Tuesday, November 30, 2021
Latest:

Home

Editors' Pick 

Ikea – belső adathalász támadás

Geronimo

A BleepingComputer hozta nyilvánosságra, hogy a az Ikea belső levelezését támadás érte. A válaszlánclevél támadás (reply-chain phishing cyber-attack) során a már

Bizalmas információk belső embertől

Geronimo

Kihasználható chipek

Geronimo

Globális fellépés

Geronimo

Dolgozzon Észak-Koreának

Geronimo

News

News 

New TrickBot Phishing Technique Checks Device Screen Resolution To Evade Detection

The infamous TrickBot malware has now adopted another evasive feature to escape security checks. As… New TrickBot Phishing Technique Checks

Elon Musk says Raptor engine production is a ‘disaster’ that puts SpaceX at risk of bankruptcy

Court Throws Out Messages Obtained by FBI Honeypot Phone Company Anom

Square Enix warns players that servers might struggle with FFXIV’s next big expansion

J.D. Power: Lack of consumer knowledge, lingering safety concerns hampering automated vehicle enthusiasm

Awareness Corner

Follow Us

Facebook-f

Vendors' news

Rightsizing Your Cloud: The Multibillion-Dollar Question

Controversial face matchers Clearview set to be fined over $20m

Troll Free Future Study | Avast

Dive into the world of vulnerability research

Vaccine Passports And Privacy | Avast

Life with the Pengiun

CyberDog: a four legged robot revolution with Ubuntu

New Side-Channel Vulnerability in the Linux Kernel Enabling DNS Cache Poisoning>

How Ubuntu Boosts Developer Desktop Productivity

Data centre networking: what is OVS?

Canonical Achieves AWS Graviton Ready Designation

Check this out

New Hub for Lean IT Security Teams

2.1 Million People Affected by Breach at DNA Testing Company

Massive faceprint scraping company Clearview AI hauled over the coals

Comment on Ransomware attack shuts down Lewis & Clark Community College

Lloyd’s of London suggests insurers should not cover ‘retaliatory cyber operations’ between nation states

CERT news

RT @MISPProject: All VMs for @MISPProject are available online at the following location https://t.co/vrjJeqlXEC – we did some updates. The…

RT @adulau: Next week, I’ll be at @UYBHYS to talk on how to improve and speed-up #DFIR with @circl_lu hashlookup open service and what’s ne…

“An integer overflow bug in the ziplist data structure used by all versions of Redis can be exploited to corrupt th… https://t.co/Ys86uvrhrN

Featured categories

Security Vendor 

Rightsizing Your Cloud: The Multibillion-Dollar Question

Security Vulns 

CVE-2021-43998

Security Vulns 

CVE-2021-43202

News 

New TrickBot Phishing Technique Checks Device Screen Resolution To Evade Detection

IOT

ICS

5G trends

Black Friday deal: HomePod Mini drops to $89 at Staples – CNET

How to pick out a robot vacuum: Find the one that fits your needs and budget video – CNET

Google Home tips: 32 cool things you need to try with Google Assistant – CNET

Put your Google Home and Nest devices in these 5 places for best results – CNET

The 2021 IoT Global Awards reveal the best and brightest in IoT

Sign Up to the free webinar: Garbage In, Garbage Out – Achieve Spotless Data to Accomplish Truthful Insights  – November 30th 11 am EST

How to connect Alexa to Wi-Fi, Bluetooth and smart devices: A guide for your Amazon Echo – CNET

Black Friday 2021: Smart home and networking deals live now – CNET

Asim Sinha: The Right Strategy and Solutions to Implement Industry 4.0 in India

Sandra Wachter: Normative challenges of identification in the Internet of Things: Privacy, profiling, discrimination, and the GDPR

ENISA flags cybersecurity skills shortage; identifies measures to bolster workforce

Department of Energy calls for inputs on challenges facing energy sector supply chain

Managed security services must be appropriately balanced in ICS, OT environments

Kaspersky expects 2022 to be tougher on ICS, industrial enterprises

Report finds that North Korea-associated TA406 hacker recycles tactics and targets

Department of Energy calls for inputs on challenges facing energy sector supply chain

ENISA’s report for railway sector provides assistance on how to assess, mitigate cyber risks

Managed security services must be appropriately balanced in ICS, OT environments

Report finds that North Korea-associated TA406 hacker recycles tactics and targets

Kaspersky expects 2022 to be tougher on ICS, industrial enterprises

Porsche trials private 5G network

T-Mobile US told to stop most reliable 5G network claim

Compal Electronics deploys Enea’s 5G MicroCore for private 5G network

Nokia upgrades Guadalajara 5G Lab in Mexico to test new use cases

Ireland backs EU 5G security toolbox

European Operators urge action on OpenRAN

Welcome to the third phase of the 5G Observatory!

South Korea leads in 5G rollout, followed by China and Japan

ArcelorMittal, Orange Business Services and Ericsson to launch France’s largest industrial 5G network : 5G Steel

OnePlus 10 Pro 5G phone aluminium dummy unit leaks

Vulnerabilities

CVE-2021-43202

CVE-2021-43998

OS4Ed openSIS 8.0 MySQL/MariaDB Staff.php sql injection

OS4Ed openSIS 8.0 MySQL/MariaDB GetStuListFnc.php Grade sql injection

Hexo up to 5.4.0 Web Page Generation body/tags cross site scripting

OS4Ed openSIS 8.0 InputFinalGrades.php period sql injection

CVE-2021-25987

Business-DNA Solutions TopEase Platform up to 7.1.27 Long String resource consumption

Business-DNA Solutions TopEase Platform up to 7.1.27 injection

Business-DNA Solutions TopEase Platform up to 7.1.27 Shape Editor/Settings access control

CVE-2021-41679

CVE-2021-41678

Business-DNA Solutions TopEase Platform up to 7.1.27 Object Attribute denial of service

Business-DNA Solutions TopEase Platform up to 7.1.27 Date Field denial of service

Business-DNA Solutions TopEase Platform up to 7.1.27 cookie without ‘httponly’ flag

Business-DNA Solutions TopEase Platform up to 7.1.27 Login Form excessive authentication

Business-DNA Solutions TopEase Platform up to 7.1.27 session expiration

Business-DNA Solutions TopEase Platform up to 7.1.27 Search cross site scripting

Business-DNA Solutions TopEase Platform up to 7.1.27 Structure Component cross site scripting

Business-DNA Solutions TopEase Platform up to 7.1.27 unrestricted upload

5 ZBrush Alternative

MS17-010, the new MS08-067? This past Good Friday, @ShadowBrokers group (https://steemit.com/shadowbrokers…

Data Exfiltration via Formula Injection #Part1 Due to a recent intriguing client pentest we became increasingly interested in…

Infosec 2010 Its that time of the year. If you are attending Infosec 2010 in London, it will…

Trend Micro Antivirus 2021 11 on Mac access control [CVE-2021-43771]

New Windows 10 zero-day gives admin rights, gets unofficial patch

New HP MFP vulnerabilities show why you should update and isolate printers

CVE-2021-42117

CVE-2021-42116

CVE-2021-42118