CVE-2021-29942
Summary: An issue was discovered in the reorder crate through 2021-02-24 for Rust. swap_index can return uninitialized values if an...
CVE-2021-29941
Summary: An issue was discovered in the reorder crate through 2021-02-24 for Rust. swap_index has an out-of-bounds write if an...
CVE-2021-29938
Summary: An issue was discovered in the slice-deque crate through 2021-02-19 for Rust. A double drop can occur in SliceDeque::drain_filter...
CVE-2021-29931
Summary: An issue was discovered in the arenavec crate through 2021-01-12 for Rust. A double drop can sometimes occur upon...
A week in security (March 29 – April 4)
Last week on Malwarebytes Labs, our podcast featured Malwarebytes senior security researcher JP Taggart, who talked to us about why you need...
BIG-IP Vulnerability – CVE-2021-22986 – PoC
Vuln Impact This vulnerability allows for unauthenticated attackers with network access to the iControl REST interface, through the BIG-IP management...
BCPS hit by Conti Ransomware Gang, Hackers Demanded $40 Million Ransom
Several weeks ago, the Conti ransomware gang encrypted the systems at Broward County Public Schools and took steps to release...
Hackers Exploit Windows BITS Feature To Launch Malware Attack
Microsoft released the BITS (Background Intelligent Transfer Service) in Windows XP to coordinate and ease uploading and downloading files with...
Child Tweets Gibberish from US Nuclear Agency Account
An unintelligible tweet sent out from the official account of U.S. Strategic Command in charge of the nation’s nuclear arsenal...
Molson Coors “Cyberattack Incident” Could Cost Company $140 Million
The popular beer brands producers in the United States such as Molson Canadian, Coors Light, Miller Lite, Carling, Blue Moon,...
Data Breach at Facebook Leaks Information of 533 Million Users
A major privacy violation by hackers allegedly took the data of almost 533 million users of Facebook from 106 countries...
The leap of a Cycldek-related threat actor
Introduction In the nebula of Chinese-speaking threat actors, it is quite common to see tools and methodologies being shared. One...
UAC – Unix-like Artifacts Collector
UAC is a Live Response collection tool for Incident Response that makes use of built-in tools to automate the collection...
Maigret – OSINT Username Checker. Collect A Dossier On A Person By Username From A Huge Number Of Sites
The Commissioner Jules Maigret is a fictional French police detective, created by Georges Simenon. His investigation method is based on...
A Quick Look Into Cloud Security Posture Management (CSPM)
The cloud security solutions market is growing rapidly, and there are many types of solutions to support your specific business...
InsightIDR’s Log Search: Recent Enhancements and Upcoming Investments
Log data is critical to ensuring that you have full visibility into what’s going on across your environment. Alongside endpoint...
What’s New in InsightAppSec and tCell: Q1 2021 in Review
2021 is off and running! The big question on the corporate world’s mind is, of course, “What will work life...
2,5M+ users can check whether their data were exposed in Facebook data leak
You can check if your personal information is included in the Facebook data leak by querying the data breach notification...
33.4% of ICS computers hit by a cyber attack in H2 2020
H2 2020 – Kaspersky observed an increase in ransomware attacks on industrial control system (ICS) systems in developed countries. Cybersecurity...
Firmware attacks, a grey area in cybersecurity of organizations
A new report published by Microsoft revealed that 80% of global enterprises were victims of a firmware-focused cyberattack. Microsoft recently...
CVE-2021-3474
Summary: There's a flaw in OpenEXR in versions before 3.0.0-beta. A crafted input file that is processed by OpenEXR could...
CVE-2021-21773
Summary: An out-of-bounds write vulnerability exists in the TIFF header count-processing functionality of Accusoft ImageGear 19.8. A specially crafted malformed...
CVE-2021-23988
Summary: Mozilla developers reported memory safety bugs present in Firefox 86. Some of these bugs showed evidence of memory corruption...
CVE-2021-23987
Summary: Mozilla developers and community members reported memory safety bugs present in Firefox 86 and Firefox ESR 78.8. Some of...
