Ransom Demands Surge 45% in 2021
Double extortion now the norm, says Group-IB Read More
Phishing Campaigns featuring Ursnif Trojan on the Rise
Authored by Jyothi Naveen and Kiran Raj McAfee Labs have been observing a spike in phishing campaigns that utilize Microsoft office macro capabilities. These malicious...
DSA-5140 openldap – security update
Jacek Konieczny discovered a SQL injection vulnerability in the back-sql backend to slapd in OpenLDAP, a free implementation of the Lightweight Directory Access Protocol, allowing...
DSA-5141 thunderbird – security update
Multiple security issues were discovered in Thunderbird, which could result in denial of service or the execution of arbitrary code. Read More
A Vulnerability in VMware Products Could Allow for Authentication Bypass
Multiple vulnerabilities have been discovered in VMware Products, the most severe of which could result in Authentication Bypass. VMware Workspace ONE Access is an access...
A Guide to Identity Theft Statistics for 2022
There’s a digital counterpart for nearly everything we do, which means more of our personal information is online. And although this tends to make our...
Smashing Security podcast #275: Jail for Bing, and mental health apps may not be good for you
A man hacks his employer to prove its security sucks, Telegram provides a helping hand to the Eternity Project malware, and what the heck do...
CVE-2022-22972: VMware Patches Additional Workspace ONE Access Vulnerabilities (VMSA-2022-0014)
Organizations and government agencies are strongly advised to patch two newly disclosed vulnerabilities in VMware products, following warnings from VMware and the Cybersecurity and Infrastructure...
SEC Consult SA-20220518-0 :: Multiple Critical Vulnerabilities in SAP® Application Server, ABAP and ABAP® Platform (Different Software Components)
Posted by SEC Consult Vulnerability Lab, Research via Fulldisclosure on May 18 SEC Consult Vulnerability Lab Security Advisory < 20220518-0 > ======================================================================= title: Multiple Critical...
PHPIPAM 1.4.4 – CVE-2021-46426
Posted by Rodolfo Augusto do Nascimento Tavares via Fulldisclosure on May 18 =====[ Tempest Security Intelligence - ADV-03/2022 ]========================== PHPIPAM - Version 1.4.4 Author: Rodolfo...