Criminals were inside Syniverse for 5 years before anyone noticed
“A global privacy disaster”, “espionage gold”, and “a state-sponsored wet dream” are just some of the comments one can read...
Month: October 2021
CVE-2021-35197
Summary: In MediaWiki before 1.31.15, 1.32.x through 1.35.x before 1.35.3, and 1.36.x before 1.36.1, bots have certain unintended API access....
CVE-2021-3546
Summary: A flaw was found in vhost-user-gpu of QEMU in versions up to and including 6.0. An out-of-bounds write vulnerability...
CVE-2021-3546
Summary: A flaw was found in vhost-user-gpu of QEMU in versions up to and including 6.0. An out-of-bounds write vulnerability...
CVE-2021-3682
Summary: A flaw was found in the USB redirector device emulation of QEMU in versions prior to 6.1.0-rc2. It occurs...
CVE-2021-3682
Summary: A flaw was found in the USB redirector device emulation of QEMU in versions prior to 6.1.0-rc2. It occurs...
CVE-2021-3682
Summary: A flaw was found in the USB redirector device emulation of QEMU in versions prior to 6.1.0-rc2. It occurs...
CVE-2021-3713
Summary: An out-of-bounds write flaw was found in the UAS (USB Attached SCSI) device emulation of QEMU in versions prior...
CVE-2021-3713
Summary: An out-of-bounds write flaw was found in the UAS (USB Attached SCSI) device emulation of QEMU in versions prior...
CVE-2021-3713
Summary: An out-of-bounds write flaw was found in the UAS (USB Attached SCSI) device emulation of QEMU in versions prior...
CVE-2021-3713
Summary: An out-of-bounds write flaw was found in the UAS (USB Attached SCSI) device emulation of QEMU in versions prior...
CVE-2019-0205
Summary: In Apache Thrift all versions up to and including 0.12.0, a server or client may run into an endless...
CarPunk – The Car Hacking Toolkit
CARPUNK IS VERY SIMILAR TO CANghost, ONLY THE DEFFERENCE IS, IT COMES WITH OPTIONS TO ENABLE OR DISABLE INTERFACE AND...
Telco service provider giant Syniverse had unauthorized access since 2016
Syniverse service provider discloses a security breach, threat actors have had access to its databases since 2016 and gained some...
Windows 11 is out. Is it any good for security?
Windows 11, the latest operating system (OS) from Microsoft, launches today, and organizations have begun asking themselves when and if...
Dark web marketplace White House announces end to its operations
The dark web marketplace White House Market shuts down its operation, last week its operators announced that they were retiring....
Misconfigured Apache Airflow servers leak thousands of credentials
Experts discovered many misconfigured Apache Airflow servers exposed online that were leaking sensitive information from prominent tech firms. Apache Airflow is an...
US-CERT Bulletin (SB21-277):Vulnerability Summary for the Week of September 27, 2021
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
BurpCrypto – A Collection Of Burpsuite Encryption Plug-Ins, Support AES/RSA/DES/ExecJs(execute JS Encryption Code In Burpsuite)
Burpcrypto is a collection of burpsuite encryption plug-ins, supporting AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite).Build$ mvn packageUsage中文使用说明Download the precompiled jar...
Neiman Marcus data breach affects millions
Millions of Neiman Marcus customers have had their personal and financial information exposed in a data breach. In a press...
Facebook, WhatsApp, and Instagram are down worldwide, it’s panic online
Users worldwide are experiencing problems while accessing Facebook services, including Instagram and WhatsApp. Users worldwide are not able to access...
Police take a piece out of a ransomware gang, but won’t say which one
One of the world’s ransomware groups appears to be a couple of members short today—and about two million dollars less...
CVE-2020-21533
Summary: fig2dev 3.2.7b contains a stack buffer overflow in the read_textobject function in read.c. Reference Links(if available): https://sourceforge.net/p/mcj/tickets/59/ https://lists.debian.org/debian-lts-announce/2021/10/msg00002.html CVSS...
CVE-2020-21534
Summary: fig2dev 3.2.7b contains a global buffer overflow in the get_line function in read.c. Reference Links(if available): https://sourceforge.net/p/mcj/tickets/58/ https://lists.debian.org/debian-lts-announce/2021/10/msg00002.html CVSS...
