‼ CVE-2021-1351 ‼
📖 Read
via "National Vulnerability Database".
A vulnerability in the web-based interface of Cisco Webex Meetings could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based interface of the affected service. The vulnerability is due to insufficient validation of user-supplied input by the web-based interface of the affected service. An attacker could exploit this vulnerability by persuading a user of the interface to click a maliciously crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information.📖 Read
via "National Vulnerability Database".
❌ Ninja Forms WordPress Plugin Bug Opens Websites to Hacks ❌
📖 Read
via "Threat Post".
The popular plugin is installed on more than 1 million websites, and has four flaws that allow various kinds of serious attacks, including site takeover and email hijacking.📖 Read
via "Threat Post".
Threat Post
Ninja Forms WordPress Plugin Bug Opens Websites to Hacks
The popular plugin is installed on more than 1 million websites, and has four flaws that allow various kinds of serious attacks, including site takeover and email hijacking.
🔏 Suit Claims Attorneys Stole, Destroyed Data Before Joining Rival Firm 🔏
📖 Read
via "Digital Guardian".
A new lawsuit alleges four attorneys, months before they left for a competing firm, plotted their exit, copied and destroyed corporate data.📖 Read
via "Digital Guardian".
Digital Guardian
Suit Claims Attorneys Stole, Destroyed Data Before Joining Rival Firm
A new lawsuit alleges four attorneys plotted their exit months before they left for a competing firm, then copied and destroyed corporate data.
🕴 Kia Faces $20M DoppelPaymer Ransomware Attack 🕴
📖 Read
via "Dark Reading".
Kia Motors America this week experienced a nationwide IT outage; now, reports indicate the company was hit with ransomware.📖 Read
via "Dark Reading".
Dark Reading
Kia Faces $20M DoppelPaymer Ransomware Attack
Kia Motors America this week experienced a nationwide IT outage; now, reports indicate the company was hit with ransomware.
‼ CVE-2020-13555 ‼
📖 Read
via "National Vulnerability Database".
An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In COM Server Application Privilege Escalation, an attacker can either replace binary or loaded modules to execute code with NT SYSTEM privilege.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-13553 ‼
📖 Read
via "National Vulnerability Database".
An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In webvrpcs Run Key Privilege Escalation in installation folder of WebAccess, an attacker can either replace binary or loaded modules to execute code with NT SYSTEM privilege.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-13551 ‼
📖 Read
via "National Vulnerability Database".
An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In privilege escalation via PostgreSQL executable, an attacker can either replace binary or loaded modules to execute code with NT SYSTEM privilege.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-13552 ‼
📖 Read
via "National Vulnerability Database".
An exploitable local privilege elevation vulnerability exists in the file system permissions of Advantech WebAccess/SCADA 9.0.1 installation. In privilege escalation via multiple service executables in installation folder of WebAccess, an attacker can either replace binary or loaded modules to execute code with NT SYSTEM privilege.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-13550 ‼
📖 Read
via "National Vulnerability Database".
A local file inclusion vulnerability exists in the installation functionality of Advantech WebAccess/SCADA 9.0.1. A specially crafted application can lead to information disclosure. An attacker can send an authenticated HTTP request to trigger this vulnerability.📖 Read
via "National Vulnerability Database".
❌ Stolen Jones Day Law Firm Files Posted on Dark Web ❌
📖 Read
via "Threat Post".
Jones Day, which represented Trump, said the breach is part of the Accellion attack from December.📖 Read
via "Threat Post".
Threat Post
Stolen Jones Day Law Firm Files Posted on Dark Web
Jones Day, which represented Trump, said the breach is part of the Accellion attack from December.
❌ Windows, Linux Devices Hijacked In Two-Year Cryptojacking Campaign ❌
📖 Read
via "Threat Post".
The WatchDog malware has flown under the radar for two years in what researchers call one of the 'largest' Monero cryptojacking attacks ever.📖 Read
via "Threat Post".
