Ryuk Ransomware Hits City of Liège
Liege, the third biggest city in Belgium, was hit by a ransomware attack resulting in the disruption of the municipality’s...
Python Package Index Repository Detected With Multiple Malicious Packages
In the PyPI repository for Python projects that transformed workstations developers into crypto mining machines, many malicious packaging were captured...
Maryland Officials Found 508,000 “Potentially Fraudulent” Unemployment Claims
Over the last six weeks, more than half a million "potentially fraudulent" jobless claims have been made in Maryland, according...
How to confuse antimalware neural networks. Adversarial attacks and protection
Introduction Nowadays, cybersecurity companies implement a variety of methods to discover new, previously unknown malware files. Machine learning (ML) is...
DarkLoadLibrary – LoadLibrary For Offensive Operations
LoadLibrary for offensive operations. How does is work?https://www.mdsec.co.uk/2021/06/bypassing-image-load-kernel-callbacks/UsageDARKMODULE DarkModule = DarkLoadLibrary( LOAD_LOCAL_FILE, // control flags L"TestDLL.dll", // local dll path,...
CamOver – A Camera Exploitation Tool That Allows To Disclosure Network Camera Admin Password
CamOver is a camera exploitation tool that allows to disclosure network camera admin password. FeaturesExploits vulnerabilities in most popular camera...
VMware fixes privilege escalation issue in VMware Tools for Windows
VMware patched a high-severity vulnerability in VMware Tools for Windows that attackers could exploit to execute arbitrary code with elevated...
Clop ransomware is back into action after the recent police operation
A week after the law enforcement operation that targeted the Clop ransomware operators, the gang is back into action. A...
Palo Alto Networks fixes critical flaw (CVE-2021-3044) in Cortex XSOAR
Palo Alto Networks addresses a critical improper authorization vulnerability (CVE-2021-3044) affecting its Cortex XSOAR security orchestration solution, automation and response...
SonicWall finally fixed a flaw resulting from a partially patched 2020 zero-day
A critical vulnerability, tracked as CVE-2021-20019, in SonicWall VPN appliances was only partially patched last year and could allow a remote...
MITRE adds D3FEND defensive cybersecurity techniques to ATT&CK Framework
D3FEND is a new project promoted by MITRE Corporation to add defensive cybersecurity techniques to the ATT&CK Framework. D3FEND is...
Wormable bash DarkRadiation Ransomware targets Linux distros and docker containers
DarkRadiation is a new strain of ransomware implemented in Bash that targets Linux and Docker cloud containers and leverages Telegram...
CVE-2021-3483
Summary: A flaw was found in the Nosy driver in the Linux kernel. This issue allows a device to be...
CVE-2021-3506
Summary: An out-of-bounds (OOB) memory access flaw was found in fs/f2fs/node.c in the f2fs module in the Linux kernel in...
CVE-2021-27657
Summary: Successful exploitation of this vulnerability could give an authenticated Metasys user an unintended level of access to the server...
CVE-2021-21466
Summary: SAP Business Warehouse, versions 700, 701, 702, 711, 730, 731, 740, 750, 782 and SAP BW/4HANA, versions 100, 200,...
CVE-2021-21466
Summary: SAP Business Warehouse, versions 700, 701, 702, 711, 730, 731, 740, 750, 782 and SAP BW/4HANA, versions 100, 200,...
CVE-2021-32243
Summary: FOGProject v1.5.9 is affected by a File Upload RCE (Authenticated). Reference Links(if available): https://github.com/FOGProject/fogproject/issues/422 CVSS Score (if available) v2:...
City of Liège hit by ransomware, Ryuk suspected
Liège, the third largest city in Belgium, and a major educational hub, has been hit by a ransomware attack, disrupting...
Hotel staff bust Hermes SMS scammer with suspiciously large number of cables
If you’re in the UK, you’ve likely received a fake delivery SMS at this point. The original big driver for...
50% of Misconfigured Containers Hit by Botnets in an Hour
Aqua Security announced on Monday that information gathered from container honeypots over a six-month period indicated that 50% of misconfigured...
Security Experts listed who responsible for leaking your data to scammers
"There are three most common types of data leakage," said Vseslav Solenik, Director of the R-Vision Center of Expertise.Personal data...
Attackers Denied of Full Control Over ‘Wire’ Users’ Accounts
The developers of the Wire secure messaging app have patched the software against two critical security flaws, one of which...
Security Bug Detected in Google’s Android App
A vulnerability had existed in Google's eponymous Android app with over five billion downloads to date that might have enabled...
