CVE-2021-26572
Summary: The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a local buffer...
CVE-2020-27904
Summary: A logic issue existed resulting in memory corruption. This was addressed with improved state management. This issue is fixed...
Hackers try to poison Florida City’s drinking water
The FBI, the Secret Service, and the Pinellas County Sheriff’s Office are currently investigating an attempted poisoning of a city...
Cyberpunk 2077 developer hit by ransomware
CD PROJEKT RED, the game developer behind Cyberpunk 2077, announced earlier on Twitter that it has fallen victim to a...
Russia will adopt the state OpenRAN standards for the development of 5G
Already in the spring in Russia, within the framework of import substitution, national standards for telecommunication equipment Open Radio Access...
Discord Cryptoscam: Scammers Lure Players to Fake Cryptocurrency Exchange Site
Experts at Kaspersky have issued a warning alarming that hackers are attacking Discord users, with a scam that focuses on...
Threat Actors are Targeting Users Via New Phishing Campaign
Threat actors are using Morse code – ‘the novel obfuscation technique’ for targeted phishing campaigns. This technique is known for...
Almost 80% Of Indians Consider Moving To Alternatives After “Take It or Leave It Policy” WhatsApp
WhatsApp, the most popular messaging platform is suffering from the biggest storm with its users because of its new...
Medical Records of Two US Based Hospitals Leaked on Dark Web
Two major US hospitals, the Leon Medical Centers in Miami, and Nocona General Hospital in Texas have recently been hit...
Cypher – Crypto Cipher Encode Decode Hash
All in one tools for CRYPTOLOGY. Instagram: Capture the RootScreenshotsHow to use FeaturesThis tool include: HASH RSA XOR AES (ECC)...
ATTPwn – Tool Designed To Emulate Adversaries
ATTPwn is a computer security tool designed to emulate adversaries. The tool aims to bring emulation of a real threat...
Patch Tuesday – February 2021
The second Patch Tuesday of 2021 is relatively light on the vulnerability count, with 64 CVEs being addressed across the...
Critical flaws in NextGen Gallery WordPress plugin still impact over 500K installs
The development team behind the NextGen Gallery plugin has addressed two severe CSRF vulnerabilities that could have allowed site takeover....
Microsoft to notify Office 365 users of nation-state attacks
Microsoft implements alerts for ‘nation-state activity’ in the Defender for Office 365 dashboard, to allow organizations to quickly respond. Since...
Hackers attempted to poison the water supply of a US city
Pinellas Sheriff revealed that attackers tried to raise levels of sodium hydroxide, by a factor of more than 100, in...
Google launches Open Source Vulnerabilities (OSV) database
Google announced the launch of OSV (Open Source Vulnerabilities), a vulnerability database and triage infrastructure for open source projects. Google...
CVE-2020-13579
Summary: An exploitable integer overflow vulnerability exists in the PlanMaker document parsing functionality of SoftMaker Office 2021’s PlanMaker application. A...
CVE-2018-17095
Summary: An issue has been discovered in mpruett Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0....
CVE-2020-1967
Summary: Server or client applications that call the SSL_check_chain() function during or after a TLS 1.3 handshake may crash due...
CVE-2020-27222
Summary: In Eclipse Californium version 2.3.0 to 2.6.0, the certificate based (x509 and RPK) DTLS handshakes accidentally fails, because the...
CVE-2020-12525
Summary: M&M Software fdtCONTAINER Component in versions below 3.5.20304.x and between 3.6 and 3.6.20304.x is vulnerable to deserialization of untrusted...
Android devices caught in Matryosh botnet
Researchers at Netlab have discovered a new botnet that re-uses the Mirai framework to pull vulnerable Android devices into DDoS...
How NOT to fail at PDF redaction
The heated spat between Europe and AstraZeneca over a contract has segued into an unexpected blunder that left many of...
A week in security (February 1 – February 7)
Last week on Malwarebytes Labs, we dug into a load of security events. We first peered into how Fonix ransomware...
