π’ EU inches closer to blocking Meta from sending personal data to US π’
π Read
via "ITPro".
The decision still needs to be approved by other European data regulators, but could see the shut down of Instagram and Facebook on the continentπ Read
via "ITPro".
IT PRO
EU inches closer to blocking Meta from sending personal data to US | IT PRO
The decision still needs to be approved by other European data regulators, but could see the shut down of Instagram and Facebook on the continent
π’ US unveils next-gen encryption tools to withstand quantum computing attacks π’
π Read
via "ITPro".
The National Institute of Standards and Technology (NIST) hopes to offer a variety of tools for quantum-proof encryptionπ Read
via "ITPro".
IT PRO
US unveils next-gen encryption tools to withstand quantum computing attacks | IT PRO
The National Institute of Standards and Technology (NIST) hopes to offer a variety of tools for quantum-proof encryption
π’ Maui ransomware actively targeting US healthcare organizations π’
π Read
via "ITPro".
North Korean state-sponsored attackers are said to have been targeting critical services since at least May 2021π Read
via "ITPro".
IT PRO
Maui ransomware actively targeting US healthcare organizations | IT PRO
North Korean state-sponsored attackers are said to have been targeting critical services since at least May 2021
π’ Why are ransomware gangs pivoting to Rust? π’
π Read
via "ITPro".
The developer-favourite language is fast becoming a delight for ransomware criminalsπ Read
via "ITPro".
IT PRO
Why are ransomware gangs pivoting to Rust? | IT PRO
The developer-favourite language is fast becoming a delight for ransomware criminals
π’ SoftBank under pressure over links with 'blacklisted' Chinese facial recognition firm π’
π Read
via "ITPro".
A subsidiary of the Japanese tech giant that conducts business with Mastercard and Visa relies on tech by the sanctioned SenseTimeπ Read
via "ITPro".
IT PRO
SoftBank under pressure over links with 'blacklisted' Chinese facial recognition firm | IT PRO
A subsidiary of the Japanese tech giant that conducts business with Mastercard and Visa relies on tech by the sanctioned SenseTime
π’ Microsoft identifies sophisticated Hive ransomware variant written in Rust π’
π Read
via "ITPro".
The move away from Go and an encryption redesign makes the new strain even more of a threat to business targetsπ Read
via "ITPro".
ITPro
Microsoft identifies sophisticated Hive ransomware variant written in Rust
The move away from Go and an encryption redesign makes the new strain even more of a threat to business targets
π’ MI5 and FBI warn businesses over mass Chinese IP theft π’
π Read
via "ITPro".
The security services urged organisations to consolidate security practices and approach Chinese business relationships with cautionπ Read
via "ITPro".
IT PRO
MI5 and FBI warn businesses over mass Chinese IP theft | IT PRO
The security services urged organisations to consolidate security practices and approach Chinese business relationships with caution
π1
βΌ CVE-2022-27910 βΌ
π Read
via "National Vulnerability Database".
In Joomla component 'Joomlatools - DOCman 3.5.13 (and likely most versions below)' are affected to an reflected Cross-Site Scripting (XSS) in an image upload functionπ Read
via "National Vulnerability Database".
βοΈ Experian, You Have Some Explaining to Do βοΈ
π Read
via "Krebs on Security".
Twice in the past month KrebsOnSecurity has heard from readers who've had their accounts at big-three credit bureau Experian hacked and updated with a new email address that wasn't theirs. In both cases the readers used password managers to select strong, unique passwords for their Experian accounts. Research suggests identity thieves were able to hijack the accounts simply by signing up for new accounts at Experian using the victim's personal information and a different email address.π Read
via "Krebs on Security".
Krebsonsecurity
Experian, You Have Some Explaining to Do
Twice in the past month KrebsOnSecurity has heard from readers who've had their accounts at big-three credit bureau Experian hacked and updated with a new email address that wasn't theirs. In both cases the readers used password managers to selectβ¦
π1
βΌ CVE-2022-31571 βΌ
π Read
via "National Vulnerability Database".
The akashtalole/python-flask-restful-api repository through 2019-09-16 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.π Read
via "National Vulnerability Database".
βΌ CVE-2022-31562 βΌ
π Read
via "National Vulnerability Database".
The waveyan/internshipsystem repository through 2018-05-22 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.π Read
via "National Vulnerability Database".
βΌ CVE-2022-31582 βΌ
π Read
via "National Vulnerability Database".
The shaolo1/VideoServer repository through 2019-09-21 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.π Read
via "National Vulnerability Database".
βΌ CVE-2022-31580 βΌ
π Read
via "National Vulnerability Database".
The sanojtharindu/caretakerr-api repository through 2021-05-17 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.π Read
via "National Vulnerability Database".
βΌ CVE-2022-31578 βΌ
π Read
via "National Vulnerability Database".
The piaoyunsoft/bt_lnmp repository through 2019-10-10 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.π Read
via "National Vulnerability Database".
βΌ CVE-2022-31579 βΌ
π Read
via "National Vulnerability Database".
The ralphjzhang/iasset repository through 2022-05-04 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.π Read
via "National Vulnerability Database".
βΌ CVE-2022-35416 βΌ
π Read
via "National Vulnerability Database".
H3C SSL VPN through 2022-07-10 allows wnm/login/login.json svpnlang cookie XSS.π Read
via "National Vulnerability Database".
βΌ CVE-2022-31581 βΌ
π Read
via "National Vulnerability Database".
The scorelab/OpenMF repository before 2022-05-03 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.π Read
via "National Vulnerability Database".
βΌ CVE-2022-35414 βΌ
π Read
via "National Vulnerability Database".
softmmu/physmem.c in QEMU through 7.0.0 can perform an uninitialized read on the translate_fail path, leading to an io_readx or io_writex crash.π Read
via "National Vulnerability Database".
βΌ CVE-2022-31585 βΌ
π Read
via "National Vulnerability Database".
The umeshpatil-dev/Home__internet repository through 2020-08-28 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.π Read
via "National Vulnerability Database".
βΌ CVE-2022-31583 βΌ
π Read
via "National Vulnerability Database".
The sravaniboinepelli/AutomatedQuizEval repository through 2020-04-27 on GitHub allows absolute path traversal because the Flask send_file function is used unsafely.π Read
via "National Vulnerability Database".