Hackers breached a data server of the University Medical Center
The University Medical Center hospital discloses a data breach after threat actors published online images of stolen personal information as...
CVE-2021-1675
Summary: Windows Print Spooler Elevation of Privilege Vulnerability Reference Links(if available): https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1675 https://www.kb.cert.org/vuls/id/383432 CVSS Score (if available) v2: / MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P...
CVE-2021-1675
Summary: Windows Print Spooler Elevation of Privilege Vulnerability Reference Links(if available): https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1675 https://www.kb.cert.org/vuls/id/383432 CVSS Score (if available) v2: / MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P...
CVE-2021-1675
Summary: Windows Print Spooler Elevation of Privilege Vulnerability Reference Links(if available): https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1675 https://www.kb.cert.org/vuls/id/383432 CVSS Score (if available) v2: / MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P...
CVE-2021-28570
Summary: Adobe After Effects version 18.1 (and earlier) is affected by an Uncontrolled Search Path element vulnerability. An unauthenticated attacker...
CVE-2021-28586
Summary: After Effects version 18.0 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code...
CVE-2021-28588
Summary: Adobe RoboHelp Server version 2019.0.9 (and earlier) is affected by a Path Traversal vulnerability when parsing a crafted HTTP...
CVE-2021-33542
Summary: Phoenix Contact Classic Automation Worx Software Suite in Version 1.87 and below is affected by a remote code execution...
Microsoft exec reveals “routine” secrecy orders from government investigators
Microsoft executive Tom Burt told Congressional lawmakers Wednesday that Federal law enforcement agencies send “routine” secret orders for customer information...
SMS authentication code includes ad: a very bad idea
SMS authentication codes are back in the news, and the word I’d use to summarise their reappearance is “embattled.” I...
PrintNightmare 0-day can be used to take over Windows domain controllers
In a rush to be the first to publish a proof-of-concept (PoC), researchers have published a write-up and a demo...
Microsoft Adds DNS-over-HTTPS to Windows 11
DNS-over-HTTPS is a privacy feature in Windows 11 that allows users to evade censorship and Internet activity by doing encrypted...
Indexsinas SMB Worm Attacks Vulnerable Environments
The Indexsinas SMB worm is aiming for susceptible situations in which scientists cautioned – focusing on healthcare, hospitality, education, and the telecommunications...
POC Exploit Posted Online Leaks Dangerous Microsoft Bug Info
A POC (Proof of Concept) exploit was posted online this Tuesday for Windows Print Spooler service vulnerability that can allow...
Several Critical Flaws Identified in WordPress Plugin
Wordfence researchers warned of multiple flaws in a popular WordPress plugin that allows an attacker to upload arbitrary files to...
UN Security Council Talks Over Cyber threats, Where it Leads?
The world’s most important forum regarding well being of nations, the United Nations Security Council is going to carry out...
Do cybercriminals play cyber games in quarantine? A look one year later
Last year, we decided to take a look at how the pandemic influenced the gaming industry and what new threats...
Invoke-DNSteal – Simple And Customizable DNS Data Exfiltrator
Invoke-DNSteal is a Simple & Customizable DNS Data Exfiltrator. This tool helps you to exfiltrate data through DNS protocol over...
OpenAttack – An Open-Source Package For Textual Adversarial Attack
OpenAttack is an open-source Python-based textual adversarial attack toolkit, which handles the whole process of textual adversarial attacking, including preprocessing...
Microsoft found auth bypass, system hijack flaws in Netgear routers
Microsoft experts have disclosed a series of vulnerabilities in the firmware of Netgear routers which could lead to data leaks...
US CISA releases a Ransomware Readiness Assessment (RRA) tool
The US CISA has released the Ransomware Readiness Assessment (RRA), a new ransomware self-assessment security audit tool. The US Cybersecurity...
Freshly scraped LinkedIn data of 88,000 US business owners shared online
About a week after scraped data from more than 700 million LinkedIn profiles were put for sale online, it seems that...
Hackers hit a televised phone-in between President Putin and citizens at a TV show
A massive cyber attack attempted to disrupt a televised phone-in between Russian President Vladimir Putin and the Rossiya 24 network....
CVE-2020-17759
Summary: An issue was found in the Evernote client for Windows 10, 7, and 2008 in the protocol handler. This...
