Google addresses a high severity flaw in V8 engine in Chrome
Google released updates for Chrome 90 that address a new serious issue, tracked as CVE-2021-21227, in the V8 JavaScript engine...
UK rail network Merseyrail hit by ransomware gang
UK rail network Merseyrail was hit by a cyberattack, ransomware operators breached the corporate email system to disclose the attack...
Cloud misconfiguration, a major risk for cloud security
Misconfigured cloud-based databases continue to cause data breaches, millions of database servers are currently exposed across cloud providers. Fugue’s new State...
FBI shares with HIBP 4 million email addresses involved in Emotet attacks
The FBI has shared with Have I Been Pwned service 4 million email addresses collected by Emotet botnet and employed...
CVE-2021-3506
Summary: An out-of-bounds (OOB) memory access flaw was found in fs/f2fs/node.c in the f2fs module in the Linux kernel in...
CVE-2020-23921
Summary: An issue was discovered in fast_ber through v0.4. yy::yylex() in asn_compiler.hpp has a heap-based buffer over-read. Reference Links(if available):...
CVE-2021-21207
Summary: Use after free in IndexedDB in Google Chrome prior to 90.0.4430.72 allowed an attacker who convinced a user to...
CVE-2021-27077
Summary: Windows Win32k Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-26863, CVE-2021-26875, CVE-2021-26900. Reference Links(if available): https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-27077...
CVE-2021-27077
Summary: Windows Win32k Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-26863, CVE-2021-26875, CVE-2021-26900. Reference Links(if available): https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-27077...
CVE-2021-21204
Summary: Use after free in Blink in Google Chrome on OS X prior to 90.0.4430.72 allowed a remote attacker to...
Descomplica – 4,845,378 breached accounts
In March 2021, the Brazilian EdTech company Descomplica suffered a data breach which was subsequently posted to a popular hacking...
Jefit – 9,052,457 breached accounts
In August 2020, the workout tracking app Jefit suffered a data breach. The data was subsequently sold within the hacking...
Ransomware group threatens to leak information about police informants
One day after a ransomware group shared hacked data that allegedly belonged to the Washington, D.C. Police Department online, the...
International Law Enforcement Takes Down Emotet Malware in a Joint Operation
Emotet, one of the most dangerous email spam botnets in recent history, is being wiped out today from all infected...
Millions of the Pentagon’s Dormant IP Addresses Sprang to Life, Just Minutes Before Trump Left Office
While the world was focused on President Donald Trump's departure on Jan. 20, an obscure Florida corporation quietly revealed a...
More than one hundred Russian companies were subjected to a cyber attack
Kaspersky Lab, which specializes in developing systems to protect against cyber threats, reported a fraudulent mailing on behalf of The...
250 Million Americans Sensitive Data Leaked Online by Pompompurin
As of 22nd April 2021, a Pompompurin named hacker group dropped a database of more than 250 (250,806,711) million American...
Apple’s AirDrop Comes with a Security Flaw
Due to its intriguing features, the much-hyped announcement of AirDrop at the Apple event drew a lot of attention. However,...
APT trends report Q1 2021
For four years, the Global Research and Analysis Team (GReAT) at Kaspersky has been publishing quarterly summaries of advanced persistent...
Fav-Up – IP Lookup By Favicon Using Shodan
Lookups for real IP starting from the favicon icon and using Shodan.Installationpip3 install -r requirements.txt Shodan API key (not the...
Ldsview – Offline search tool for LDAP directory dumps in LDIF format
Offline search tool for LDAP directory dumps in LDIF format. FeaturesFast and memory efficient parsing of LDIF files Build ldapsearch...
CISA, NIST published an advisory on supply chain attacks
CISA and NIST published a report on software supply chain attacks that shed light on the associated risks and provide...
Ransomware hit Guilderland Central School District near Albany
Officials revealed that the school district near Albany was hit by a ransomware attack that forced students in grades 7...
Microsoft Defender uses Intel TDT technology against crypto-mining malware
Microsoft announced an improvement of its Defender antivirus that will leverage Intel’s Threat Detection Technology (TDT) to detect processes associated...
