CVE-2021-21381
Summary: Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. In Flatpack since version 0.9.4...
CVE-2021-27085
Summary: Internet Explorer Remote Code Execution Vulnerability Reference Links(if available): https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-27085 CVSS Score (if available) v2: / HIGH v3: /...
Apple developers targeted by malicious Xcode project
A man stands in front of Apple store in Berlin, Germany. Threat actors have abused the Run Script feature in...
NFTs explained: daylight robbery on the blockchain
Did you hear about the JPG file that sold for $69 million? I’ll give you some more detail, the JPG...
HelloKitty: When Cyberpunk met cy-purr-crime
On February 9, after discovering a compromise, CD Projekt Red (CDPR) announced to its 1+ million followers on Twitter that...
What are Smishing Attacks? How to Prevent Them?
Smishing is a cyber assault that utilizes SMS text messages to delude its victims into giving sensitive data to a...
U.S. authorities found no evidence of Russian hackers’ influence on the presidential election
U.S. authorities found no evidence that hackers affiliated with foreign governments were able to block voters from voting, alter votes,...
India’s Top 5 Banks Targeted in a Phishing Scam
The customers of State Bank of India (SBI), ICICI, HDFC, Axis Bank, and Punjab National Bank (PNB) have been alerted...
Microsoft Cloud Users Hit by Global Outage
Microsoft has recognized a new change to an authentication system as a potential reason for a blackout that scourged clients...
A 38-Year-Old Indian Professor, Lost Rs 10 Lakh to a Scammer in Cryptocurrency Trading
A Bengaluru-based 38-year-old professor new to the cryptocurrency world lost Rs 10 lakh in bitcoins to a scammer, who assured...
Convuster: macOS adware now in Rust
Introduction Traditionally, most malicious objects detected on the macOS platform are adware: besides the already familiar Shlayer family, the TOP...
AnonX – An Encrypted File Transfer Via AES-256-CBC
An Encrypted File transfer via AES-256-CBC AnonX is an encrypted file uploader and downloader. The uploaded archive lasts for one...
Strafer – A Tool To Detect Potential Infections In Elasticsearch Instances
Elasticsearch infections are rising exponentially. The adversaries are exploiting open and exposed Elasticsearch interfaces to trigger infections in the cloud...
F5 Discloses Eight Vulnerabilities—Including Four Critical Ones—in BIG-IP Systems
On March 10, 2021, F5 disclosed eight vulnerabilities, four of which are deemed "critical", the most severe of which is...
China-linked APT31 group was behind the attack on Finnish Parliament
China-linked cyber espionage group APT31 is believed to be behind an attack on the Parliament of Finland that took place...
WINTRIAGE: THE TRIAGE TOOL FOR WINDOWS DFIRERS
Wintriage is a live response tool that extracts Windows artifacts, it allows to extract the most artifacts as possible, but...
Expert found a 1-Click RCE in the TikTok App for Android
Egyptian security researcher Sayed Abdelhafiz discovered multiple bugs in TikTok Android Application that can be chained to achieve Remote code...
Reading the FBI IC3’s ‘2020 Internet Crime Report’
The FBI’s Internet Crime Complaint Center has released its annual report, the 2020 Internet Crime Report, which includes data from 791,790 complaints...
Prime Minister Boris Johnson wants to enhance UK cyber capabilities
Prime Minister Boris Johnson declared that Britain needs to boost its cyber capability to conduct cyber attacks on foreign hostile...
Data Breaches Tracker monitor unsecured ElasticSearch servers online
Cybersecurity research at WizCase, an online security and privacy portal, built a tool to track accessible ElasticSearch servers on the internet. ...
CVE-2021-26901
Summary: Windows Event Tracing Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-26872, CVE-2021-26898. Reference Links(if available): https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26901...
CVE-2021-27918
Summary: encoding/xml in Go before 1.15.9 and 1.16.x before 1.16.1 has an infinite loop if a custom TokenReader (for xml.NewTokenDecoder)...
CVE-2021-26896
Summary: Windows DNS Server Denial of Service Vulnerability This CVE ID is unique from CVE-2021-27063. Reference Links(if available): https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26896 CVSS...
CVE-2021-26896
Summary: Windows DNS Server Denial of Service Vulnerability This CVE ID is unique from CVE-2021-27063. Reference Links(if available): https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26896 CVSS...
