Forward Air Corporation says that December Ransomware attack caused a loss of $7.5M
Trucking and freight transportation logistics giant Forward Air Corporation said a December 2020 ransomware attack had $7.5M Impact. Trucking and...
Hackers abuse Plex Media servers for DDoS amplification attacks
Netscout experts warn of DDoS-for-hire services abusing Plex Media servers to bounce junk traffic and amplify DDoS attacks. Security researchers from...
CVE-2020-24271
Summary: A CSRF vulnerability was discovered in EasyCMS v1.6 that can add an admin account through index.php?s=/admin/rbacuser/insert/navTabId/rbacuser/callbackType/closeCurrent, then post username=***&password=***....
CVE-2021-25249
Summary: An out-of-bounds write information disclosure vulnerability in Trend Micro Apex One (on-prem and SaaS), OfficeScan XG SP1, and Worry-Free...
CVE-2020-29394
Summary: A buffer overflow in the dlt_filter_load function in dlt_common.c from dlt-daemon 2.18.5 (GENIVI Diagnostic Log and Trace) allows arbitrary...
CVE-2020-17516
Summary: Apache Cassandra versions 2.1.0 to 2.1.22, 2.2.0 to 2.2.19, 3.0.0 to 3.0.23, and 3.11.0 to 3.11.9, when using 'dc'...
Barcode Scanner app on Google Play infects 10 million users with one update
Late last December we started getting a distress call from our forum patrons. Patrons were experiencing ads that were opening via...
Android emulator abused to introduce malware onto PCs
Emulators have played a part in many tech-savvy users’ lives. They introduce a level of flexibility that not only allows...
Update now! Chrome patches zero-day that was exploited in the wild
A Chrome patch has been issued with an advisory stating that the Stable channel has been updated to 88.0.4324.150 for...
Serco Affirms Babuk Ransomware Attack
Outsourcing giant Serco has affirmed that parts of its infrastructure in mainland Europe have been hit by a double extortion...
The largest international phishing center has been blocked in Ukraine
As a result of an international special operation, the Office of the Prosecutor General of Ukraine has stopped the activity...
The FSB recorded an attempt to encrypt the data of patients in hospitals in Russia
The deputy director of the National coordination center for computer incidents (NCCI) Nikolay Murashov during a speech at the information...
Scammers are Tricking Consumers via QR Code Phishing Campaign
QR codes - the little Digi squares, an effective tool for contactless transactional activities especially during the Covid-19 pandemic. Quick...
Trucking Company Forward Air Hit by Ransomware, Suffers Heavy Loss of $7.5 Million
Forward Air, a trucking and freight transportation logistics company said that it suffered a ransomware attack of $7.5 million. The...
Cloudlist – A Tool For Listing Assets From Multiple Cloud Providers
Cloudlist is a multi-cloud tool for getting Assets (Hostnames, IP Addresses) from Cloud Providers. This is intended to be used...
Geacon – Implement CobaltStrike’s Beacon In Go
Using Go to implement CobaltStrike's Beacon This project is for learning protocol analysis and reverse engineering only, if someone's rights...
TeamTNT group uses Hildegard Malware to target Kubernetes Systems
The TeamTNT hacker group has been employing a new piece of malware, dubbed Hildegard, to target Kubernetes installs. The hacking...
Fortinet addresses 4 vulnerabilities in FortiWeb web application firewalls
Security vendor Fortinet has addressed four vulnerabilities in FortiWeb web application firewalls, including a Remote Code Execution flaw. Fortinet has...
Google addresses Chrome zero-day flaw actively exploited in the wild
Google has addressed an actively exploited zero-day vulnerability, tracked as CVE-2021-21148, with the release of the Chrome 88.0.4324.150 version. Google released...
Matryosh DDoS botnet targets Android-Based devices via ADB
Netlab researchers spotted a new Android malware, dubbed Matryosh, that is infecting devices to recruit them in a distributed denial-of-service...
CVE-2021-1332
Summary: Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers...
CVE-2021-1333
Summary: Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers...
CVE-2021-1334
Summary: Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers...
CVE-2021-1335
Summary: Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers...
