021 Patch Tuesday addresses 56 vulnerabilities, including a flaw that is known to be actively exploited in the...
Ukraine’s police arrested the author of the U-Admin phishing kit
An international operation conducted by Ukraine’s police, along with the US and Australia peers, shut down the world’s largest phishing...
CVE-2021-26570
Summary: The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a local buffer...
CVE-2021-26571
Summary: The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a local buffer...
CVE-2020-9972
Summary: A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 14.0 and iPadOS...
