DHS Called On Hackers to Join Government During Black Hat Speech
Department of Homeland Security Secretary Alejandro Mayorkas at a conference of Black Hat motivated participants to come forward and share...
Experts Discover Promotheus TDS, An Underground MaaS
 Cybersecurity experts from Group-IB in its technical research on Promotheus TDS, an underground MaaS (Malware as a service), found that...
The ‘Interaction-Less’ Flaws in Messaging Apps Allowed Hackers to Eavesdrop
 Last week, at the Black Hat security conference in Las Vegas, Google’s Project Zero researcher, Natalie Silvanovich presented her findings...
BHUSA: Windows Hello Passwordless Bypass Disclosed
 Passwords are usually a vulnerable spot in security, which is why alternatives like Microsoft Hello, which gives a passwordless approach...
ADCSPwn – A Tool To Escalate Privileges In An Active Directory Network By Coercing Authenticate From Machine Accounts And Relaying To The Certificate Service
A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts (Petitpotam) and relaying to...
Sigurlfind3R – A Reconnaissance Tool, It Fetches URLs From AlienVault’s OTX, Common Crawl, URLScan, Github And The Wayback Machine
sigurlfind3r is a passive reconnaissance tool, it fetches known URLs from AlienVault's OTX, Common Crawl, URLScan, Github and the Wayback...
City of Joplin paid a 320K ransom after a ransomware Attack
A ransomware attack hit City of Joplin forcing the IT staff to shutdown the City computer. Finally the insurer for...
Australian Cyber Security Centre warns of a surge of LockBit 2.0 ransomware attacks
The Australian Cyber Security Centre (ACSC) warns of a surge of LockBit 2.0 ransomware attacks against Australian organizations starting July 2021. The Australian Cyber...
Threat actors are probing Microsoft Exchange servers for ProxyShell flaws
Threat actors are actively scanning for the Microsoft Exchange ProxyShell RCE flaws after technical details were released at the Black Hat...
1M compromised cards available for free in the underground market
Group-IB detected an unconventional post on several carding forums containing links to a file containing 1 million compromised cards. On...
CVE-2021-36386
Summary: report_vbuild in report.c in Fetchmail before 6.4.20 sometimes omits initialization of the vsnprintf va_list argument, which might allow mail...
CVE-2021-34481
Summary: Windows Print Spooler Elevation of Privilege Vulnerability Reference Links(if available): https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34481 CVSS Score (if available) v2: / MEDIUMAV:L/AC:L/Au:N/C:P/I:P/A:P v3:...
CVE-2021-22446
Summary: There is an Information Disclosure Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset....
CVE-2021-22445
Summary: There is an Input Verification Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset....
CVE-2021-34622
Summary: A vulnerability in the user profile update component found in the ~/src/Classes/EditUserProfile.php file of the ProfilePress WordPress plugin made...
Taiwanese Computer Hardware Company Gigabyte Suffers Ransomware Attack
 Gigabyte, a motherboard developing company from Taiwan and also a hardware giant was attacked by the RansomExx ransomware hacking group,...
Golang Cryptomining Worm Offers 15% Speed Boost
 Cybersecurity intelligence at the security firm Intezer has discovered a new Golang-based worm that is attacking Windows and Linux servers...
Personal Information of 2,000 FOID Cardholders Compromised in ISP Website Breach
 The Illinois State Police are notifying Firearm Owners Identification cardholders regarding a possible data breach after attackers attempted to breach...
Lithuania has experienced 1,780 cyber incidents in six months
According to the Lithuanian military, the sharp increase in the number of hacks is caused by two main reasons –...
Cisco: Firewall Manager RCE Flaw is a Zero-day, Patch Arriving Soon
 In a Thursday security advisory update, Cisco disclosed that a remote code execution (RCE) vulnerability discovered last month in the...
Php-Jpeg-Injector – Injects Php Payloads Into Jpeg Images
Injects php payloads into jpeg images. Related to this post. Use CaseYou have a web application that runs a jpeg...
Solitude – A Privacy Analysis Tool That Enables Anyone To Conduct Their Own Privacy Investigations
Solitude is a privacy analysis tool that enables anyone to conduct their own privacy investigations. Whether a curious novice or...
Security Affairs newsletter Round 326
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
A zero-day RCE in Cisco ADSM has yet to be fixed
A remote code execution (RCE) vulnerability in the Cisco Adaptive Security Device Manager (ADSM) Launcher disclosed in July has yet...