Threat Post
Windows, Linux Devices Hijacked In Two-Year Cryptojacking Campaign
The WatchDog malware has flown under the radar for two years in what researchers call one of the 'largest' Monero cryptojacking attacks ever.
🦿 LastPass: A cheat sheet 🦿
📖 Read
via "Tech Republic".
This comprehensive guide covers everything you need to know about password management app LastPass, including its newly announced free cross-platform access.📖 Read
via "Tech Republic".
TechRepublic
LastPass password management app: A cheat sheet
This comprehensive guide covers everything you need to know about password management app LastPass, including recent restrictions on free accounts.
🕴 White House Says 100 Private Sector Orgs Hit in SolarWinds Campaign 🕴
📖 Read
via "Dark Reading".
Anne Neuberger, a top Biden cybersecurity official, provided an update on the government's investigation into the massive breach.📖 Read
via "Dark Reading".
Dark Reading
White House Says 100 Private Sector Orgs Hit in SolarWinds Campaign
Anne Neuberger, a top Biden cybersecurity official, provided an update on the government's investigation into the massive breach.
🕴 US Unseals Indictments Against North Korean Cyberattackers for Thefts Totaling $1.3B 🕴
📖 Read
via "Dark Reading".
FBI, CISA, and Treasury Department also release details about North Korean malware used in cryptocurrency thefts since 2018.📖 Read
via "Dark Reading".
Dark Reading
US Unseals Indictments Against North Korean Cyberattackers for Thefts Totaling $1.3B
FBI, CISA, and Treasury Department also release details about North Korean malware used in cryptocurrency thefts since 2018.
‼ CVE-2021-26720 ‼
📖 Read
via "National Vulnerability Database".
avahi-daemon-check-dns.sh in the Debian avahi package through 0.8-4 is executed as root via /etc/network/if-up.d/avahi-daemon, and allows a local attacker to cause a denial of service or create arbitrary empty files via a symlink attack on files under /run/avahi-daemon. NOTE: this only affects the packaging for Debian GNU/Linux (used indirectly by SUSE), not the upstream Avahi product.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-27367 ‼
📖 Read
via "National Vulnerability Database".
Controller/Backend/FileEditController.php and Controller/Backend/FilemanagerController.php in Bolt before 4.1.13 allow Directory Traversal.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-25605 ‼
📖 Read
via "National Vulnerability Database".
Cleartext transmission of sensitive information in Agora Video SDK prior to 3.1 allows a remote attacker to obtain access to audio and video of any ongoing Agora video call through observation of cleartext network traffic.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-26911 ‼
📖 Read
via "National Vulnerability Database".
core/imap/MCIMAPSession.cpp in Canary Mail before 3.22 has Missing SSL Certificate Validation for IMAP in STARTTLS mode.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-3396 ‼
📖 Read
via "National Vulnerability Database".
OpenNMS Meridian 2016, 2017, 2018 before 2018.1.25, 2019 before 2019.1.16, and 2020 before 2020.1.5, Horizon 1.2 through 27.0.4, and Newts <1.5.3 has Incorrect Access Control, which allows local and remote code execution using JEXL expressions.📖 Read
via "National Vulnerability Database".
‼ CVE-2021-27374 ‼
📖 Read
via "National Vulnerability Database".
VertiGIS WebOffice 10.7 SP1 before patch20210202 and 10.8 SP1 before patch20210207 allows attackers to achieve "Zugriff auf Inhalte der WebOffice Applikation."📖 Read
via "National Vulnerability Database".
‼ CVE-2020-36245 ‼
📖 Read
via "National Vulnerability Database".
GramAddict through 1.2.3 allows remote attackers to execute arbitrary code because of use of UIAutomator2 and ATX-Agent. The attacker must be able to reach TCP port 7912, e.g., by being on the same Wi-Fi network.📖 Read
via "National Vulnerability Database".