Russian cybercrime forums launch contests for cryptocurrency hacks
Cybercriminals in Russian underground forums have been invited to take part in competitions for hacking cryptocurrency and NFT. Several Russian...
CVE-2020-11993
Summary: Apache HTTP Server versions 2.4.20 to 2.4.43 When trace/debug was enabled for the HTTP/2 module and on certain traffic...
CVE-2020-9490
Summary: Apache HTTP Server versions 2.4.20 to 2.4.43. A specially crafted value for the 'Cache-Digest' header in a HTTP/2 request...
CVE-2020-9490
Summary: Apache HTTP Server versions 2.4.20 to 2.4.43. A specially crafted value for the 'Cache-Digest' header in a HTTP/2 request...
CVE-2021-3561
Summary: An Out of Bounds flaw was found fig2dev version 3.2.8a. A flawed bounds check in read_objects() could allow an...
CVE-2021-29461
Summary: Discord Recon Server is a bot that allows one to do one's reconnaissance process from one's Discord. A vulnerability...
CVE-2018-16497
Summary: In Versa Analytics, the cron jobs are used for scheduling tasks by executing commands at specific dates and times...
A week in security (May 31 – June 6)
Last week on Malwarebytes Labs, we looked at an interesting trend in facial recognition technology—hint: it’s a slow fade, the...
WhatsApp Hijack Scam, Here’s All You Need To Know
By posing as a friend and asking for SMS security codes, scammers are continuing to target WhatsApp users and hijack...
Google Meet’s Server Down Globally, Twitter Flooded With Complaints
Since worldwide lockdown and restrictions over workplaces, schools and universities have been imposed, people are facing several problems. However, it...
TeamTNT Targeting Organizations Via Cryptojacking Malware
A cybercriminal gang known as TeamTNT has been ramping up its cloud-focused cryptojacking operations for some time now. TeamTNT operations...
Ransomware Hits News Stations in US, Affects Local Broadcast
Two local television news stations have been shut down since Thursday, experts say it because of a ransomware attack on...
Fake Oximeter Apps For Smart Devices, Here’s How To Check If It’s Safe Or Not
In recent days the demand for oximeters has gone up owing to the deadly second wave of Covid-19 in India....
Vcenter Server CVE-2021-21985 – RCE PAYLOAD – POC
Note: Vsphere UI is Tomcat middleware by default, so arbitrary code can be executed in the manner of Tomcat RMI...
Krane – Kubernetes RBAC Static Analysis And Visualisation Tool
Krane is a simple Kubernetes RBAC static analysis tool. It identifies potential security risks in K8s RBAC design and makes...
Typodetect – Detect The Active Mutations Of Domains
This tool gives blue teams, SOC's, researchers and companies the ability to detect the active mutations of their domains, thus...
Chinese SharpPanda APT developed a new backdoor in the last 3 years
Check Point Research (CPR) said that the Chinese APT group SharpPanda spent three years developing a new backdoor to spy...
Security Affairs newsletter Round 317
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
REvil Ransomware spokesman releases an interview on recent attacks
The REvil ransomware operators said in an interview on the “Russian OSINT” Telegram channel that they accidentally targeted United States-based...
US arrested Latvian woman who developed part of Trickbot malware
The US Department of Justice (DOJ) announced the arrest of a Latvian woman for her alleged role in the development...
CVE-2019-10081
Summary: HTTP/2 (2.4.20 through 2.4.39) very early pushes, for example configured with "H2PushResource", could lead to an overwrite of memory...
CVE-2019-10097
Summary: In Apache HTTP Server 2.4.32-2.4.39, when mod_remoteip was configured to use a trusted intermediary proxy server using the "PROXY"...
CVE-2019-9517
Summary: Some HTTP/2 implementations are vulnerable to unconstrained interal data buffering, potentially leading to a denial of service. The attacker...
CVE-2020-11993
Summary: Apache HTTP Server versions 2.4.20 to 2.4.43 When trace/debug was enabled for the HTTP/2 module and on certain traffic...
