Patch Tuesday – January 2021
We arrive at the first Patch Tuesday of 2021 (2021-Jan) with 83 vulnerabilities across our standard spread of products. Windows...
Ubiquiti breach, and other IoT security problems
Networking equipment manufacturer Ubiquiti sent out an email to warn users about a possible data breach. The email stated there...
Cyber Attackers Targets the Montreal Car-Sharing Service Communauto
Threat actors targeted the Montreal-based car-sharing service Communauto but they were unable to get their hands on the sensitive information...
The data of 1.3 million Russian Hyundai customers are on sale
The database, which contains information about 1.3 million Russian owners of Hyundai cars, is put up for sale on Darknet....
Korean Dating App Leaks Private Images and Information of 1 Million Users
Korea is a country where incidents of data breach have significantly risen in number, becoming the new normal. Due to...
Typeform Patched an Information Hijacking Vulnerability
Online survey and form creation tool Typeform allows clients to make website pages for easy information gathering from clients. Each...
ProtOSINT – A Python Script That Helps You Investigate Protonmail Accounts And ProtonVPN IP Addresses
ProtOSINT is a Python script that helps you investigate ProtonMail accounts and ProtonVPN IP addresses.DescriptionThis tool can help you in...
Sigurls – A Reconnaissance Tool, It Fetches URLs From AlienVault’s OTX, Common Crawl, URLScan, Github And The Wayback Machine
sigurls is a reconnaissance tool, it fetches URLs from AlienVault's OTX, Common Crawl, URLScan, Github and the Wayback Machine.UsageTo display...
Update on SolarWinds Supply-Chain Attack: SUNSPOT and New Malware Family Associations
This update is a continuation of our previous coverage of the SolarWinds supply-chain attack that was discovered by FireEye in...
Sunspot, the third malware involved in the SolarWinds supply chain attack
Cybersecurity firm CrowdStrike announced to have discovered a third malware strain, named Sunspot, directly involved in the SolarWinds supply chain...
Bitdefender releases free decrypter for Darkside ransomware
Security firm Bitdefender released a tool that allows victims of the Darkside ransomware to recover their files without paying the...
Ubiquiti discloses a data breach
American technology company Ubiquiti Networks is disclosed a data breach and is notifying its customers via email. American technology vendor...
Connecting the dots between SolarWinds and Russia-linked Turla APT
Experts have found some similarities between the Sunburst backdoor used in the SolarWinds supply chain attack and Turla’s backdoor Kazuar. Security experts...
CVE-2021-21116
Summary: Heap buffer overflow in audio in Google Chrome prior to 87.0.4280.141 allowed a remote attacker to potentially exploit heap...
CVE-2020-16021
Summary: Race in image burner in Google Chrome on ChromeOS prior to 87.0.4280.66 allowed a remote attacker who had compromised...
CVE-2017-20001
Summary: The AES encryption project 7.x and 8.x for Drupal does not sufficiently prevent attackers from decrypting data, aka SA-CONTRIB-2017-027....
CVE-2020-36154
Summary: The Application Wrapper in Pearson VUE VTS Installer 2.3.1911 has Full Control permissions for Everyone in the "%SYSTEMDRIVE%\Pearson VUE"...
CVE-2020-36161
Summary: An issue was discovered in Veritas APTARE 10.4 before 10.4P9 and 10.5 before 10.5P3. By default, on Windows systems,...
A week in security (January 4 – January 10)
Last week on Malwarebytes Labs, we released survey results about VPN usage and found that 36 percent of our respondents...
Bug Bounty API Key Testing CheatSheet
Arrrrgh, Bug Bounty! Slack Webhook If the below command returns missing_text_or_fallback_or_attachments, it means that the URL is valid, any other responses...
JetBrains – A possible Doorway to Massive Hacking Plot?
JetBrains a software company based in the Czech Republic could possibly be used as a doorway by Russian hackers to...
Singapore Witnessed a Sudden Surge in the Bank-Related Phishing Scam
Phishing emails are scams where the actors try to befool the user by sending emails that may concern the user....
Parler on the Verge of Permanent Expulsion
Launched in 2018, Parler has become a place of refuge for individuals that have been prohibited or suspended by popular...
Sunburst backdoor – code overlaps with Kazuar
Introduction On December 13, 2020, FireEye published a blog post detailing a supply chain attack leveraging Orion IT, an infrastructure...
