CVE-2020-25533
Summary: An issue was discovered in Malwarebytes before 4.0 on macOS. A malicious application was able to perform a privileged...
CVE-2020-16119
Summary: Use-after-free vulnerability in the Linux kernel exploitable by a local attacker due to reuse of a DCCP socket with...
CVE-2016-4472
Summary: The overflow protection in Expat is removed by compilers with certain optimization settings, which allows remote attackers to cause...
CVE-2016-5300
Summary: The XML parser in Expat does not use sufficient entropy for hash initialization, which allows context-dependent attackers to cause...
CVE-2018-20843
Summary: In libexpat in Expat before 2.2.7, XML input including XML names that contain a large number of colons could...
Ransomware Group Published More Than 4,000 SEPA’s Files Online
Scottish Environment Protection Agency (SEPA) once again fell victim to the threat actors. Hackers published more than 4,000 files on...
Data Breach: Chipmaker Intel Shares Fall by 9%
The stock of Intel Corp was rallied to close in the last minutes of Thursday 21st January 2021 after the...
ADT Technician Hacks Into Security Footage to Spy on Naked Women
A former ADT technician situated in Dallas has pleaded guilty to secretly accessing the security feed of more than 200...
WSuspicious – A Tool To Abuse Insecure WSUS Connections For Privilege Escalations
This is a proof of concept program to escalate privileges on a Windows host by abusing WSUS. Details in this...
ATMMalScan – Tool for Windows which helps to search for malware traces on an ATM during the DFIR process
ATMMalScan is a commandline tool for Windows operating systems version 7 and higher, which helps to search for malware traces...
Security Affairs newsletter Round 298
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
Chipmaker Intel reveals that an internal error caused a data leak
The chipmaker Intel Corp. revealed that an internal error it the root cause of a data leak, it confirmed that...
ADT employee pleads guilty for accessing cameras installed by the company
A former ADT employee pleads guilty for accessing the cameras he installed at the home of the company’s customers in...
Experts found a vulnerability in the application of the Moscow State Services
Specialists of the company Postuf reported a vulnerability in the application of the Moscow State Services, with which it was...
Location Data of More Than 100 Million Users Got Compromised
Shazam, a popular music app was a doorway to the user’s precise location. Threat actors took advantage of the Shazam...
CBI Booked Firms for Harvesting Data of 5.62 Lakh Indian Facebook Users
The Central Bureau of Investigation (CBI) has lodged a case regarding an unlawful collection of personal information of nearly 5.62...
Xnuspy – An iOS Kernel Function Hooking Framework For Checkra1N’Able Devices
Output from the kernel log after compiling and running example/open1_hook.c xnuspy is a pongoOS module which installs a new system...
Zmap – A Fast Single Packet Network Scanner Designed For Internet-wide Network Surveys
ZMap is a fast single packet network scanner designed for Internet-wide network surveys. On a typical desktop computer with a...
MrbMiner cryptojacking campaign linked to Iranian software firm
Sophos experts believe that an Iranian company is behind a recently uncovered MrbMiner crypto-jacking campaign targeting SQL servers. Sophos researchers...
Security firm SonicWall was victim of a coordinated attack
The Hacker News reported in exclusive that the security firm SonicWall was hacked as a result of a coordinated attack...
FSB warns Russian businesses of cyber attacks as retaliation for SolarWinds hack
Russian authorities are alerting Russian organizations of potential cyberattacks launched by the United States in response to SolarWinds attack. The...
KindleDrip exploit – Hacking a Kindle device with a simple email
KindleDrip: Amazon addressed a number of flaws affecting the Kindle e-reader that could have allowed an attacker to take control...
CVE-2020-28479
Summary: The package jointjs before 3.3.0 are vulnerable to Denial of Service (DoS) via the unsetByPath function. Reference Links(if available):...
CVE-2020-4983
Summary: IBM Spectrum LSF 10.1 and IBM Spectrum LSF Suite 10.2 could allow a user on the local network who...
