BlackMatter ransomware gang hit Technology giant Olympus
Technology giant Olympus announced it was the victim of a ransomware attack and is currently investigating the extent of the...
The new maxtrilha trojan is being disseminated and targeting several banks
A new banking trojan dubbed maxtrilha (due to its encryption key) has been discovered in the last few days and targeting customers...
Department of Justice and Constitutional Development of South Africa hit by a ransomware attack
The Department of Justice and Constitutional Development of South Africa was hit by a ransomware attack that crippled bail services....
Google implements new Private Compute Services for Android
Google introduces Private Compute Services, a collection of services aimed at designing to improve privacy in the Android operating system....
CVE-2021-0586
Summary: In onCreate of DevicePickerFragment.java, there is a possible way to trick the user to select an unwanted bluetooth device...
CVE-2021-37694
Summary: @asyncapi/java-spring-cloud-stream-template generates a Spring Cloud Stream (SCSt) microservice. In versions prior to 0.7.0 arbitrary code injection was possible when...
CVE-2021-39141
Summary: XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may...
CVE-2021-39144
Summary: XStream is a simple library to serialize objects to XML and back again. In affected versions this vulnerability may...
CVE-2021-28631
Summary: Acrobat Reader DC versions versions 2021.001.20155 (and earlier), 2020.001.30025 (and earlier) and 2017.011.30196 (and earlier) are affected by an...
Thousands of Organizations Targeted Via ‘Operation Chimaera’
TeamTNT hacking group has enhanced its abilities by adding a set of tools that allow it to target multiple operating...
Sidewalk Backdoor Being Used By China-Linked Grayfly Gang
A recent study on a backdoor called Sidewalk has shown its attribution with Grayfly, the Chinese spy arm termed the...
Ransomware Groups are Escalating Their Attacks on Healthcare Organizations
Ransomware groups have shown no signs of declining their attacks on hospitals, apparently intensifying attacks on healthcare institutions as countries...
Mēris Botnet is the Perpetrator Behind the DDoS Attack that Hit Yandex
A new botnet dubbed Mēris has launched a record-breaking distributed denial-of-service (DDoS) attack on Russian internet company Yandex. The botnet...
Autoharness – A Tool That Automatically Creates Fuzzing Harnesses Based On A Library
AutoHarness is a tool that automatically generates fuzzing harnesses for you. This idea stems from a concurrent problem in fuzzing...
ODBParser – OSINT Tool To Search, Parse And Dump Only The Open Elasticsearch And MongoDB Directories That Have The Data You Care About Exposing
ODBParser is a tool to search for PII being exposed in open databases. ONLY to be used to identify exposed...
Revil ransomware operators are targeting new victims
Recently we observed that part of the REvil ransomware infrastructure was up and running again, now we can confirm that...
Security Affairs newsletter Round 331
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free...
Cisco released security patches for High-Severity flaws in IOS XR software
Cisco fixed multiple high-severity flaws in the IOS XR software that can allow attackers to trigger a DoS condition, elevate...
CVE-2020-19750
Summary: An issue was discovered in gpac 0.8.0. The strdup function in box_code_base.c has a heap-based buffer over-read. Reference Links(if...
CVE-2020-19752
Summary: The find_color_or_error function in gifsicle 1.92 contains a NULL pointer dereference. Reference Links(if available): https://github.com/kohler/gifsicle/issues/140 CVSS Score (if available)...
CVE-2021-38706
Summary: messages_load.php in ClinicCases 7.3.3 suffers from a blind SQL injection vulnerability, which allows low-privileged attackers to execute arbitrary SQL...
CVE-2021-40524
Summary: In Pure-FTPd 1.0.49, an incorrect max_filesize quota mechanism in the server allows attackers to upload files of unbounded size,...
Ukraine legalized cryptocurrency
The Verkhovna Rada of Ukraine adopted the bill "On virtual assets", which will legalize cryptocurrency and virtual hryvnia.The bill on...
School Childrens’ Personal Information on Dark Web: Potential Identity Theft
NBC News, an American broadcaster has published a report on the data theft of millions of school children and how...
