🛡 Cybersecurity & Privacy 🛡 - News – Telegram

🛡 Cybersecurity & Privacy 🛡 - News

25.8K subscribers

89.2K links

🗞 The finest daily news on cybersecurity and privacy.

🔔 Daily releases.

💻 Is your online life secure?

📩 lalilolalo.dev@gmail.com

Download Telegram

About

Blog

Apps

Platform

🛡 Cybersecurity & Privacy 🛡 - News

25.8K subscribers

🛡 Cybersecurity & Privacy 🛡 - News

🔏 DOJ Charges Two Iranians in Cyber Intrusion Campaign 🔏

For years, the hackers infiltrated systems and targeted intellectual property and national security data.

📖 Read

via "Subscriber Blog RSS Feed ".

Digital Guardian

DOJ Charges Two Iranians in Cyber Intrusion Campaign

For years, the hackers infiltrated systems and targeted intellectual property and national security data.

162 views18:47

🛡 Cybersecurity & Privacy 🛡 - News

🔐 CISOs top traits revealed in report: Improvement needed 🔐

A new Gartner report found only 12% of chief information security officers (CISOs) met the criteria for being considered highly effective.

📖 Read

via "Security on TechRepublic".

CISOs top traits revealed in report: Improvement needed

A new Gartner report found only 12% of chief information security officers (CISOs) met the criteria for being considered highly effective.

158 views19:49

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2020-0392

In getLayerDebugInfo of SurfaceFlinger.cpp, there is a possible code execution due to a double free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11Android ID: A-150226608

📖 Read

via "National Vulnerability Database".

141 views19:55

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2020-0391

In applyPolicy of PackageManagerService.java, there is possible arbitrary command execution as System due to an unenforced protected-broadcast. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11Android ID: A-158570769

📖 Read

via "National Vulnerability Database".

133 views19:55

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2020-0390

In the app zygote SE Policy, there is a possible permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11Android ID: A-157598026

📖 Read

via "National Vulnerability Database".

125 views19:55

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2020-0389

In createSaveNotification of RecordingService.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11Android ID: A-156959408

📖 Read

via "National Vulnerability Database".

123 views19:55

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2020-0388

In createEmergencyLocationUserNotification of GnssVisibilityControl.java, there is a possible permissions bypass due to an empty mutable PendingIntent. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-10Android ID: A-156123285

📖 Read

via "National Vulnerability Database".

119 views19:55

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2020-0386

In onCreate of RequestPermissionActivity.java, there is a possible tapjacking vector due to an insecure default value. This could lead to local escalation of privilege allowing an attacker to set Bluetooth discoverability with User execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10 Android-11Android ID: A-155650356

📖 Read

via "National Vulnerability Database".

115 views19:55

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2020-0385

In Parse_insh of eas_mdls.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote information disclosure in the media extractor with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-9 Android-10 Android-11 Android-8.0 Android-8.1Android ID: A-150160041

📖 Read

via "National Vulnerability Database".

119 views19:55

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2020-0384

In Parse_art of eas_mdls.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote information disclosure in the media extractor with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11 Android-8.0Android ID: A-150159906

📖 Read

via "National Vulnerability Database".

117 views19:55

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2020-0383

In Parse_ins of eas_mdls.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote information disclosure in the media extractor process with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11 Android-8.0Android ID: A-150160279

📖 Read

via "National Vulnerability Database".

115 views19:55

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2020-0382

In RunInternal of dumpstate.cpp, there is a possible user consent bypass due to an uncaught exception. This could lead to local information disclosure of bug report data with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-10Android ID: A-152944488

📖 Read

via "National Vulnerability Database".

111 views19:55

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2020-0381

In Parse_wave of eas_mdls.c, there is a possible out of bounds write due to an integer overflow. This could lead to remote information disclosure in a highly constrained process with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10 Android-11Android ID: A-150159669

📖 Read

via "National Vulnerability Database".

112 views19:55

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2020-0380

In allocExcessBits of bitalloc.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-146398979

📖 Read

via "National Vulnerability Database".

106 views19:55

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2020-0379

In the Bluetooth service, there is a possible spoofing attack due to a logic error. This could lead to remote information disclosure of sensitive information with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10 Android-11Android ID: A-150156492

📖 Read

via "National Vulnerability Database".

102 views19:55

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2020-0342

There is a possible out of bounds write due to an incorrect bounds check.Product: AndroidVersions: Android SoCAndroid ID: A-160812576

📖 Read

via "National Vulnerability Database".

104 views19:55

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2020-0278

There is a possible out of bounds write due to an incorrect bounds check.Product: AndroidVersions: Android SoCAndroid ID: A-160812574

📖 Read

via "National Vulnerability Database".

106 views19:55

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2020-0245

In DecodeFrameCombinedMode of combined_decode.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11 Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-152496149

📖 Read

via "National Vulnerability Database".

105 views19:55

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2020-0229

There is a possible out of bounds write due to an incorrect bounds check.Product: AndroidVersions: Android SoCAndroid ID: A-156333725

📖 Read

via "National Vulnerability Database".

105 views19:55

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2020-0123

There is a possible out of bounds write due to an incorrect bounds check.Product: AndroidVersions: Android SoCAndroid ID: A-149871374

📖 Read

via "National Vulnerability Database".

118 views19:55

🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2020-0074

In verifyIntentFiltersIfNeeded of PackageManagerService.java, there is a possible settings bypass allowing an app to become the default handler for arbitrary domains. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-146204120

📖 Read

via "National Vulnerability Database".

123 views19:55