April 5, 2024 - Cyber Security News

Friday Squid Blogging: SqUID Bots

They’re AI warehouse robots. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t...

April 5, 2024

News

How To Protect Against New Types of Scams Like QR Phishing

Four in ten Americans say they use peer-to-peer payment services, like Venmo, PayPal, or Apple Pay, at least once a month. These platforms have made...

April 5, 2024

News

Google sues crypto investment app makers over alleged massive “pig butchering” scam

Two China-based Android app developers are being sued by Google for an alleged scam targeting 100,000 users worldwide through fake cryptocurrency and other investment apps....

April 5, 2024

Advisories

[CFP] IEEE CSR Workshop on Cyber Forensics& Advanced Threat Investigations in Emerging Technologies 2024

Posted by Andrew Zayine on Apr 05 Dear Colleagues, IEEE CSR Workshop on Cyber Forensics and Advanced Threat Investigations in Emerging Technologies organizing committee is...

April 5, 2024

Advisories

Backdoor.Win32.Agent.ju (PSYRAT) / Authentication Bypass RCE

Posted by malvuln on Apr 05 Discovery / credits: Malvuln (John Page aka hyp3rlinx) (c) 2024 Original source: https://malvuln.com/advisory/0e6e40aad3e8d46e3c0c26ccc6ab94b3.txt Contact: malvuln13 () gmail com Media:...

April 5, 2024

Advisories

CVE-2024-30929: XSS Vulnerability in DerbyNet v9.0 via ‘back’ Parameter in playlist.php

Posted by Valentin Lobstein via Fulldisclosure on Apr 05 CVE ID: CVE-2024-30929 Description: A Cross-Site Scripting (XSS) vulnerability has been found in DerbyNet version 9.0,...

April 5, 2024

Advisories

CVE-2024-30928: SQL Injection Vulnerability in DerbyNet v9.0 via ‘classids’ Parameter

Posted by Valentin Lobstein via Fulldisclosure on Apr 05 CVE ID: CVE-2024-30928 Description: An SQL Injection vulnerability has been discovered in DerbyNet version 9.0, particularly...

April 5, 2024

Advisories

CVE-2024-30927: XSS Vulnerability in DerbyNet v9.0 via racer-results.php

Posted by Valentin Lobstein via Fulldisclosure on Apr 05 CVE ID: CVE-2024-30927 Description: A Cross-Site Scripting (XSS) vulnerability is present in DerbyNet version 9.0, specifically...

April 5, 2024

Advisories

CVE-2024-30926: XSS Vulnerability in DerbyNet v9.0 via ./inc/kiosks.inc

Posted by Valentin Lobstein via Fulldisclosure on Apr 05 CVE ID: CVE-2024-30926 Description: A Cross-Site Scripting (XSS) vulnerability has been identified in DerbyNet version 9.0,...

April 5, 2024

Advisories

CVE-2024-30925: XSS Vulnerability in DerbyNet v9.0 via photo-thumbs.php

Posted by Valentin Lobstein via Fulldisclosure on Apr 05 CVE ID: CVE-2024-30925 Description: A Cross-Site Scripting (XSS) vulnerability exists in DerbyNet version 9.0, specifically within...

April 5, 2024

The AI Fix #30: ChatGPT reveals the devastating truth about Santa (Merry Christmas!)

US and Japan Blame North Korea for $308m Crypto Heist

Spyware Maker NSO Group Found Liable for Hacking WhatsApp

Spyware Maker NSO Group Liable for WhatsApp User Hacks

Major Biometric Data Farming Operation Uncovered

Ransomware Attack Exposes Data of 5.6 Million Ascension Patients

Critical Vulnerabilities Found in WordPress Plugins WPLMS and VibeBP

Criminal Complaint against LockBit Ransomware Writer

Cryptomining Malware Found in Popular Open Source Packages

Day: April 5, 2024

Friday Squid Blogging: SqUID Bots

How To Protect Against New Types of Scams Like QR Phishing

Google sues crypto investment app makers over alleged massive “pig butchering” scam

[CFP] IEEE CSR Workshop on Cyber Forensics& Advanced Threat Investigations in Emerging Technologies 2024

Backdoor.Win32.Agent.ju (PSYRAT) / Authentication Bypass RCE

CVE-2024-30929: XSS Vulnerability in DerbyNet v9.0 via ‘back’ Parameter in playlist.php

CVE-2024-30928: SQL Injection Vulnerability in DerbyNet v9.0 via ‘classids’ Parameter

CVE-2024-30927: XSS Vulnerability in DerbyNet v9.0 via racer-results.php

CVE-2024-30926: XSS Vulnerability in DerbyNet v9.0 via ./inc/kiosks.inc

CVE-2024-30925: XSS Vulnerability in DerbyNet v9.0 via photo-thumbs.php