It is time to re-evaluate Cyber-defence solutions
Security expert Stefan Umit Uygur, CEO and Co-Founder at 4Securitas Ltd, provided his vision about the Cyber-defence solutions on the...
CVE-2020-16023
Summary: Use after free in WebCodecs in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to potentially exploit heap...
CVE-2020-17519
Summary: A change introduced in Apache Flink 1.11.0 (and released in 1.11.1 and 1.11.2 as well) allows attackers to read...
CVE-2018-25002
Summary: uploader.php in the KCFinder integration project through 2018-06-01 for Drupal mishandles validation, aka SA-CONTRIB-2018-024. NOTE: This project is not...
CVE-2020-16026
Summary: Use after free in WebRTC in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to potentially exploit heap...
CVE-2020-16028
Summary: Heap buffer overflow in WebRTC in Google Chrome prior to 87.0.4280.66 allowed a remote attacker to potentially exploit heap...
Meet Oski Stealer: In-depth Analysis Of the Popular Credential Stealer
In the current scenario credential theft malware is one of the most frequently employed malware in cyber hacking. Many government...
Password Guessing Used as a Weapon by SolarWinds Hackers to Breach Targets
Cybersecurity and Infrastructure Security Agency (CISA) informed that perpetrators of SolarWinds attack obtained confidential information via common hacker techniques like...
The RBI Warns Patrons of Unauthorized Money Lending Apps
Reserve Bank of India has forewarned Indians against unauthorized money lending apps that are increasingly rising day by day, consequently...
Critical Bugs in Firefox and Chrome Allow Exploitation
On Thursday, the Cybersecurity and Infrastructure Security Agency (CISA) asked clients of Mozilla Foundation's Firefox browser and Windows, macOS, and...
MUD-Visualizer – A Tool To Visualize MUD Files
This tool can be used to visualize the MUD files in JSON format. MotivationMUD files are plain text files in...
Pidrila – Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer
PIDRILA: Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer is really fast async web path scanner prototype developed by BrightSearch team...
New Zealand central bank hit by a cyber attack
A cyber attack hit the New Zealand central bank, sensitive information has been potentially accessed by the intruders The New...
Security Affairs newsletter Round 296
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
TeamTNT botnet now steals Docker API and AWS credentials
Researchers from Trend Micro discovered that the TeamTNT botnet is now able to steal Docker API logins along with AWS...
Dassault Falcon Jet hit by Ragnar Locker ransomware gang
Dassault Falcon Jet has disclosed a data breach that exposed personal information belonging to current and former employees. In December...
CVE-2020-15995
Summary: Out of bounds write in V8 in Google Chrome prior to 86.0.4240.99 allowed a remote attacker to potentially exploit...
CVE-2020-17367
Summary: Firejail through 0.9.62 does not honor the -- end-of-options indicator after the --output option, which may lead to command...
CVE-2020-24386
Summary: An issue was discovered in Dovecot before 2.3.13. By using IMAP IDLE, an authenticated attacker can trigger unhibernation via...
CVE-2020-25275
Summary: Dovecot before 2.3.13 has Improper Input Validation in lda, lmtp, and imap, leading to an application crash via a...
CVE-2020-5208
Summary: It's been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a...
Glofox – 2,330,735 breached accounts
In March 2020, the Irish gym management software company Glofox suffered a data breach which exposed 2.3M membership records. The...
Hacking Group Earth Wendigo Exploits Emails via Spear-phishing Attacks
As per the cybersecurity experts, the cyberattacks are related to Earth Wendigo, a cyber criminal currently not linked to any...
Court in the United States has sentenced Russian Andrey Tyurin to 12 years in prison for cybercrime
The Federal Court of the Southern District of New York sentenced Russian Andrey Tyurin to 12 years in prison for...
