Revil ransomware operators are targeting new victims
Recently we observed that part of the REvil ransomware infrastructure was up and running again, now we can confirm that...
Security Affairs newsletter Round 331
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free...
Cisco released security patches for High-Severity flaws in IOS XR software
Cisco fixed multiple high-severity flaws in the IOS XR software that can allow attackers to trigger a DoS condition, elevate...
CVE-2020-19750
Summary: An issue was discovered in gpac 0.8.0. The strdup function in box_code_base.c has a heap-based buffer over-read. Reference Links(if...
CVE-2020-19752
Summary: The find_color_or_error function in gifsicle 1.92 contains a NULL pointer dereference. Reference Links(if available): https://github.com/kohler/gifsicle/issues/140 CVSS Score (if available)...
CVE-2021-38706
Summary: messages_load.php in ClinicCases 7.3.3 suffers from a blind SQL injection vulnerability, which allows low-privileged attackers to execute arbitrary SQL...
CVE-2021-40524
Summary: In Pure-FTPd 1.0.49, an incorrect max_filesize quota mechanism in the server allows attackers to upload files of unbounded size,...
Ukraine legalized cryptocurrency
The Verkhovna Rada of Ukraine adopted the bill "On virtual assets", which will legalize cryptocurrency and virtual hryvnia.The bill on...
School Childrens’ Personal Information on Dark Web: Potential Identity Theft
 NBC News, an American broadcaster has published a report on the data theft of millions of school children and how...
Virginia Defense Force Email Accounts Hit by a Cyber Attack
 In July, a hacker invaded the email accounts of the Virginia Military Department and the Virginia Defense Force, told a...
UN Computer Networks Breached by Hackers Earlier This Year
 Hackers breached the United Nations' computer network and stole data, according to researchers at cybersecurity firm Resecurity, According to Bloomberg, the...
Spook.js: Chrome is Threatened by a New Spectre Like Attack
 A newly found side-channel attack targeting Google Chrome might allow an attacker to use a Spectre-style attack to bypass the...
Pollenisator – Collaborative Pentest Tool With Highly Customizable Tools
Pollenisator is a tool aiming to assist pentesters and auditor automating the use of some tools/scripts and keep track of...
Karta – Source Code Assisted Fast Binary Matching Plugin For IDA
"Karta" (Russian for "Map") is an IDA Python plugin that identifies and matches open-sourced libraries in a given binary. The...
New SOVA Android Banking trojan is rapidly growing
SOVA is a new Android banking trojan that targets banking applications, cryptocurrency wallets, and shopping apps from the U.S. and...
Microsoft fixes Azurescape flaw in Azure Container Instances
Microsoft has fixed the Azurescape issue, a flaw in Azure Container Instances that allows to take over containers of other...
BlackMatter Ransomware Victim: River City Construction
BlackMatter Ransomware NOTE: The information on this page is automated and scraped directly from the BlackMatter Onion Dark Web Tor...
CVE-2020-19750
Summary: An issue was discovered in gpac 0.8.0. The strdup function in box_code_base.c has a heap-based buffer over-read. Reference Links(if...
CVE-2020-19752
Summary: The find_color_or_error function in gifsicle 1.92 contains a NULL pointer dereference. Reference Links(if available): https://github.com/kohler/gifsicle/issues/140 CVSS Score (if available)...
CVE-2021-38706
Summary: messages_load.php in ClinicCases 7.3.3 suffers from a blind SQL injection vulnerability, which allows low-privileged attackers to execute arbitrary SQL...
CVE-2021-40524
Summary: In Pure-FTPd 1.0.49, an incorrect max_filesize quota mechanism in the server allows attackers to upload files of unbounded size,...
CVE-2021-24006
Summary: An improper access control vulnerability in FortiManager versions 6.4.0 to 6.4.3 may allow an authenticated attacker with a restricted...
That’s the way the cookie banner crumbles?
Elizabeth Denham, current head of the Information Commissioner’s Office (ICO), the UK’s data protection watchdog and the organization tasked to...
Facebook puts on Ray-Bans, struts into the privacy minefield of smart glasses
Facebook, neck-deep in virtual / augmented reality with the Oculus headset, continues to move things up a gear. It’s announced...
