Nvidia releases security updates for GPU display driver and vGPU flaws
Nvidia has released security updates to address high-severity vulnerabilities affecting the Nvidia GPU display driver and vGPU software. Nvidia has...
Welcome Bureau of Cyberspace Security and Emerging Technologies (CSET)
United States Department of State approved the creation of the Bureau of Cyberspace Security and Emerging Technologies (CSET). The United...
CVE-2020-13541
Summary: An exploitable local privilege elevation vulnerability exists in the file system permissions of the Mobile-911 Server V2.5 install directory....
CVE-2020-27279
Summary: A NULL pointer deference vulnerability has been identified in the protocol converter. An attacker could send a specially crafted...
CVE-2020-13540
Summary: An exploitable local privilege elevation vulnerability exists in the file system permissions of the Win-911 Enterprise V4.20.13 install directory...
CVE-2020-13539
Summary: An exploitable local privilege elevation vulnerability exists in the file system permissions of the Win-911 Enterprise V4.20.13 install directory...
CVE-2020-36158
Summary: mwifiex_cmd_802_11_ad_hoc_start in drivers/net/wireless/marvell/mwifiex/join.c in the Linux kernel through 5.10.4 might allow remote attackers to execute arbitrary code via a...
Linux machines again targeted by hackers with new memory loader
Linux-based machines are no longer considered a major deterrent for cybercriminal groups, who are embracing the operating system as a...
GeniusU – 1,301,460 breached accounts
In November 2020, a collection of data breaches were made public including the "Entrepreneur Success Platform", GeniusU. Dating back to...
Russian hackers selling program in darknet that bypasses spam protection
The Russian-language Darknet site sells a program that allows you to distribute spam messages bypassing traffic and email protection tools....
Mozilla Firefox Disabling Backspace Key to Prevent Data Loss
Mozilla Firefox is about to disable the browser's backspace key to help users avoid data loss. In 2014, Google Chrome and...
Nissan Source Code Compromised Online Due to Exposed Git Server
Nissan's source code got compromised online after the company left an uncovered Git server secured with default access credentials. This...
British Airways to Pay 3bn Pound as Compensation of the Data Breach
British Airlines broke through the mainstream media with a data breach that affected almost 400,00 customers. This incident happened in...
Ryuk Ransomware: What Can We Learn From DCH Cyberattack?
Hackers have profited a lot from the Covid-19 pandemic by targeting health institutions, let us look back and learn from...
Solarflare – SolarWinds Orion Account Audit / Password Dumping Utility
Credential Dumping Tool for SolarWinds Orion Blog post: https://malicious.link/post/2020/solarflare-release-password-dumper-for-solarwinds-orion/Credit to @asolino, @gentilkiwi, and @skelsec for helping me figuring out DPAPI....
Exif-Gps-Tracer – A Python Script Which Allows You To Parse GeoLocation Data From Your Image Files Stored In A dataset
A python script which allows you to parse GeoLocation data from your Image files stored in a dataset.It also produces...
Unsecured Git server exposed Nissan North America
A misconfigured Git server is the root cause for the leak of source code of mobile apps and internal tools...
Ezuri memory loader used in Linux and Windows malware
Multiple threat actors have recently started using the Ezuri memory loader as a loader to executes malware directly into the...
FBI alert warns private organizations of Egregor ransomware attacks
The US Federal Bureau of Investigation (FBI) issued a security alert warning private sector companies of Egregor ransomware attacks. The...
Ryuk ransomware operations already made over $150M
The Ryuk ransomware had a disruptive impact on multiple industries around the world, operators already earned more than $150 million....
North Korea-linked APT37 targets South with RokRat Trojan
Experts spotted the RokRat Trojan being used by North Korea-linked threat actors in attacks aimed at the South Korean government....
CVE-2018-20314
Summary: Foxit Reader before 9.5, and PhantomPDF before 8.3.10 and 9.x before 9.5, has a proxyCheckLicence race condition that can...
CVE-2018-20313
Summary: Foxit Reader before 9.5, and PhantomPDF before 8.3.10 and 9.x before 9.5, has a proxyPreviewAction race condition that can...
CVE-2018-20312
Summary: Foxit Reader before 9.5, and PhantomPDF before 8.3.10 and 9.x before 9.5, has a proxyDoAction race condition that can...
