Umbrella_android – Digital And Physical Security Advice App
Umbrella is an Android mobile app developed by Security First that provides human rights defenders with the information on what...
RadareEye – A Tool Made For Specially Scanning Nearby devices [BLE, Bluetooth And Wifi] And Execute Our Given Command On Our System When The Target Device Comes In-Between Range
A tool made for specially scanning nearby devices and execute our given command on our system when the target device...
Hack The Box Walkthrough guide to: Delivery
Disclaimer: I do NOT want you to read this if you have not even tried to attempt any of it...
Microsoft Patch Tuesday for January 2021 fixes 83 flaws, including an actively exploited issue
Microsoft Patch Tuesday security updates for January 2021 address 83 vulnerabilities, including a critical flaw actively exploited in the wild....
Data collection cheat sheet: how Parler, Twitter, Facebook, MeWe’s data policies compare
CyberNews researchers analyzed data from multiple social platforms like Parler, Twitter, Facebook, MeWe’s to compare data policies. Original Post at...
Sophisticated hacking campaign uses Windows and Android zero-days
Google Project Zero researchers uncovered a sophisticated hacking campaign that targeted Windows and Android users. The Google Project Zero team...
Police took down DarkMarket, the world’s largest darknet marketplace
The world’s largest black marketplace on the dark web, DarkMarket, has been taken offline by law enforcement in an international...
EMA: Some of Pfizer/BioNTech COVID-19 vaccine data was leaked online
The European Medicines Agency (EMA) revealed that some of the Pfizer/BioNTech COVID-19 vaccine data were stolen from its servers. In...
CVE-2021-0303
Summary: In dispatchGraphTerminationMessage() of packages/services/Car/computepipe/runner/graph/StreamSetObserver.cpp, there is a possible use after free due to a race condition. This could lead...
CVE-2021-0307
Summary: In updatePermissionSourcePackage of PermissionManagerService.java, there is a possible automatic runtime permission grant due to a confused deputy. This could...
CVE-2021-0310
Summary: In LazyServiceRegistrar of LazyServiceRegistrar.cpp, there is a possible memory corruption due to a use after free. This could lead...
CVE-2021-0318
Summary: In appendEventsToCacheLocked of SensorEventConnection.cpp, there is a possible out of bounds write due to a use-after-free. This could lead...
CVE-2021-0308
Summary: In ReadLogicalParts of basicmbr.cc, there is a possible out of bounds write due to a missing bounds check. This...
Patch Tuesday – January 2021
We arrive at the first Patch Tuesday of 2021 (2021-Jan) with 83 vulnerabilities across our standard spread of products. Windows...
Ubiquiti breach, and other IoT security problems
Networking equipment manufacturer Ubiquiti sent out an email to warn users about a possible data breach. The email stated there...
Cyber Attackers Targets the Montreal Car-Sharing Service Communauto
Threat actors targeted the Montreal-based car-sharing service Communauto but they were unable to get their hands on the sensitive information...
The data of 1.3 million Russian Hyundai customers are on sale
The database, which contains information about 1.3 million Russian owners of Hyundai cars, is put up for sale on Darknet....
Korean Dating App Leaks Private Images and Information of 1 Million Users
Korea is a country where incidents of data breach have significantly risen in number, becoming the new normal. Due to...
Typeform Patched an Information Hijacking Vulnerability
Online survey and form creation tool Typeform allows clients to make website pages for easy information gathering from clients. Each...
ProtOSINT – A Python Script That Helps You Investigate Protonmail Accounts And ProtonVPN IP Addresses
ProtOSINT is a Python script that helps you investigate ProtonMail accounts and ProtonVPN IP addresses.DescriptionThis tool can help you in...
Sigurls – A Reconnaissance Tool, It Fetches URLs From AlienVault’s OTX, Common Crawl, URLScan, Github And The Wayback Machine
sigurls is a reconnaissance tool, it fetches URLs from AlienVault's OTX, Common Crawl, URLScan, Github and the Wayback Machine.UsageTo display...
Update on SolarWinds Supply-Chain Attack: SUNSPOT and New Malware Family Associations
This update is a continuation of our previous coverage of the SolarWinds supply-chain attack that was discovered by FireEye in...
Sunspot, the third malware involved in the SolarWinds supply chain attack
Cybersecurity firm CrowdStrike announced to have discovered a third malware strain, named Sunspot, directly involved in the SolarWinds supply chain...
Bitdefender releases free decrypter for Darkside ransomware
Security firm Bitdefender released a tool that allows victims of the Darkside ransomware to recover their files without paying the...
