🛡 Cybersecurity & Privacy 🛡 - News – Telegram

🛡 Cybersecurity & Privacy 🛡 - News

25.8K subscribers

89.2K links

🗞 The finest daily news on cybersecurity and privacy.

🔔 Daily releases.

💻 Is your online life secure?

📩 lalilolalo.dev@gmail.com

Download Telegram

About

Blog

Apps

Platform

🛡 Cybersecurity & Privacy 🛡 - News

25.8K subscribers

🛡 Cybersecurity & Privacy 🛡 - News

🕴 Overcoming the Fail-to-Challenge Vulnerability With a Friendly Face 🕴

Ahead of their Black Hat USA talk in August, Simon Pavitt and Stephen Dewsnip explain the value of helping people practice cyber defense via a "malicious floorwalker" exercise.

📖 Read

via "Dark Reading".

Overcoming the Fail-to-Challenge Vulnerability With a Friendly Face

Ahead of their Black Hat USA talk in August, Simon Pavitt and Stephen Dewsnip explain the value of helping people practice cyber defense via a "malicious floorwalker" exercise.

138 views23:29

🛡 Cybersecurity & Privacy 🛡 - News

🕴 OneTouchPoint, Inc. Provides Notice of Data Privacy Event 🕴

.

📖 Read

via "Dark Reading".

OneTouchPoint, Inc. Provides Notice of Data Privacy Event

137 views23:59

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-1861 ‼

Use after free in Sharing in Google Chrome on Chrome OS prior to 102.0.5005.61 allowed a remote attacker who convinced a user to enage in specific user interactions to potentially exploit heap corruption via specific user interaction.

📖 Read

via "National Vulnerability Database".

119 views00:11

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-1853 ‼

Use after free in Indexed DB in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.

📖 Read

via "National Vulnerability Database".

108 views00:11

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-1865 ‼

Use after free in Bookmarks in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension and specific user interaction.

📖 Read

via "National Vulnerability Database".

98 views00:11

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-1873 ‼

Insufficient policy enforcement in COOP in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

📖 Read

via "National Vulnerability Database".

94 views00:11

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-1862 ‼

Inappropriate implementation in Extensions in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to bypass profile restrictions via a crafted HTML page.

📖 Read

via "National Vulnerability Database".

93 views00:11

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-1874 ‼

Insufficient policy enforcement in Safe Browsing in Google Chrome on Mac prior to 102.0.5005.61 allowed a remote attacker to bypass downloads protection policy via a crafted HTML page.

📖 Read

via "National Vulnerability Database".

90 views00:11

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-1866 ‼

Use after free in Tablet Mode in Google Chrome on Chrome OS prior to 102.0.5005.61 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via specific user interactions.

📖 Read

via "National Vulnerability Database".

92 views00:11

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-1858 ‼

Out of bounds read in DevTools in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to perform an out of bounds memory read via specific user interaction.

📖 Read

via "National Vulnerability Database".

87 views00:11

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-1860 ‼

Use after free in UI Foundations in Google Chrome on Chrome OS prior to 102.0.5005.61 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via specific user interactions.

📖 Read

via "National Vulnerability Database".

89 views00:11

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-1868 ‼

Inappropriate implementation in Extensions API in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted HTML page.

📖 Read

via "National Vulnerability Database".

91 views00:11

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2021-46830 ‼

A path traversal vulnerability exists within GoAnywhere MFT before 6.8.3 that utilize self-registration for the GoAnywhere Web Client. This vulnerability could potentially allow an external user who self-registers with a specific username and/or profile information to gain access to files at a higher directory level than intended.

📖 Read

via "National Vulnerability Database".

94 views00:11

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-1871 ‼

Insufficient policy enforcement in File System API in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to bypass file system policy via a crafted HTML page.

📖 Read

via "National Vulnerability Database".

93 views00:11

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-1876 ‼

Heap buffer overflow in DevTools in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.

📖 Read

via "National Vulnerability Database".

88 views00:11

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-1870 ‼

Use after free in App Service in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension.

📖 Read

via "National Vulnerability Database".

85 views00:11

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-1863 ‼

Use after free in Tab Groups in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension and specific user interaction.

📖 Read

via "National Vulnerability Database".

93 views00:12

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-1875 ‼

Inappropriate implementation in PDF in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to leak cross-origin data via a crafted HTML page.

📖 Read

via "National Vulnerability Database".

101 views00:12

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-1869 ‼

Type Confusion in V8 in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

📖 Read

via "National Vulnerability Database".

110 views00:12

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-1856 ‼

Use after free in User Education in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted Chrome Extension or specific user interaction.

📖 Read

via "National Vulnerability Database".

126 views00:12

🛡 Cybersecurity & Privacy 🛡 - News

‼ CVE-2022-1854 ‼

Use after free in ANGLE in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

📖 Read

via "National Vulnerability Database".

139 views00:12