Smarthome,HiAPP,HwParentControl,HwParentControlParent,Crowdtest,HiWallet,Huawei Pay,Skytone,HwCloudDrive(EMUI6.0),HwPhoneFinder Security Vulnerabilities

Wireless carriers fined $200 million after illegally sharing customer location data

After four years of investigation, the Federal Communications Commission (FCC) has concluded that four of the major wireless carriers in the US violated the law in sharing access to customers’ location data. The FCC fined AT&T, Sprint, T-Mobile, and Verizon a total of almost $200 million for...

Man Who Mass-Extorted Psychotherapy Patients Gets Six Years

A 26-year-old Finnish man was sentenced to more than six years in prison today after being convicted of hacking into an online psychotherapy clinic, leaking tens of thousands of patient therapy records, and attempting to extort the clinic and patients. On October 21, 2020, the Vastaamo...

Kaiser health insurance leaked patient data to advertisers

Health insurance giant Kaiser has announced it will notify millions of patients about a data breach after sharing patients’ data with advertisers. Kaiser said that an investigation led to the discovery that “certain online technologies, previously installed on its websites and mobile applications,....

A week in security (April 22 – April 28)

Last week on Malwarebytes Labs: Ring agrees to pay $5.6 million after cameras were used to spy on customers TikTok comes one step closer to a US ban Google ad for Facebook redirects to scam "Substantial proportion" of Americans may have had health and personal data stolen in Change Healthcare...

The Bug Report - April 2024 Edition

The Bug Report - April 2024 Edition By Jonathan Omakun and Tobi Olawale· April 29, 2024 Why am I here? Just when you thought it was safe to go back into the digital waters, out pops another series of rogue waves in the form of CVEs! It's like that beach vacation you planned to get away from it...

RHEL 7 : sensu (RHSA-2018:1112)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:1112 advisory. Sensu is a monitoring framework that aims to be simple, malleable, and scalable. Security Fix(es): * Sensu's redaction function fails to handle the...

RHEL 7 : sensu (RHSA-2018:0616)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:0616 advisory. Sensu is a monitoring framework that aims to be simple, malleable, and scalable. Security Fix(es): * sensu: Password exposure in warn level log when...

Ring agrees to pay $5.6 million after cameras were used to spy on customers

Amazon's Ring has settled with the Federal Trade Commission (FTC) over charges that the company allowed employees and contractors to access customers' private videos, and failed to implement security protections which enabled hackers to take control of customers’ accounts, cameras, and videos. The....

Security Advisory - Connection Hijacking Vulnerability in Some Huawei Home Routers

A connection hijacking vulnerability exists in some Huawei home routers. Successful exploitation of this vulnerability may cause DoS or information leakage.(Vulnerability ID:HWPSIRT-2023-34408) This vulnerability has been assigned a...

RHEL 6 : qemu-kvm-rhev (RHSA-2017:1441)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2017:1441 advisory. KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages...

Unmasking the True Cost of Cyberattacks: Beyond Ransom and Recovery

Cybersecurity breaches can be devastating for both individuals and businesses alike. While many people tend to focus on understanding how and why they were targeted by such breaches, there's a larger, more pressing question: What is the true financial impact of a cyberattack? According to research....

A week in security (April 15 – April 21)

Last week on Malwarebytes Labs: Law enforcement reels in phishing-as-a-service whopper Mental health company Cerebral failed to protect sensitive personal data, must pay $7 million Cannabis investment scam JuicyFields ends in 9 arrests Should you share your location with your partner? Giant Tiger.....

Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2024-1559)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for ncurses (EulerOS-SA-2024-1532)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2024-1537)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for pam (EulerOS-SA-2024-1534)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for sqlite (EulerOS-SA-2024-1536)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for libssh2 (EulerOS-SA-2024-1529)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for python-jinja2 (EulerOS-SA-2024-1554)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for systemd (EulerOS-SA-2024-1557)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for ncurses (EulerOS-SA-2024-1551)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for pam (EulerOS-SA-2024-1553)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for vim (EulerOS-SA-2024-1540)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for gnutls (EulerOS-SA-2024-1545)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for mozjs60 (EulerOS-SA-2024-1531)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for tar (EulerOS-SA-2024-1558)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for gdb (EulerOS-SA-2024-1525)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for gdb (EulerOS-SA-2024-1544)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for libXpm (EulerOS-SA-2024-1530)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2024-1556)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-1527)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for libssh (EulerOS-SA-2024-1528)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for libssh (EulerOS-SA-2024-1547)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for libXpm (EulerOS-SA-2024-1549)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2024-1533)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-1546)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for gnutls (EulerOS-SA-2024-1526)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for python-jinja2 (EulerOS-SA-2024-1535)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for sqlite (EulerOS-SA-2024-1555)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2024-1523)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for mozjs60 (EulerOS-SA-2024-1550)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2024-1542)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for tar (EulerOS-SA-2024-1539)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2024-1524)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2024-1543)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2024-1552)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for edk2 (EulerOS-SA-2024-1541)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for edk2 (EulerOS-SA-2024-1560)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for systemd (EulerOS-SA-2024-1538)

The remote host is missing an update for the Huawei...

Huawei EulerOS: Security Advisory for libssh2 (EulerOS-SA-2024-1548)

The remote host is missing an update for the Huawei...