CVE-2021-22212
Summary: ntpkeygen can generate keys that ntpd fails to parse. NTPsec 1.2.0 allows ntpkeygen to generate keys with '#' characters....
CVE-2020-11260
Summary: An improper free of uninitialized memory can occur in DIAG services in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile...
CVE-2018-0043
Summary: Receipt of a specific MPLS packet may cause the routing protocol daemon (RPD) process to crash and restart or...
CVE-2021-1526
Summary: A vulnerability in Cisco Webex Player for Windows and MacOS could allow an attacker to execute arbitrary code on...
CVE-2021-1526
Summary: A vulnerability in Cisco Webex Player for Windows and MacOS could allow an attacker to execute arbitrary code on...
CVE-2021-0133
Summary: Key exchange without entity authentication in the Intel(R) Security Library before version 3.3 may allow an authenticated user to...
A week in security (June 14 – June 20)
Last week on Malwarebytes Labs: How to delete your Instagram account.Working from home? You’re probably being spied on.Another one bites...
Want to stop ransomware attacks? Send the cybercriminals to jail, says Brian Honan: Lock and Code S02E11
Ransomware attacks are on a different scale this year, with major attacks not just dismantling the business and management of...
Audi And Volkswagen’s Data Breach Affected 3.3 Million Customers
 Volkswagen announced that a massive data breach exposed the personal information of over 3.3 million customers after one of its...
Stolen Card Validation Service Illuminated A New Corner of the Skimming Ecosystem
 In the recent analysis, experts discovered that the digital credit card skimming ecosystem evolves as experts identify new players, tooling,...
Every fifth child faced with malware and adult content
Experts analyzed how often children encounter cyber incidents in the online space. It turned out that every fifth child has...
Chinese Military Unit Linked to Cyber Espionage Campaign Targeting India
 Recorded Future, a US security firm, revealed a cyber espionage campaign linked to a suspected Chinese state-sponsored threat activity group,...
The Russian government plans to create a unified video surveillance system
The Russian government wants to create a single video surveillance system that will unite smart cameras in Russian cities. The...
NamedPipePTH – Pass The Hash To A Named Pipe For Token Impersonation
This project is a PoC code to use Pass-the-Hash for authentication on a local Named Pipe user Impersonation. There also...
Ioccheck – A Tool For Simplifying The Process Of Researching IOCs
A tool for simplifying the process of researching file hashes, IP addresses, and other indicators of compromise (IOCs). FeaturesLook up...
Norway blames China-linked APT31 for 2018 government hack
Norway police secret service states said that China-linked APT31 group was behind the 2018 cyberattack on the government’s IT network....
This bug can permanently break iPhone WiFi connectivity
A new bug in iPhone can permanently break users’ WiFi by disabling it, the issue could be triggered by simply...
Security Affairs newsletter Round 319
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
CVE-2021-3501
Summary: A flaw was found in the Linux kernel in versions before 5.12. The value of internal.ndata, in the KVM...
CVE-2021-3501
Summary: A flaw was found in the Linux kernel in versions before 5.12. The value of internal.ndata, in the KVM...
CVE-2019-19603
Summary: SQLite 3.30.1 mishandles certain SELECT statements with a nonexistent VIEW, leading to an application crash. Reference Links(if available): https://github.com/sqlite/sqlite/commit/527cbd4a104cb93bf3994b3dd3619a6299a78b13...
CVE-2020-36226
Summary: A flaw was discovered in OpenLDAP before 2.4.57 leading to a memch->bv_len miscalculation and slapd crash in the saslAuthzTo...
CVE-2019-0193
Summary: In Apache Solr, the DataImportHandler, an optional but popular module to pull in data from databases and other sources,...
CVE-2019-0193
Summary: In Apache Solr, the DataImportHandler, an optional but popular module to pull in data from databases and other sources,...
