CVE-2021-22652: Advantech iView Missing Authentication RCE (FIXED)
Advantech iView versions prior to 5.7.03.6112 suffer from an instance of "CWE-306: Missing Authentication For Critical Function." This vulnerability (CVE-2021-22652)...
hacking
Law enforcement arrested 8 people that targeted celebrities with SIM swapping attacks
A total of eight criminals have been arrested on 9 February as a result of an international police operation into...
SAP addresses a critical flaw in SAP Commerce Product
SAP released seven new security notes on February 2021 Security Patch Day, including a Hot News note for a critical issue affecting...
Anti-malware firm Emsisoft accidentally exposes internal DB
Antivirus firm Emsisoft discloses a data breach, a third-party had access to a publicly exposed database containing technical logs. The...
Patriot-Linux – Host IDS For Desktop Users
Patriot Linux is a HIDS for desktop users who wants real time graphical alerts when something suspicious happens Patriot detect:...
ShellShockHunter – It’s A Simple Tool For Test Vulnerability Shellshock
It's a simple tool for test vulnerability shellshock Autor: MrCl0wnBlog: http://blog.mrcl0wn.comGitHub: https://github.com/MrCl0wnLabTwitter: https://twitter.com/MrCl0wnLabEmail: [email protected] Shellshock (software bug)Shellshock, also known as...
SOAR Tools: What to Look for When Investing in Security Automation Tech
Security orchestration and automation (SOAR) refers to a collection of software solutions and tools that organizations can leverage to streamline...
CD Projekt Red game maker discloses ransomware attack
The gaming firm CD Projekt Red, which developed popular games like Cyberpunk 2077 and The Witcher, has disclosed a ransomware...
Adobe fixes a buffer overflow issue in Reader which is exploited in the wild
Adobe released security patches for 50 flaws affecting six products, including a zero-day flaw in Reader that has been exploited in...
Microsoft February 2021 Patch Tuesday fixes 56 bugs, including an actively exploited Windows zero-day
Microsoft February 2021 Patch Tuesday addresses 56 vulnerabilities, including a flaw that is known to be actively exploited in the...
Ukraine’s police arrested the author of the U-Admin phishing kit
An international operation conducted by Ukraine’s police, along with the US and Australia peers, shut down the world’s largest phishing...
Cypher – Crypto Cipher Encode Decode Hash
All in one tools for CRYPTOLOGY. Instagram: Capture the RootScreenshotsHow to use FeaturesThis tool include: HASH RSA XOR AES (ECC)...
ATTPwn – Tool Designed To Emulate Adversaries
ATTPwn is a computer security tool designed to emulate adversaries. The tool aims to bring emulation of a real threat...
Patch Tuesday – February 2021
The second Patch Tuesday of 2021 is relatively light on the vulnerability count, with 64 CVEs being addressed across the...
Critical flaws in NextGen Gallery WordPress plugin still impact over 500K installs
The development team behind the NextGen Gallery plugin has addressed two severe CSRF vulnerabilities that could have allowed site takeover....
Microsoft to notify Office 365 users of nation-state attacks
Microsoft implements alerts for ‘nation-state activity’ in the Defender for Office 365 dashboard, to allow organizations to quickly respond. Since...
Hackers attempted to poison the water supply of a US city
Pinellas Sheriff revealed that attackers tried to raise levels of sodium hydroxide, by a factor of more than 100, in...
Google launches Open Source Vulnerabilities (OSV) database
Google announced the launch of OSV (Open Source Vulnerabilities), a vulnerability database and triage infrastructure for open source projects. Google...
Wifi-Password – Quickly Fetch Your WiFi Password And If Needed, Generate A QR Code Of Your WiFi To Allow Phones To Easily Connect
Quickly fetch your WiFi password and if needed, generate a QR code of your WiFi to allow phones to easily...
Ditto – A Tool For IDN Homograph Attacks And Detection
Ditto is a small tool that accepts a domain name as input and generates all its variants for an homograph...
Domestic Kitten has been conducting surveillance targeting over 1,000 individuals
Iran-linked APT group Domestic Kitten, also tracked as APT-C-50, has been conducting widespread surveillance targeting over 1,000 individuals. Domestic Kitten,...
Novel phishing technique uses Morse code to compose malicious URLs
Cybercriminals devised a new phishing technique that leverages the Morse code to hide malicious URLs and bypass defense. Experts spotted...
Victims of Ziggy ransomware can recover their files for free
The Ziggy ransomware gang has shut down its operations and released the decryption keys fearing the ongoing investigation of law enforcement....
COMB breach: 3.2B email and password pairs leaked online
The Largest compilation of emails and passwords (COMB), more than 3.2 billion login credentials, has been leaked on a popular...
