Aggregator

A vulnerability has been found in Symantec Web Gateway and classified as problematic. Affected by this vulnerability is an unknown functionality of the component RAR Decompression. The manipulation leads to memory corruption. This vulnerability is known as CVE-2016-5310. The attack needs to be approached locally. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as critical, has been found in Mozilla Thunderbird up to 102.9. This issue affects some unknown processing. The manipulation leads to memory corruption. The identification of this vulnerability is CVE-2023-29550. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 5.10.37/5.11.21/5.12.4. Affected by this issue is the function auto_retire of the component i915. The manipulation leads to allocation of resources. This vulnerability is handled as CVE-2021-46976. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 5.12.3 and classified as critical. This vulnerability affects the function free_msi_irqs of the file drivers/pci/msi.c. The manipulation leads to denial of service. This vulnerability was named CVE-2021-47027. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

Experts found a new version of the Banshee macOS information stealer which was enhanced with new evasion mechanisms. Check Point researchers discovered a new version of the Banshee macOS infostealer which is distributed through phishing websites and fake GitHub repositories, often masqueraded as popular software. In August 2024, Russian crooks advertised a macOS malware called […]

What Type of Attacks Will We See in 2025? January 23, 2025Time: 1:00 pm ET | 10:00 am PTSpeaker: Paul Asadoorian, Principal Security Researcher Bootkits, network infrastructure attacks, and firmware vulnerabilities all saw major development in 2024, and these major trends show no sign of slowing down in 2025. Join Paul Asadoorian for a review […]

The post 2025 Threat Landscape Trends to Watch appeared first on Eclypsium | Supply Chain Security for the Modern Enterprise.

The post 2025 Threat Landscape Trends to Watch appeared first on Security Boulevard.

Cybercrime History Teaches That Paying a Ransom for Data Deletion Is Foolish
Data breach victim PowerSchool, maker of a widely used K-12 student information system platform, has been attempting to assure schools, and parents and guardians, by saying its attacker has promised to delete the stolen data. What's the old saying about those who fail to learn from history?

Many important efforts by the Cybersecurity Infrastructure and Security Agency to help the healthcare sector and other critical infrastructure sectors bolster their cybersecurity are likely to continue under the incoming Trump administration, predicted CISA Deputy Director Nitin Natarajan.

Firm Folds AI Studio, Gemini API Into DeepMind; Sets up World Model Team
Google is restructuring its artificial intelligence teams and forming a new division under its DeepMind unit. Both the AI Studio team and the Gemini API team will now be run under DeepMind, a shift Google says will make DeepMind's work more accessible to the public.

Google Mandiant's Jamie Collier on the Biggest Cloud Security Challenges
To combat AI threats in 2025, security teams are set to enter the second phase of AI innovation in security by deploying semi-autonomous operations such as alert parsing, creation of high-priority item lists and risk remediation, said Jamie Collier, senior threat intelligence advisor at Mandiant.

Blender and Sinbad Were Favorites of Ransomware and North Korean Hackers
Three Russian nationals behind cryptocurrency mixers favored by ransomware hackers and North Korean crypto thieves face criminal charges in U.S. federal court: Roman Vitalyevich Ostapenko, 55, Alexander Evgenievich Oleynik, 44, and Anton Vyachlavovich Tarasov, 32.

The PowerSchool breach highlights the risks of poor credential hygiene. This article covers proactive steps to protect your SaaS environment.

The post The Cost of Complacency in Credential Hygiene appeared first on Security Boulevard.

Cybercriminals are luring victims into downloading the XMRig cryptomining malware via convincing emails, inviting them to schedule fake interviews using a malicious link.

Exploring GrayhatWarfare: A Search Engine for Exposed S3 Buckets

Growing sales of the System for Operative Investigative Activities (SORM), a Russian wiretapping platform, in Central Asia and Latin American suggests increasing risks for Western businesses.

A vulnerability classified as very critical has been found in NETGEAR DGN1000 1.1.00.46. This affects an unknown part of the file setup.cgi of the component HTTP Request Handler. The manipulation leads to authentication bypass using alternate channel. This vulnerability is uniquely identified as CVE-2024-12847. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

Author/Presenter: Roni Lupin Carta

Our sincere appreciation to DEF CON, and the Authors/Presenters for publishing their erudite DEF CON 32 content. Originating from the conference’s events located at the Las Vegas Convention Center; and via the organizations YouTube channel.

Permalink

The post DEF CON 32 – Practical Exploitation of DoS in Bug Bounty appeared first on Security Boulevard.