38 Million Records Exposed Due to Microsoft Misconfiguration
According to experts, some 38 million records from over a thousand web apps that use Microsoft's Power Apps portals platform...
Month: August 2021
Private Details of 70M AT&T Users Offered For Sale on Underground Hacking Forum
A notorious hacking group, known as Shiny Hunters, is reportedly selling a database containing private details of 70 million AT&T...
Google Docs Scam Still Pose a Risk
A phishing attack known as the "Google Docs worm" proliferated over the internet in May 2017. It impersonated Google Docs...
Internet Browser Vulnerabilities Exploited by North Korean Hackers to Implant Malware
A threat actor from North Korea has indeed been found exploiting two flaws in the Internet Explorer to attack individuals...
Gaming-related cyberthreats in 2020 and 2021
The video game industry is soaring, not in the least thanks to the lockdowns, which forced people to look for...
LazySign – Create Fake Certs For Binaries Using Windows Binaries And The Power Of Bat Files
Create fake certs for binaries using windows binaries and the power of bat files Over the years, several cool tools...
Process-Dump – Windows Tool For Dumping Malware PE Files From Memory Back To Disk For Analysis
Process Dump is a Windows reverse-engineering command-line tool to dump malware memory components back to disk for analysis. Often malware...
US-CERT Bulletin (SB21-235):Vulnerability Summary for the Week of August 16, 2021
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
Are you using a Sophos UTM appliance? Be sure it is up to date!
A researcher disclosed technical details of a critical remote code execution vulnerability, tracked as CVE-2020-25223, patched last year. In September,...
LPE zero-day flaw in Razer Synapse allows attackers to take over Windows PCs
A zero-day vulnerability in Razer Synapse could allow threat actors to gain Windows admin privileges by plugging in a Razer...
Memorial Health System forced to cancel surgeries after ransomware attack
Health organization Memorial Health System was hit by a disruptive cyber attack that forced it to cancel surgeries and divert...
Google discloses unpatched Microsoft WFP Default Rules AppContainer Bypass EoP
Google disclosed the details of a Windows AppContainer vulnerability because Microsoft initially had no plans to fix it. Google Project...
Conti Ransomware Victim: thegreensheet
continews NOTE: The information on this page is automated and scraped directly from the Conti .onion Dark Web Tor Blog...
Conti Ransomware Victim: SAC_Wireless_Inc
continews NOTE: The information on this page is automated and scraped directly from the Conti .onion Dark Web Tor Blog...
Conti Ransomware Victim: Groupe_Traon_Industrie_Development
continews NOTE: The information on this page is automated and scraped directly from the Conti .onion Dark Web Tor Blog...
Conti Ransomware Victim: usvision
continews NOTE: The information on this page is automated and scraped directly from the Conti .onion Dark Web Tor Blog...
Conti Ransomware Victim: THREE_RIVERS_REGIONAL_COMMISSION
continews NOTE: The information on this page is automated and scraped directly from the Conti .onion Dark Web Tor Blog...
Conti Ransomware Victim: wwwabelsystem
continews NOTE: The information on this page is automated and scraped directly from the Conti .onion Dark Web Tor Blog...
Conti Ransomware Victim: interflex
continews NOTE: The information on this page is automated and scraped directly from the Conti .onion Dark Web Tor Blog...
Conti Ransomware Victim: completeportables
continews NOTE: The information on this page is automated and scraped directly from the Conti .onion Dark Web Tor Blog...
CVE-2021-34480
Summary: Scripting Engine Memory Corruption Vulnerability Reference Links(if available): https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34480 CVSS Score (if available) v2: / MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P v3: / HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H...
CVE-2021-34483
Summary: Windows Print Spooler Elevation of Privilege Vulnerability Reference Links(if available): https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34483 CVSS Score (if available) v2: / MEDIUMAV:L/AC:L/Au:N/C:P/I:P/A:P v3:...
CVE-2021-38604
Summary: In librt in the GNU C Library (aka glibc) through 2.34, sysdeps/unix/sysv/linux/mq_notify.c mishandles certain NOTIFY_REMOVED data, leading to a...
CVE-2017-12613
Summary: When apr_time_exp*() or apr_os_exp_time*() functions are invoked with an invalid month field value in Apache Portable Runtime APR 1.6.2...
