The 'Twinning' Fad, the Weather Channel, and More Security News
A rogue PewDiePie fan, Marriott hack details, and more of the week's top security...
0.8AI Score
How China Helped Make the Internet Less Free in 2018
Tech companies, democratic governments, and civil society need to work together to fight back against growing surveillance and censorship...
7AI Score
A NASA Hack, a PewDiePie Fan, and More Security News
Amazon sends Echo recordings to the wrong person, Russians tried to get US Treasury dirt on Clinton donors, and more of the week's top security...
2.2AI Score
Twitter Abuse Toward Women Is Rampant, Amnesty Report Says
Frustrated by Twitter's silence on abuse, Amnesty International crowdsources its own data and finds that the platform is especially toxic for black...
2.8AI Score
Nationwide Bomb Threats Look Like New Spin on an Old Bitcoin Scam
Apparent bitcoin scammers caused chaos across the US Thursday, radically escalating longstanding...
2.1AI Score
Supply Chain Security: Managing a Complex Risk Profile
NYC — From Delta Airlines to Best Buy, a number of big-name companies were involved this year in data breaches – but even though their names made headlines, the actual security incidents occurred due to flaws in third-party partners. Across the board, companies are scratching their heads trying to....
-0.3AI Score
Quora Hacked, Moscow Ransomware, and More Security News This Week
China accusations, Eastern European bank heists, and more of the week's top security...
7AI Score
There is a smart SMS verification code vulnerability in some Huawei smart phones. An attacker should trick a user to access malicious Website or malicious App and register. Due to incorrect processing of the smart SMS verification code, successful exploitation can cause sensitive information...
6.5CVSS
6.4AI Score
0.001EPSS
There is a smart SMS verification code vulnerability in some Huawei smart phones. An attacker should trick a user to access malicious Website or malicious App and register. Due to incorrect processing of the smart SMS verification code, successful exploitation can cause sensitive information...
6.5CVSS
6.4AI Score
0.001EPSS
Security Advisory - Smart SMS Verification Code Vulnerability in Some Huawei Smart Phones
There is a smart SMS verification code vulnerability in some Huawei smart phones. An attacker should trick a user to access malicious Website or malicious App and register. Due to incorrect processing of the smart SMS verification code, successful exploitation can cause sensitive information leak.....
6.5CVSS
6.2AI Score
0.001EPSS
Security Advisory - Information Leak Vulnerability in Some Huawei Smartphones
There is an information leak vulnerability in some Huawei smartphones. An attacker may do some specific configuration in the smartphone and trick a user into inputting some sensitive information. Due to improper design, successful exploit may cause some information leak. (Vulnerability ID:...
4.3CVSS
4.7AI Score
0.001EPSS
Julian Assange Charges, Japan's Top Cybersecurity Official, and More Security News This Week
Safer browsing, more bitcoin scams, and the rest of the week's top security...
7AI Score
Some Huawei smartphones ALP-AL00B 8.0.0.118D(C00), ALP-TL00B 8.0.0.118D(C01), BLA-AL00B 8.0.0.118D(C00), BLA-L09C 8.0.0.127(C432), 8.0.0.128(C432), 8.0.0.137(C432), BLA-L29C 8.0.0.129(C432), 8.0.0.137(C432) have an authentication bypass vulnerability. When the attacker obtains the user's...
6.8CVSS
6.6AI Score
0.001EPSS
The radio module of some Huawei smartphones Emily-AL00A The versions before 8.1.0.171(C00) have a lock-screen bypass vulnerability. An unauthenticated attacker could start third-part input method APP through certain operations to bypass lock-screen by exploit this...
6.8CVSS
6.6AI Score
0.001EPSS
The radio module of some Huawei smartphones Emily-AL00A The versions before 8.1.0.171(C00) have a lock-screen bypass vulnerability. An unauthenticated attacker could start third-part input method APP through certain operations to bypass lock-screen by exploit this...
6.8CVSS
6.6AI Score
0.001EPSS
Some Huawei smartphones ALP-AL00B 8.0.0.118D(C00), ALP-TL00B 8.0.0.118D(C01), BLA-AL00B 8.0.0.118D(C00), BLA-L09C 8.0.0.127(C432), 8.0.0.128(C432), 8.0.0.137(C432), BLA-L29C 8.0.0.129(C432), 8.0.0.137(C432) have an authentication bypass vulnerability. When the attacker obtains the user's...
6.8CVSS
6.7AI Score
0.001EPSS
The radio module of some Huawei smartphones Emily-AL00A The versions before 8.1.0.171(C00) have a lock-screen bypass vulnerability. An unauthenticated attacker could start third-part input method APP through certain operations to bypass lock-screen by exploit this...
