CVE-2021-21204
Summary: Use after free in Blink in Google Chrome on OS X prior to 90.0.4430.72 allowed a remote attacker to...
Descomplica – 4,845,378 breached accounts
In March 2021, the Brazilian EdTech company Descomplica suffered a data breach which was subsequently posted to a popular hacking...
Jefit – 9,052,457 breached accounts
In August 2020, the workout tracking app Jefit suffered a data breach. The data was subsequently sold within the hacking...
Ransomware group threatens to leak information about police informants
One day after a ransomware group shared hacked data that allegedly belonged to the Washington, D.C. Police Department online, the...
International Law Enforcement Takes Down Emotet Malware in a Joint Operation
 Emotet, one of the most dangerous email spam botnets in recent history, is being wiped out today from all infected...
Millions of the Pentagon’s Dormant IP Addresses Sprang to Life, Just Minutes Before Trump Left Office
 While the world was focused on President Donald Trump's departure on Jan. 20, an obscure Florida corporation quietly revealed a...
More than one hundred Russian companies were subjected to a cyber attack
Kaspersky Lab, which specializes in developing systems to protect against cyber threats, reported a fraudulent mailing on behalf of The...
250 Million Americans Sensitive Data Leaked Online by Pompompurin
 As of 22nd April 2021, a Pompompurin named hacker group dropped a database of more than 250 (250,806,711) million American...
Apple’s AirDrop Comes with a Security Flaw
 Due to its intriguing features, the much-hyped announcement of AirDrop at the Apple event drew a lot of attention. However,...
APT trends report Q1 2021
For four years, the Global Research and Analysis Team (GReAT) at Kaspersky has been publishing quarterly summaries of advanced persistent...
Fav-Up – IP Lookup By Favicon Using Shodan
Lookups for real IP starting from the favicon icon and using Shodan.Installationpip3 install -r requirements.txt Shodan API key (not the...
Ldsview – Offline search tool for LDAP directory dumps in LDIF format
Offline search tool for LDAP directory dumps in LDIF format. FeaturesFast and memory efficient parsing of LDIF files Build ldapsearch...
CISA, NIST published an advisory on supply chain attacks
CISA and NIST published a report on software supply chain attacks that shed light on the associated risks and provide...
Ransomware hit Guilderland Central School District near Albany
Officials revealed that the school district near Albany was hit by a ransomware attack that forced students in grades 7...
Microsoft Defender uses Intel TDT technology against crypto-mining malware
Microsoft announced an improvement of its Defender antivirus that will leverage Intel’s Threat Detection Technology (TDT) to detect processes associated...
Shlayer macOS malware abuses zero-day to bypass Gatekeeper feature
Apple addresses a zero-day in macOS exploited by Shlayer malware to bypass Apple’s security features and deliver second-stage malicious payloads. Apple...
Boffins found a bug in Apple AirDrop that could leak users’ personal info
Experts found a bug in Apple’s wireless file-sharing protocol Apple AirDrop that could expose user’s contact information. Boffins from the...
CVE-2021-23133
Summary: A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lead to kernel privilege escalation from the...
CVE-2021-21341
Summary: XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.16, there...
CVE-2021-21343
Summary: XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.16, there...
CVE-2020-36323
Summary: In the standard library in Rust before 1.52.0, there is an optimization for joining strings that can cause uninitialized...
CVE-2021-27252
Summary: This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R7800 firmware version 1.0.2.76. Authentication...
Apple patches ‘worst macOS bug in recent memory’ after it was used in the wild
A newly discovered bug, patched in macOS 11.3, allowed hackers to circumvent much of Apple’s built-in malware detection for programs...
Password manager hijacked to deliver malware in supply chain attack
In the latest example of a supply chain attack, cybercriminals delivered malware to customers of the business password manager Passwordstate...
