Fraudsters Target US Tax Experts in Ongoing Phishing Campaign
 Scammers are targeting US tax professionals in ongoing series of phishing attacks to steal Electronic Filling identification Numbers (EFINs). The...
Romania’s Iimobiliare.ro Website Suffer Major Security Breach
 The website Iimobiliare.ro, Romania's biggest advertisement platform for real estate ads, was infringed last December by a security breach that...
Adorcam Leaks Thousands of Webcam Accounts
 A webcam application installed by a huge number of clients left an uncovered database loaded with client information on the...
UDdup – Urls De-Duplication Tool For Better Recon
The tool gets a list of URLs, and removes "duplicate" pages in the sense of URL patterns that are probably...
Damn-Vulnerable-GraphQL-Application – Damn Vulnerable GraphQL Application Is An Intentionally Vulnerable Implementation Of Facebook’s GraphQL Technology, To Learn And Practice GraphQL Security
Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.About DVGADamn...
PayPal addresses reflected XSS bug in user wallet currency converter
PayPal has addressed a reflected cross-site scripting (XSS) vulnerability that affected the currency converter feature of user wallets. PayPal has...
Security Affairs newsletter Round 301
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
FBI’s alert warns about using Windows 7 and TeamViewer
The FBI is warning companies about the use of out-of-date Windows 7 systems, desktop sharing software TeamViewer, and weak account...
Court documents show FBI could use a tool to access private Signal messages on iPhones
Court documents obtained by Forbes revealed that the FBI may have a tool that allows accessing private Signal messages on iPhones. Court...
CVE-2020-13577
Summary: A denial-of-service vulnerability exists in the WS-Security plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can...
CVE-2016-4970
Summary: handler/ssl/OpenSslEngine.java in Netty 4.0.x before 4.0.37.Final and 4.1.x before 4.1.1.Final allows remote attackers to cause a denial of service...
CVE-2019-5086
Summary: An exploitable integer overflow vulnerability exists in the flattenIncrementally function in the xcf2png and xcf2pnm binaries of xcftools, version...
CVE-2019-5087
Summary: An exploitable integer overflow vulnerability exists in the flattenIncrementally function in the xcf2png and xcf2pnm binaries of xcftools 1.0.7....
CVE-2020-7919
Summary: Go before 1.12.16 and 1.13.x before 1.13.7 (and the crypto/cryptobyte package before 0.0.0-20200124225646-8b5121be2f68 for Go) allows attacks on clients...
Sift Exposes New Telegram Fraud Scheme to Exploit Restaurants and Food Delivery Apps
 As the popularity of food delivery apps is increasing with each passing day so is the revenue, as a consequence, these apps...
NIST NVD Report Shows Increase in Low-Complexity CVEs
 Common vulnerabilities and exposures, or CVEs, are seemingly increasing at a faster rate as a proportion of the overall number...
Ukraine’s PrivatBank Database for Sale on a Hacking Forum
 PrivatBank is the biggest commercial bank in Ukraine, as far as the number of customers, assets value, loan portfolio, and...
Project iKy v2.7.0 – Tool That Collects Information From An Email And Shows Results In A Nice Visual Interface
Project iKy is a tool that collects information from an email and shows results in a nice visual interface.Visit the...
Darkdump – Search The Deep Web Straight From Your Terminal
Darkdump is a simple script written in Python3.9 in which it allows users to enter a search term (query) in...
The Importance of a Proactive Cyber Defense Solution To Protect Your Critical Data
Personal and Corporate data is now regularly targeted and traded by unscrupulous actors, protect it with a proactive Cyber Defense...
Gmail users from US most targeted by email-based phishing and malware
Google revealed that Gmail users from the United States are the most targeted by email-based phishing and malware. A joint...
Yandex security team caught admin selling access to users’ inboxes
Russian internet and search company Yandex discloses a data breach, a system administrator was selling access to thousands of user...
CVE-2021-21028
Summary: Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier) and 2017.011.30188 (and earlier) are affected by a...
CVE-2021-21021
Summary: Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier) and 2017.011.30188 (and earlier) are affected by a...