6.8CVSS
6.6AI Score
0.001EPSS
Some Huawei smartphones ALP-AL00B 8.0.0.118D(C00), ALP-TL00B 8.0.0.118D(C01), BLA-AL00B 8.0.0.118D(C00), BLA-L09C 8.0.0.127(C432), 8.0.0.128(C432), 8.0.0.137(C432), BLA-L29C 8.0.0.129(C432), 8.0.0.137(C432) have an authentication bypass vulnerability. When the attacker obtains the user's...
6.8CVSS
6.7AI Score
0.001EPSS
The radio module of some Huawei smartphones Emily-AL00A The versions before 8.1.0.171(C00) have a lock-screen bypass vulnerability. An unauthenticated attacker could start third-part input method APP through certain operations to bypass lock-screen by exploit this...
6.6AI Score
0.001EPSS
Some Huawei smartphones ALP-AL00B 8.0.0.118D(C00), ALP-TL00B 8.0.0.118D(C01), BLA-AL00B 8.0.0.118D(C00), BLA-L09C 8.0.0.127(C432), 8.0.0.128(C432), 8.0.0.137(C432), BLA-L29C 8.0.0.129(C432), 8.0.0.137(C432) have an authentication bypass vulnerability. When the attacker obtains the user's...
6.7AI Score
0.001EPSS
Open Bug Bounty ID: OBB-696696 Description| Value ---|--- Affected Website:| keyhole.co Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...
AI Score
Sue Gordon: Silicon Valley Should Work With the Government
In an expansive on-the-record interview with WIRED, the principal deputy director of national intelligence made her pitch for public-private...
3.2AI Score
Trump’s ‘Racist’ Midterms Ad Backs Facebook Into a Corner
Facebook took down Donald Trump’s ad for violating its policies, but you can still watch the video on his...
2.1AI Score
Don’t Be Duped by Voting Misinformation Before the Midterms
How to find accurate voting information for the midterm...
1.9AI Score
Security Advisory - Lock-screen Bypass Vulnerability in Huawei Smartphones
There is a lock-screen bypass vulnerability in radio module of some Huawei smartphones. An unauthenticated attacker could start third-part input method APP through certain operations to bypass lock-screen by exploit this vulnerability. (Vulnerability ID: HWPSIRT-2018-04055) This vulnerability has.....
6.8CVSS
6.5AI Score
0.001EPSS
Security Advisory - Authentication Bypass Vulnerability in Some Huawei Smart Phones
Some Huawei smartphones have an authentication bypass vulnerability. When the attacker obtains the user's smartphone, the vulnerability can be used to replace the start-up program so that the attacker can obtain the information in the smartphone and achieve the purpose of controlling the...
6.8CVSS
6.5AI Score
0.001EPSS
udisglutenfree.com XSS vulnerability
Open Bug Bounty ID: OBB-693637 Description| Value ---|--- Affected Website:| udisglutenfree.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...
AI Score
Open Bug Bounty ID: OBB-693480 Description| Value ---|--- Affected Website:| duma.bg Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...
AI Score
Open Bug Bounty ID: OBB-693426 Description| Value ---|--- Affected Website:| 1amen.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...
AI Score
Security Advisory - SegmentSmack Vulnerability in Linux Kernel
There is a DoS vulnerability in the Linux Kernel versions 4.9+ known as a SegmentSmack attack. Remote attackers may send TCP packets to Linux kernel to make it calls the very expensive functions tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() of the affected device which can lead to a denial of....
7.5CVSS
2.9AI Score
0.783EPSS
Security Advisory - SegmentSmack Vulnerability in Linux Kernel
There is a DoS vulnerability in the Linux Kernel versions 4.9+ known as a SegmentSmack attack. Remote attackers may send TCP packets to Linux kernel to make it calls the very expensive functions tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() of the affected device which can lead to a denial of....
7.5CVSS
7.2AI Score
0.783EPSS
danieljouvance.com XSS vulnerability
Open Bug Bounty ID: OBB-693039 Description| Value ---|--- Affected Website:| danieljouvance.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...
AI Score
ulss13mirano.ven.it XSS vulnerability
Open Bug Bounty ID: OBB-692216 Description| Value ---|--- Affected Website:| ulss13mirano.ven.it Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...
AI Score
Open Bug Bounty ID: OBB-692105 Description| Value ---|--- Affected Website:| buro247.mn Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...
AI Score
art-market.com.ua XSS vulnerability
Open Bug Bounty ID: OBB-691377 Description| Value ---|--- Affected Website:| art-market.com.ua Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...
AI Score
denblaaplanet.dk XSS vulnerability
Open Bug Bounty ID: OBB-691090 Description| Value ---|--- Affected Website:| denblaaplanet.dk Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...
