Security
Headlines
HeadlinesLatestCVEs

Tag

#google

CVE-2021-30321: November 2021 Security Bulletin | Qualcomm

Possible buffer overflow due to lack of parameter length check during MBSSID scan IE parse in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity

CVE
Open in Source
#vulnerability#ios#android#windows#google#linux#dos
Hackers Targeted Hong Kong Apple Devices in Widespread Attack

Visitors to pro-democracy and media sites in the region were infected with malware that could download files, steal data, and more.

North Korean attackers use malicious blogs to deliver malware to high-profile South Korean targets: North Korean attackers use malicious blogs to deliver malware to high-profile South Korean targets

By Jung soo An and Asheer Malhotra, with contributions from Kendall McKay. Cisco Talos has observed a new malware campaign operated by the Kimsuky APT group since June 2021.Kimsuky, also known as Thallium and Black Banshee, is a North Korean state-sponsored advanced... [[ This is only the beginning! Please visit the blog for the complete entry ]]

CVE-2021-43561: Cross-Site Scripting in extension "Google for Jobs" (google_for_jobs)

An XSS issue was discovered in the google_for_jobs (aka Google for Jobs) extension before 1.5.1 and 2.x before 2.1.1 for TYPO3. The extension fails to properly encode user input for output in HTML context. A TYPO3 backend user account is required to exploit the vulnerability.

Playstation 5 hacked—twice!

A hacking group notorious for “breaking” into Playstation consoles and a Google security engineer both shared the end result of their PS5 cracking on Twitter. Will PS5 be jailbroken? Categories: Hacking Tags: Andy Nhuyen fail0verflow Playstation 5 PS5 PS5 hack root keys TheFlow Wololo *( Read more... ( https://blog.malwarebytes.com/hacking-2/2021/11/playstation-5-hacked-twice/ ) )* The post Playstation 5 hacked—twice! appeared first on Malwarebytes Labs.

Playstation 5 hacked—twice!: Playstation 5 hacked—twice! - Malwarebytes Labs

A hacking group notorious for “breaking” into Playstation consoles and a Google security engineer both shared the end result of their PS5 cracking on Twitter. Will PS5 be jailbroken? Categories: Hacking Tags: Andy Nhuyenfail0verflowPlaystation 5PS5PS5 hackroot keysTheFlowWololo (Read more...) The post Playstation 5 hacked—twice! appeared first on Malwarebytes Labs.

Patch now! Microsoft plugs actively exploited zero-days and other updates

Another Patch Tuesday has come around, and while it may seem as a calm one for a change, there is enough to patch and update. Categories: Exploits and vulnerabilities Tags: 3d viewer adobe Android Cisco citrix excel exchange server Intel microsoft Microsoft Defender patch tuesday rdp sap siemens vmware *( Read more... ( https://blog.malwarebytes.com/exploits-and-vulnerabilities/2021/11/patch-now-microsoft-plugs-actively-exploited-zero-days-and-other-updates/ ) )* The post Patch now! Microsoft plugs actively exploited zero-days and other updates appeared first on Malwarebytes Labs.

Google Assistant Authentication Bypass

Google Assistant suffered from an authentication bypass vulnerability allowing a webpage to execute commands without permission.

Movable Type 7 r.5002 XMLRPC API Remote Command Injection

This Metasploit module exploits a remote command injection vulnerability in Movable Type versions 7 r.5002 and below.

Moodle Cross Site Scripting / Server-Side Request Forgery

Moodle versions 3.10 to 3.10.1, 3.9 to 3.9.4, 3.8 to 3.8.7, and 3.5 to 3.5.16 suffer from cross site scripting and server-side request forgery vulnerabilities.