Aggregator

A vulnerability was found in Aruba ClearPass Policy Manager up to 6.9.11/6.10.6 and classified as very critical. Affected by this issue is some unknown functionality of the component Web-based Management Interface. The manipulation leads to privilege escalation. This vulnerability is handled as CVE-2022-37881. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Aruba ClearPass Policy Manager up to 6.9.11/6.10.6. It has been classified as very critical. This affects an unknown part of the component Web-based Management Interface. The manipulation leads to privilege escalation. This vulnerability is uniquely identified as CVE-2022-37882. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Netgear WPN824EXT 1.1.1_1.1.9. It has been classified as critical. Affected is an unknown function of the component Firmware Image Handler. The manipulation leads to cryptographic issues. This vulnerability is traded as CVE-2022-38955. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability classified as problematic has been found in Huawei WS7200-10 11.0.2.13. This affects an unknown part of the component Password Verification. The manipulation leads to improper restriction of excessive authentication attempts. This vulnerability is uniquely identified as CVE-2022-33735. The attack can only be initiated within the local network. There is no exploit available.

A vulnerability was found in Huawei JAD-AL50 102.0.0.225. It has been rated as critical. Affected by this issue is some unknown functionality of the component Cross Device Task Management. The manipulation leads to permission issues. This vulnerability is handled as CVE-2021-46834. Access to the local network is required for this attack. There is no exploit available.

A vulnerability was found in Huawei 576up005 HOTA-CM-H-Shark-BD, 577HOTA-CM-H-Shark-BD, 581up-HOTA-CM-H-Shark-BD, 586-HOTA-CM-H-Shark-BD, 588-HOTA-CM-H-Shark-BD, 606-HOTA-CM-H-Shark-BD, BI-ACC-REPORT and CM-H-Shark-BD and classified as critical. This issue affects some unknown processing of the component Headset Handler. The manipulation leads to out-of-bounds write. The identification of this vulnerability is CVE-2020-36602. It is possible to launch the attack on the physical device. There is no exploit available.

A vulnerability classified as problematic has been found in Huawei WS7200-10 11.0.2.13. This affects an unknown part. The manipulation leads to privilege escalation. This vulnerability is uniquely identified as CVE-2021-46835. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in Huawei CV81-WDM 01.70.49.29.46 and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to denial of service. This vulnerability is handled as CVE-2022-37395. The attack can only be done within the local network. There is no exploit available.

A vulnerability was found in TIBCO Spotfire Analytics Platform for AWS Marketplace and Spotfire Server 12.0.0. It has been rated as critical. This issue affects some unknown processing of the component Web Player. The manipulation leads to server-side request forgery. The identification of this vulnerability is CVE-2022-30579. The attack may be initiated remotely. There is no exploit available.

本文探讨CS4.11更新的Eaf_Bypass在UDRL中的实现

关于ysoserial中的spring1、2链子分析和攻击面拓展

Over 9,000 ASUS routers are compromised by a novel botnet dubbed "AyySSHush" that was also observed targeting SOHO routers from Cisco, D-Link, and Linksys. [...]

Alleged sale of 1 Million Credit Card Data

A sprawling network of fake AI, VPN, and crypto software download sites is being used by the "Dark Partner" threat actors to conduct a crypto theft attacks worldwide. [...]

Law enforcement and judicial officials, working together with Europol and Eurojust, have dealt a devastating blow to the worldwide ransomware ecosystem in a historic international operation. From May 19 to 22, 2025, Operation Endgame targeted the critical infrastructure behind ransomware attacks, dismantling approximately 300 servers and neutralizing 650 malicious domains worldwide. This operation not only […]

The post Worldwide Operation Shuts Down Hundreds of Ransomware Servers and Domains, Ending Key Attack Infrastructure appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Web hosting giant GoDaddy for years has mislead customers about the strength of its security program, but after a series of data breaches, the FTC is ordering the company to implements robust defenses and stop lying about its cybersecurity capabilities.

The post FTC Orders GoDaddy to Bolster its Security After Years of Attacks appeared first on Security Boulevard.

Тесты куплены, 20 человек арестовано, будущее студентов Нигерии — под вопросом.