AI Score
domusacademy.com XSS vulnerability
Open Bug Bounty ID: OBB-690794 Description| Value ---|--- Affected Website:| domusacademy.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1...
AI Score
Don't Believe Everything You See About the Migrant Caravan
A migrant caravan traveling through Mexico is the latest news event to be weaponized...
1.7AI Score
Some Huawei smart phones ALP-AL00B 8.0.0.106(C00), 8.0.0.113(SP2C00), 8.0.0.113(SP3C00), 8.0.0.113(SP7C00), 8.0.0.118(C00), 8.0.0.120(SP2C00), 8.0.0.125(SP1C00), 8.0.0.125(SP3C00), 8.0.0.126(SP2C00), 8.0.0.126(SP5C00), 8.0.0.127(SP1C00), 8.0.0.128(SP2C00), ALP-AL00B-RSC 1.0.0.2, BLA-TL00B...
4.6CVSS
4.7AI Score
0.001EPSS
Some Huawei smart phones ALP-AL00B 8.0.0.106(C00), 8.0.0.113(SP2C00), 8.0.0.113(SP3C00), 8.0.0.113(SP7C00), 8.0.0.118(C00), 8.0.0.120(SP2C00), 8.0.0.125(SP1C00), 8.0.0.125(SP3C00), 8.0.0.126(SP2C00), 8.0.0.126(SP5C00), 8.0.0.127(SP1C00), 8.0.0.128(SP2C00), ALP-AL00B-RSC 1.0.0.2, BLA-TL00B...
4.6CVSS
4.8AI Score
0.001EPSS
Some Huawei smart phones ALP-AL00B 8.0.0.106(C00), 8.0.0.113(SP2C00), 8.0.0.113(SP3C00), 8.0.0.113(SP7C00), 8.0.0.118(C00), 8.0.0.120(SP2C00), 8.0.0.125(SP1C00), 8.0.0.125(SP3C00), 8.0.0.126(SP2C00), 8.0.0.126(SP5C00), 8.0.0.127(SP1C00), 8.0.0.128(SP2C00), ALP-AL00B-RSC 1.0.0.2, BLA-TL00B...
4.6CVSS
4.8AI Score
0.001EPSS
Some Huawei smart phones ALP-AL00B 8.0.0.106(C00), 8.0.0.113(SP2C00), 8.0.0.113(SP3C00), 8.0.0.113(SP7C00), 8.0.0.118(C00), 8.0.0.120(SP2C00), 8.0.0.125(SP1C00), 8.0.0.125(SP3C00), 8.0.0.126(SP2C00), 8.0.0.126(SP5C00), 8.0.0.127(SP1C00), 8.0.0.128(SP2C00), ALP-AL00B-RSC 1.0.0.2, BLA-TL00B...
4.7AI Score
0.001EPSS
Apple Data Downloads, A Dating App for Trump Fans, and More Security News This Week
North Korean bitcoin theft, Fake FCC complaints, and more security news this...
2.2AI Score
Huawei Mate 10 pro smartphones with the versions before BLA-AL00B 8.1.0.326(C00) have an improper authentication vulnerability. App Lock is a function to prevent unauthorized use of apps on smartphones, an attacker could directly change the lock password after a series of operations. Successful...
4.6CVSS
4.8AI Score
0.001EPSS
Huawei Mate 10 pro smartphones with the versions before BLA-AL00B 8.1.0.326(C00) have an improper authentication vulnerability. App Lock is a function to prevent unauthorized use of apps on smartphones, an attacker could directly change the lock password after a series of operations. Successful...
4.6CVSS
4.9AI Score
0.001EPSS
Huawei Mate 10 pro smartphones with the versions before BLA-AL00B 8.1.0.326(C00) have an improper authentication vulnerability. App Lock is a function to prevent unauthorized use of apps on smartphones, an attacker could directly change the lock password after a series of operations. Successful...
4.6CVSS
4.9AI Score
0.001EPSS
Huawei Mate 10 pro smartphones with the versions before BLA-AL00B 8.1.0.326(C00) have an improper authentication vulnerability. App Lock is a function to prevent unauthorized use of apps on smartphones, an attacker could directly change the lock password after a series of operations. Successful...
4.9AI Score
0.001EPSS
Robert Mueller Has Already Told You Everything You Need To Know
With the exception of President Trump’s legal team, no one has been watching the Mueller investigation more closely than Garrett...
2.5AI Score
Kanye's Password, a WhatsApp Bug, and More Security News This Week
A grey hat hacking hero, bad boat news, and more security news this...
0.4AI Score
Pentagon Weapons Systems Are Easy Cyberattack Targets, New Report Finds
A new report says the Department of Defense "likely has an entire generation of systems that were designed and built without adequately considering...
2.6AI Score