Latitude cyberattack leads to data theft at two service providers
Latitude Financial Services (Latitude) has disclosed a data breach after suffering a cyberattack, causing the company to shut down internal...
Year: 2023
Microsoft support ‘cracks’ Windows for customer after activation fails
In an unexpected twist, a Microsoft support engineer resorted to running an unofficial 'crack' on a customer's Windows PC after a genuine...
Conti-based ransomware ‘MeowCorp’ gets free decryptor
A decryption tool for a modified version of the Conti ransomware could help hundreds of victims recover their files for...
Convincing Twitter ‘quote tweet’ phone scam targets bank customers
A convincing Twitter scam is targeting bank customers by abusing the quote-tweet feature, as observed by BleepingComputer. What makes this scam stand out is...
Adobe Acrobat Sign abused to push Redline info-stealing malware
Cybercriminals are abusing Adobe Acrobat Sign, an online document signing service, to distribute info-stealing malware to unsuspecting users. The service...
FakeCalls Android malware returns with new ways to hide on phones
Android malware 'FakeCalls' is circulating again in South Korea, imitating phone calls for over 20 financial organizations and attempting to...
BianLian ransomware gang shifts focus to pure data extortion
The BianLian ransomware group has shifted its focus from encrypting its victims' files to only exfiltrating data found on compromised...
Google finds 18 zero-day vulnerabilities in Samsung Exynos chipsets
Project Zero, Google's zero-day bug-hunting team, discovered and reported 18 zero-day vulnerabilities in Samsung’s Exynos chipsets used in mobile devices,...
Fortinet zero-day attacks linked to suspected Chinese hackers
A suspected Chinese hacking group has been linked to a series of attacks on government organizations exploiting a Fortinet zero-day...
Microsoft shares script to fix WinRE BitLocker bypass flaw
Microsoft has released a script to make it easier to patch a BitLocker bypass security vulnerability in the Windows Recovery...
Adobe Dimension code execution | CVE-2023-26336
NAME__________Adobe Dimension code executionPlatforms Affected:Adobe Dimension 3.4.7Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Adobe Dimension could allow a remote attacker to execute arbitrary code...
Adobe Dimension code execution | CVE-2023-26328
NAME__________Adobe Dimension code executionPlatforms Affected:Adobe Dimension 3.4.7Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Adobe Dimension could allow a remote attacker to execute arbitrary code...
Adobe Dimension information disclosure | CVE-2023-23641
NAME__________Adobe Dimension information disclosurePlatforms Affected:Adobe Dimension 3.4.7Risk Level:5.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Adobe Dimension could allow a remote attacker to obtain sensitive information,...
Adobe Dimension buffer overflow | CVE-2023-25883
NAME__________Adobe Dimension buffer overflowPlatforms Affected:Adobe Dimension 3.4.7Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Adobe Dimension is vulnerable to a heap-based buffer overflow. By persuading...
Adobe Dimension code execution | CVE-2023-26334
NAME__________Adobe Dimension code executionPlatforms Affected:Adobe Dimension 3.4.7Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Adobe Dimension could allow a remote attacker to execute arbitrary code...
Adobe Dimension code execution | CVE-2023-25880
NAME__________Adobe Dimension code executionPlatforms Affected:Adobe Dimension 3.4.7Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Adobe Dimension could allow a remote attacker to execute arbitrary code...
Multiple Lenovo products privilege escalation | CVE-2022-48189
NAME__________Multiple Lenovo products privilege escalationPlatforms Affected:Lenovo X1 Fold Gen 1 Lenovo E14 (Type 20RA 20RB) Laptop (ThinkPad) Lenovo E14 Gen...
Adobe Dimension information disclosure | CVE-2023-26350
NAME__________Adobe Dimension information disclosurePlatforms Affected:Adobe Dimension 3.4.7Risk Level:5.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Adobe Dimension could allow a remote attacker to obtain sensitive information,...
Adobe Substance 3D Stager code execution | CVE-2023-25871
NAME__________Adobe Substance 3D Stager code executionPlatforms Affected:Adobe Substance 3D Stager 2.0.0Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Adobe Substance 3D Stager could allow a...
Adobe Substance 3D Stager information disclosure | CVE-2023-25876
NAME__________Adobe Substance 3D Stager information disclosurePlatforms Affected:Adobe Substance 3D Stager 2.0.0Risk Level:5.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Adobe Substance 3D Stager could allow a...
Adobe Dimension information disclosure | CVE-2023-26352
NAME__________Adobe Dimension information disclosurePlatforms Affected:Adobe Dimension 3.4.7Risk Level:5.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Adobe Dimension could allow a remote attacker to obtain sensitive information,...
Trend Micro Endpoint Encryption Full Disk Encryption security bypass | CVE-2023-28005
NAME__________Trend Micro Endpoint Encryption Full Disk Encryption security bypassPlatforms Affected:Trend Micro Endpoint Encryption Full Disk Encryption 6.0.0.3204Risk Level:5.9Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________Trend...
Adobe Dimension information disclosure | CVE-2023-26348
NAME__________Adobe Dimension information disclosurePlatforms Affected:Adobe Dimension 3.4.7Risk Level:5.5Exploitability:UnprovenConsequences:Obtain Information DESCRIPTION__________Adobe Dimension could allow a remote attacker to obtain sensitive information,...
Adobe Dimension code execution | CVE-2023-25906
NAME__________Adobe Dimension code executionPlatforms Affected:Adobe Dimension 3.4.7Risk Level:7.8Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Adobe Dimension could allow a remote attacker to execute arbitrary code...