May 28, 2025 - Lina Romero - Your Mobile Apps May Not Be as Secure as You Think…
Excerpt:
Cybersecurity risks are too close for comfort. Recent data from the Global Mobile Threat Report reveals that our mobile phone applications are most likely exposing our data due to insecure practices such as API key hardcoding.
Summary:
In 2025, most of us are reliant on our mobile devices for everything from communication to transportation and commerce. But the applications that are powering these functions are leaving users open to risk…
Blog Text:
It is no secret that many of us would be helpless without our mobile devices. Similarly, our mobile devices would be helpless without APIs. APIs are what allow mobile applications to communicate with one another, and send and receive requests between platforms, such as between your phone and the mobile application's cloud platform. If these APIs aren’t secure, the information you are putting into your mobile applications- which can include location data, banking details, and other PII- isn’t secure, either. A recent report from Zimperium revealed that mobile applications often fail to follow best practices around authentication and authorization, which leads to critical vulnerabilities for the user. A secure application should use placeholder tokens instead of direct access through a login. Best practices around authentication such as session-based authentication and header-based authentication can also help ensure only authenticated users are gaining access. Session-based authentication uses sessions to track authenticated user activity and stores information about the usage, creating a unique identifier to store information about the user. This information is kept in a cookie that can be sent to each server where a request is made, and these servers can in turn check if the session ID matches the authenticated user. Header-based authentication uses HTTP headers to authenticate the user on a separate server externally, sometimes a web gateway or proxy server. However, some developers use hard-coded API keys as a shortcut, meaning the token is the same for each user of the app. This is a bad practice when it comes to cybersecurity, because it means that if one user is compromised, they effectively all are. Even AI systems will not let you hardcode API keys, as they have been programmed against it for security reasons. As we see in the tables below (source: Zimperium), both Android and ios applications have a whole host of vulnerabilities, however Android seems to be significantly worse, particularly in regards to the Hardcoded API keys. The numbers are staggering- between 5 and 9 percent of Android applications use Hardcoded API keys. This percentage is alarmingly highest (8.7%) for lifestyle apps, which include journaling, meditation, planning apps, and some social media. For iOS applications, this number is slightly lower, between 1.6-3.6%, however, when you think about the sheer number of applications and installations of those applications out there, this is still too high. In addition to these applications that use Hardcoded API keys, there are many other glaring vulnerabilities brought to light in the Zimperium report. For example, large percentages of Android applications and smaller but still significant percentages of iOS applications are still using vulnerable encryption algorithms. And on the whole, both iOS and Android applications have a startlingly large percentage that leak sensitive data. For iOS, the biggest culprit are travel applications, of which around 59% leak sensitive data, which is more than half, and financial applications follow closely behind at 54%. This is even more worrying considering the types of PII these apps handle. For Android, entertainment apps such as social media have the highest percentage of data leakage, around 42.8%, which is close to half, and travel and lifestyle apps are close behind. Overall, our mobile applications are not nearly as secure as we would hope, especially given how reliant most of us are on these apps day to day. Many of them still use outdated practices such as Hardcoded API Keys which can compromise authentication for many users at once. In 2025, it is a travesty that these applications have not addressed these critical vulnerabilities. Individual users have little control over their data and the average consumer is not adequately prepared for a PII breach. The best things we can do in this current cyber landscape are…
Staying vigilant
Changing passwords frequently
Installing 2-factor authentication whenever possible
Updating applications frequently to ensure you are using the most recent and secure version. If you want to take control of your organization’s cybersecurity posture, see how FireTail can help you today. Schedule a demo or join our free tier to learn more.

The post Your Mobile Apps May Not Be as Secure as You Think… – FireTail Blog appeared first on Security Boulevard.

Telegram 与马斯克（Elon Musk）旗下的 xAI 公司达成了为期一年的合作协议，xAI 将向 Telegram 支付 3 亿美元现金和股权，换取在 Telegram 中集成 Grok 聊天机器人。如果 Telegram 用户订阅了 Grok 的服务，那么该平台还将能获得五成收入。根据 Telegram CEO Pavel Durov 的演示，Grok 可以固定在应用内聊天窗口的顶部，用户还可以通过搜索栏向 Grok 提问。

Apple has strengthened the App Store as a bulwark of confidence, a remarkable testament to its commitment to customer safety. According to the company’s annual fraud analysis, over the past five years, Apple has thwarted more than $9 billion in fraudulent transactions, with a staggering $2 billion prevented in 2024 alone. This achievement underscores Apple’s […]

The post Apple Blocked 2 million Malicious App & $9 Billion in Fraudulent Transactions appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.