Graff multinational jeweller hit by Conti gang. Data of its rich clients are at risk, including Trump and Beckham
Conti ransomware gang hit high society jeweller Graff and threatens to release private details of world leaders, actors and tycoons...
Security Affairs newsletter Round 338
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free...
Hacker accessed medical info at UMass Memorial Health
A cyber attack hit the UMass Memorial Health, threat actors had access to employee email system, potentially exposing patients info....
Dockerized-Android – A Container-Based Framework To Enable The Integration Of Mobile Components In Security Training Platforms
Dockerized Android is a container-based framework that allows to execute and Android Emulator inside Docker and control it through a...
Reading INTERPOL the African Cyberthreat Assessment Report 2021
INTERPOL published the African Cyberthreat Assessment Report 2021, a report that analyzes evolution of cybercrime in Africa. A new report...
CVE-2021-41524
Summary: While fuzzing the 2.4.49 httpd, a new null pointer dereference was detected during HTTP/2 request processing, allowing an external...
CVE-2021-41524
Summary: While fuzzing the 2.4.49 httpd, a new null pointer dereference was detected during HTTP/2 request processing, allowing an external...
CVE-2021-41524
Summary: While fuzzing the 2.4.49 httpd, a new null pointer dereference was detected during HTTP/2 request processing, allowing an external...
CVE-2021-41611
Summary: An issue was discovered in Squid 5.0.6 through 5.1.x before 5.2. When validating an origin server or peer certificate,...
CVE-2021-41799
Summary: MediaWiki before 1.36.2 allows a denial of service (resource consumption because of lengthy query processing time). ApiQueryBacklinks (action=query&list=backlinks) can...
CVE-2021-41990
Summary: The gmp plugin in strongSwan before 5.9.4 has a remote integer overflow via a crafted certificate with an RSASSA-PSS...
CVE-2021-41991
Summary: The in-memory certificate cache in strongSwan before 5.9.4 has a remote integer overflow upon receiving many requests with different...
MITRE and CISA publish the 2021 list of most common hardware weaknesses
MITRE and CISA announced the release of the “2021 Common Weakness Enumeration (CWE) Most Important Hardware Weaknesses” list. MITRE and...
TrickBot member extradited to US faces up to 60 years in prison
An alleged member of the TrickBot gang, the Russian national Vladimir Dunaev (aka FFX), has been extradited to the US....
GC2 – A Command And Control Application That Allows An Attacker To Execute Commands On The Target Machine Using Google Sheet And Exfiltrate Data Using Google Drive
GC2 (Google Command and Control) is a Command and Control application that allows an attacker to execute commands on the...
ESET found a variant of the Hive ransomware that encrypts Linux and FreeBSD
The Hive ransomware operators have developed a new variant of their malware that can encrypt Linux and FreeBSD. ESET researchers...
Papua New Guinea ‘s finance ministry was hit by a ransomware
A ransomware attack hit Papua New Guinea ‘s finance ministry and disrupted government payments and operations. Government officials confirmed that...
Scarce-Apache2 – A Framework For Bug Hunting Or Pentesting Targeting Websites That Have CVE-2021-41773 Vulnerability In Public
This tool can Installation- git clone https://github.com/HightechSec/scarce-apache2- cd scarce-apache2- bash scarce.shor you can install in your system like this- git...
Police arrested 12 individuals involved in 1800 ransomware attacks worldwide
Europol and Norwegian Police arrested 12 individuals over ransomware attacks on organizations worldwide, including critical infrastructure operators. A joint operation...
The return of the Malwarebytes CrackMe
This blog post was authored by Hasherezade Twice in the past (2017, 2018) we published a Capture-The-Flag challenge dedicated to...
Update your OptinMonster WordPress plugin immediately
WordPress, the incredibly popular content management platform, is currently dealing with a nasty plugin bug which allows redirects. What is...
Tips to protect your data, security, and privacy from a hands-on expert
This post was authored by one of the most active helpers on the Malwarebytes forums who wishes to remain anonymous....
CVE-2021-40117
Summary: A vulnerability in SSL/TLS message handler for Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD)...
CVE-2021-40118
Summary: Multiple vulnerabilities in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense...
