π Falco 0.31.0 π
π Read
via "Packet Storm Security".
Sysdig Falco is a behavioral activity monitoring agent that is open source and comes with native support for containers. Falco lets you define highly granular rules to check for activities involving file and network activity, process execution, IPC, and much more, using a flexible syntax. Falco will notify you when these rules are violated. You can think about falco as a mix between snort, ossec and strace.π Read
via "Packet Storm Security".
Packetstormsecurity
Falco 0.31.0 β Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
βΌ CVE-2021-40033 βΌ
π Read
via "National Vulnerability Database".
There is an information exposure vulnerability on several Huawei Products. The vulnerability is due to that the software does not properly protect certain information. Successful exploit could cause information disclosure. Affected product versions include: CloudEngine 12800 V200R005C10SPC800; CloudEngine 5800 V200R005C10SPC800, V200R019C00SPC800; CloudEngine 6800 V200R005C10SPC800, V200R005C20SPC800, V200R019C00SPC800; CloudEngine 7800 V200R005C10SPC800, V200R019C00SPC800.π Read
via "National Vulnerability Database".
βΌ CVE-2021-46458 βΌ
π Read
via "National Vulnerability Database".
Victor CMS v1.0 was discovered to contain a SQL injection vulnerability in the component admin/posts.php?source=add_post. This vulnerability can be exploited through a crafted POST request via the post_title parameter.π Read
via "National Vulnerability Database".
βΌ CVE-2021-40042 βΌ
π Read
via "National Vulnerability Database".
There is a release of invalid pointer vulnerability in some Huawei products, successful exploit may cause the process and service abnormal. Affected product versions include: CloudEngine 12800 V200R019C10SPC800, V200R019C10SPC900; CloudEngine 5800 V200R019C10SPC800, V200R020C00SPC600; CloudEngine 6800 versions V200R019C10SPC800, V200R019C10SPC900, V200R020C00SPC600, V300R020C00SPC200; CloudEngine 7800 V200R019C10SPC800.π Read
via "National Vulnerability Database".
βΌ CVE-2021-31617 βΌ
π Read
via "National Vulnerability Database".
In ASQ in Stormshield Network Security (SNS) 1.0.0 through 2.7.8, 2.8.0 through 2.16.0, 3.0.0 through 3.7.20, 3.8.0 through 3.11.8, and 4.0.1 through 4.2.2, mishandling of memory management can lead to remote code execution.π Read
via "National Vulnerability Database".
βΌ CVE-2022-0286 βΌ
π Read
via "National Vulnerability Database".
A flaw was found in the Linux kernel. A null pointer dereference in bond_ipsec_add_sa() may lead to local denial of service.π Read
via "National Vulnerability Database".
β NSO Group Pegasus Spyware Aims at Finnish Diplomats β
π Read
via "Threat Post".
Finland is weathering a bout of Pegasus infections, along with a Facebook Messenger phishing scam.π Read
via "Threat Post".
Threat Post
NSO Group Pegasus Spyware Aims at Finnish Diplomats
Finland is weathering a bout of Pegasus infections, along with a Facebook Messenger phishing scam.
β Website operator fined for using Google Fonts βthe cloudy wayβ β
π Read
via "Naked Security".
Google Fonts are OK, it seems, but only if everyone keeps their own copy of the fonts they use.π Read
via "Naked Security".
Naked Security
Website operator fined for using Google Fonts βthe cloudy wayβ
Google Fonts are OK, it seems, but only if everyone keeps their own copy of the fonts they use.
β Apple Pays $100.5K Bug Bounty for Mac Webcam Hack β
π Read
via "Threat Post".
The researcher found that he could gain unauthorized camera access via a shared iCloud document that could also "hack every website you've ever visited."π Read
via "Threat Post".
Threat Post
Apple Pays $100.5K Bug Bounty for Mac Webcam Hack
The researcher found that he could gain unauthorized camera access via a shared iCloud document that could also "hack every website you've ever visited."
βΌ CVE-2021-42635 βΌ
π Read
via "National Vulnerability Database".
