APPLE-SA-2022-11-09-2 macOS Ventura 13.0.1
Posted by Apple Product Security via Fulldisclosure on Nov 15 APPLE-SA-2022-11-09-2 macOS Ventura 13.0.1 macOS Ventura 13.0.1 addresses the following issues. Information about the security...
APPLE-SA-2022-11-09-1 iOS 16.1.1 and iPadOS 16.1.1
Posted by Apple Product Security via Fulldisclosure on Nov 15 APPLE-SA-2022-11-09-1 iOS 16.1.1 and iPadOS 16.1.1 iOS 16.1.1 and iPadOS 16.1.1 addresses the following issues....
Backdoor.Win32.RemServ.d / Unauthenticated Remote Command Execution
Posted by malvuln on Nov 15 Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022 Original source: https://malvuln.com/advisory/05a082d441d9cf365749c0e1eb904c85.txt Contact: malvuln13 () gmail com Media:...
HEUR:Trojan.MSIL.Agent.gen / Information Disclosure
Posted by malvuln on Nov 15 Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022 Original source: https://malvuln.com/advisory/bc2ccf92bea475f828dcdcb1c8f6cc92.txt Contact: malvuln13 () gmail com Media:...
Backdoor.Win32.Aphexdoor.LiteSock / Remote Stack Buffer Overflow (SEH)
Posted by malvuln on Nov 15 Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2022 Original source: https://malvuln.com/advisory/2047ac6183da4dfb61d2562721ba0720.txt Contact: malvuln13 () gmail com Media:...
[CVE-2022-3747] BeCustom <= 1.0.5.2 Generic Cross-Site Request Forgery
Posted by Julien Ahrens (RCE Security) on Nov 15 RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: BeCustom Wordpress Plugin Vendor URL: https://muffingroup.com/betheme/features/be-custom/ Type:...
Cisco Secure Email Gateways can easily be circumvented
Posted by FD on Nov 15 This report is being published within a coordinated disclosure procedure. The researcher has been in contact with the vendor...
Top Zeus Botnet Suspect “Tank” Arrested in Geneva
Vyacheslav “Tank” Penchukov, the accused 40-year-old Ukrainian leader of a prolific cybercriminal group that stole tens of millions of dollars from small to mid-sized businesses...
Global 2000 companies failing to adopt key domain security measures
Forbes Global 2000 companies are failing to adopt key domain security measures, exposing them to significant security risks, according to CSC’s Domain Security Report 2022....
Another Event-Related Spyware App
Last month, we were warned not to install Qatar’s World Cup app because it was spyware. This month, it’s Egypt’s COP27 Summit app: The app...