33.4% of ICS computers hit by a cyber attack in H2 2020
H2 2020 – Kaspersky observed an increase in ransomware attacks on industrial control system (ICS) systems in developed countries. Cybersecurity...
Month: April 2021
Firmware attacks, a grey area in cybersecurity of organizations
A new report published by Microsoft revealed that 80% of global enterprises were victims of a firmware-focused cyberattack. Microsoft recently...
CVE-2021-3474
Summary: There's a flaw in OpenEXR in versions before 3.0.0-beta. A crafted input file that is processed by OpenEXR could...
CVE-2021-21773
Summary: An out-of-bounds write vulnerability exists in the TIFF header count-processing functionality of Accusoft ImageGear 19.8. A specially crafted malformed...
CVE-2021-23988
Summary: Mozilla developers reported memory safety bugs present in Firefox 86. Some of these bugs showed evidence of memory corruption...
CVE-2021-23987
Summary: Mozilla developers and community members reported memory safety bugs present in Firefox 86 and Firefox ESR 78.8. Some of...
CVE-2021-3475
Summary: There is a flaw in OpenEXR in versions before 3.0.0-beta. An attacker who can submit a crafted file to...
More Businesses are Accepting Bitcoin
Bitcoin is turning into an undeniably well-known payment alternative among numerous organizations. Fast-food chains, large tech organizations, and major beverage...
533 Million Facebook Users’ Phone Numbers And Personal Data Leaked Online
On Saturday, a user turned to a low-level hacking forum to leak the personal information of hundreds of millions of...
Hackers Tap Into Home Security Cameras, Record Sex Tapes Too Sell Online
Chinese hackers are infiltrating into residents' house security cameras, shooting them having sex and selling the footage online. However shocking...
Goodbye Cryptocurrencies: Number of ‘Dead’ Coins Increased by 35% Over Last Year
Coinopsy.com, an online firm that tracks dead cryptocurrencies has published a data report regarding the number of dead cryptocurrencies or...
Tala Research Shows that European Telecommunication Websites Expose Sensitive Customer Data
In 7 EU countries, Tala assessed the websites of the leading MSPs for the European top mobile providers, data exposure...
Watson – Enumerate Missing KBs And Suggest Exploits For Useful Privilege Escalation Vulnerabilities
Watson is a .NET tool designed to enumerate missing KBs and suggest exploits for Privilege Escalation vulnerabilities.Supported VersionsWindows 10 1507,...
SharpHound3 – C# Data Collector For The BloodHound Project
Get SharpHoundThe latest build of SharpHound will always be in the BloodHound repository here Compile InstructionsSharpHound is written using C#...
Malware attack on Applus blocked vehicle inspections in some US states
A malware attack against vehicle inspection services provider Applus Technologies paralyzed preventing vehicle inspections in eight US states. Applus Technologies...
Security Affairs newsletter Round 308
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
Clop Ransomware operators plunder US universities
Clop ransomware gang leaked online data stolen from Stanford Medicine, University of Maryland Baltimore, and the University of California. Clop...
Data of 533 million Facebook users leaked in a hacking forum for free
On April 3, a user has leaked the phone numbers and personal data of 533 million Facebook users in a...
CVE-2021-21348
Summary: XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.16, there...
CVE-2021-21349
Summary: XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.16, there...
CVE-2020-27918
Summary: A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur...
CVE-2020-10663
Summary: The JSON gem through 2.2.0 for Ruby, as used in Ruby 2.4 through 2.4.9, 2.5 through 2.5.7, and 2.6...
CVE-2020-7712
Summary: This affects the package json before 10.0.0. It is possible to inject arbritary commands using the parseLookup function. Reference...
Facebook – 2,529,621 breached accounts
In April 2021, a large data set of 533 million Facebook users was made freely available for download. Encompassing approximately...