PrinterLogic Web Stack versions 19.1.1.13 SP9 and below use a hardcoded APP_KEY value, leading to pre-auth remote code execution.π Read
via "National Vulnerability Database".
βΌ CVE-2021-44114 βΌ
π Read
via "National Vulnerability Database".
Cross Site Scripting (XSS) vulnerability exists in Sourcecodester Stock Management System in PHP/OOP 1.0, which allows remote malicious users to execute arbitrary remote code execution via create user function.π Read
via "National Vulnerability Database".
βΌ CVE-2021-42631 βΌ
π Read
via "National Vulnerability Database".
PrinterLogic Web Stack versions 19.1.1.13 SP9 and below deserializes attacker controlled leading to pre-auth remote code execution.π Read
via "National Vulnerability Database".
π Number of GDPR Fines Rose 7x in 2021 π
π Read
via "".
The cost is skewed by massive fines but a new survey shows there was still a steady increase in the number of GDPR fines across the EU last year.π Read
via "".
Digital Guardian
Number of GDPR Fines Rose 7x in 2021
The cost is skewed by massive fines but a new survey shows there was still a steady increase in the number of GDPR fines across the EU last year.
π΄ Aggressive BlackCat Ransomware on the Rise π΄
π Read
via "Dark Reading".
The cybercriminals behind the malware claim to have compromised more than a dozen companies; they have aggressively outed victims and purportedly paid a significant share of ransoms back to affiliates.π Read
via "Dark Reading".
Dark Reading
Aggressive BlackCat Ransomware on the Rise
The cybercriminals behind the malware claim to have compromised more than a dozen companies; they have aggressively outed victims and purportedly paid a significant share of ransoms back to affiliates.
β Public Exploit Released for Windows 10 Bug β
π Read
via "Threat Post".
The vulnerability affects all unpatched Windows 10 versions following a messy Microsoft January update.π Read
via "Threat Post".
Threat Post
Public Exploit Released for Windows 10 Bug
The vulnerability affects all unpatched Windows 10 versions following a messy Microsoft January update.
π΄ BlackBerry Agrees to Sell Legacy Patents for $600M π΄
π Read
via "Dark Reading".
It has entered into a patent sale agreement with Catapult IP Innovations.π Read
via "Dark Reading".
Dark Reading
BlackBerry Agrees to Sell Legacy Patents for $600M
It has entered into a patent sale agreement with Catapult IP Innovations.
βΌ CVE-2022-21659 βΌ
π Read
via "National Vulnerability Database".
Flask-AppBuilder is an application development framework, built on top of the Flask web framework. In affected versions there exists a user enumeration vulnerability. This vulnerability allows for a non authenticated user to enumerate existing accounts by timing the response time from the server when you are logging in. Users are advised to upgrade to version 3.4.4 as soon as possible. There are no known workarounds for this issue.π Read
via "National Vulnerability Database".
βΌ CVE-2022-24263 βΌ
π Read
via "National Vulnerability Database".
Hospital Management System v4.0 was discovered to contain a SQL injection vulnerability in /Hospital-Management-System-master/func.php via the email parameter.π Read
via "National Vulnerability Database".
βΌ CVE-2022-24264 βΌ
π Read
via "National Vulnerability Database".
Cuppa CMS v1.0 was discovered to contain a SQL injection vulnerability in /administrator/components/table_manager/ via the search_word parameter.π Read
via "National Vulnerability Database".
βΌ CVE-2022-23872 βΌ
π Read
via "National Vulnerability Database".
Emlog pro v1.1.1 was discovered to contain a stored cross-site scripting (XSS) vulnerability in the component /admin/configure.php via the parameter footer_info.π Read
via "National Vulnerability Database".
βΌ CVE-2022-24265 βΌ
π Read
via "National Vulnerability Database".
Cuppa CMS v1.0 was discovered to contain a SQL injection vulnerability in /administrator/components/menu/ via the path=component/menu/&menu_filter=3 parameter.π Read
via "National Vulnerability Database".