Cyber Defense Magazine – June 2021 has arrived. Enjoy it!
Cyber Defense Magazine June 2021 Edition has arrived. We hope you enjoy this month’s edition…packed with over 129 pages of...
Critical 0day in the Fancy Product Designer WordPress plugin actively exploited
A critical zero-day vulnerability in the Fancy Product Designer WordPress plugin exposes more than 17,000 websites to attacks. Researchers from...
CVE-2021-21206
Summary: Use after free in Blink in Google Chrome prior to 89.0.4389.128 allowed a remote attacker to potentially exploit heap...
CVE-2021-21207
Summary: Use after free in IndexedDB in Google Chrome prior to 90.0.4430.72 allowed an attacker who convinced a user to...
CVE-2020-36197
Summary: An improper access control vulnerability has been reported to affect earlier versions of Music Station. If exploited, this vulnerability...
CVE-2020-27815
Summary: A flaw was found in the JFS filesystem code in the Linux Kernel which allows a local attacker with...
CVE-2021-33563
Summary: Koel before 5.1.4 lacks login throttling, lacks a password strength policy, and shows whether a failed login attempt had...
Dominos India – 22,527,655 breached accounts
In April 2021, 13TB of compromised Dominos India appeared for sale on a hacking forum after which the company acknowledged...
JBS says it is recovering quickly from a ransomware attack
This week another major supplier reported it had been hit with ransomware. After the Colonial Pipeline attack last month, this...
Poisoned Installers Found in SolarWinds Hackers Toolkit
The ongoing multi-vendor investigations into the SolarWinds mega-hack took a new turn this week when additional malware artifacts were discovered...
New Zealand Reserve Bank: Taking Action to Respond to Data Breach Reports
Two independent investigations into an unauthorized data breach and the handling of sensitive information have been announced by the Reserve...
The Secretary of the Russian Security Council spoke about the new information security strategy
The Secretary of the Security Council also reported on cyber security threats in the draft of the new National Security...
Security Experts Unearthed the Flaws in EPUB Similar to Web Browsers
Security researchers at imec-DistriNet Research Group have discovered the vulnerabilities in e-book reading systems that allow hackers to exploit the...
Russian Hacking Group Nobelium Attacks 150 Organizations, Hacks Mails
Nobelium, a Russian hacking group that was responsible for the 2020 SolarWinds cyberattacks, is back in the game, however, now,...
Onelinepy – Python Obfuscator To Generate One-Liners And FUD Payloads
Python Obfuscator To Generate One-Liners And FUD Payloads.Download & Rungit clone https://github.com/spicesouls/onelinepycd onelinepychmod +x setup.sh./setup.shonelinepy Usage Guide _ _ ___...
Arkhota – A Web Brute Forcer For Android
What?Arkhota is a web (HTTP/S) brute forcer for Android. Why?A web brute forcer is always in a hacker's computer, for...
$280 million stolen per month from crypto transactions
CyberNews researchers found that front-runners are abusing decentralized cryptocurrency exchanges by draining hundreds of millions in crypto from trader transactions...
Database, source code allegedly related to bulletproof hosting, once Parler’s service provider, up for sale on hacker forum
Group-IB discovered a database allegedly belonging to a bulletproof hosting provider DDoS-Guard posted for sale on a cybercrime forum. Group-IB,...
Exploit broker Zerodium is looking for Pidgin 0day exploits
Zero-day exploit broker Zerodium is looking for 0day exploits affecting the IM client tool Pidgin on Windows and Linux. Zero-day...
US seizes 2 domains used by APT29 in a recent phishing campaign
The US DoJ seized two domains used by APT29 group in recent attacks impersonating the U.S. USAID to spread malware....
JBS attack has likely a Russian origin
White House spokeswoman speculates threat actors behind the JBS ransomware attack have a Russian origin. The American food processing giant...
New Epsilon Red Ransomware appears in the threat landscape
Researchers spotted a new piece of ransomware named Epsilon Red that was employed at least in an attack against a...
CVE-2021-27028
Summary: A Memory Corruption Vulnerability in Autodesk FBX Review version 1.4.0 may lead to remote code execution through maliciously crafted...
CVE-2019-15538
Summary: An issue was discovered in xfs_setattr_nonsize in fs/xfs/xfs_iops.c in the Linux kernel through 5.2.9. XFS partially wedges when a...
