1068 matches found
EUVD-2023-58753
Malicious code in bioql PyPI...
EUVD-2023-54823
Malicious code in bioql PyPI...
EUVD-2023-54808
Malicious code in bioql PyPI...
EUVD-2021-28251
Malicious code in bioql PyPI...
EUVD-2024-43980
Malicious code in bioql PyPI...
EUVD-2024-44051
Malicious code in bioql PyPI...
EUVD-2023-58401
Malicious code in bioql PyPI...
Sendit tricked kids, harvested their data, and faked messages, FTC claims
The Federal Trade Commission FTC has sued Sendit’s parent company, saying it signed up children under 13, collected their personal data, and misled them with fake messages and recurring bills. The lawsuit, filed against the app's owner Iconic Hearts Holdings Inc and CEO Hunter Rice, alleges the...
Malicious code in matplotliv (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 491ff5ae8247837ff9be18d46366f453395dab2413f44f6251aff0b271f7d25b Typosqatting package collecting, but not exfiltrating thus fulfiling the educational promise, sensitive data --- Category: PROBABLYPENTEST - Packages looking...
MAL-2025-191787 Malicious code in matplotliv (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 491ff5ae8247837ff9be18d46366f453395dab2413f44f6251aff0b271f7d25b Typosqatting package collecting, but not exfiltrating thus fulfiling the educational promise, sensitive data --- Category: PROBABLYPENTEST - Packages looking...
TikTok is misusing kids’ data, says privacy watchdog
A group of privacy commissioners in Canada have accused TikTok of scooping up information about hundreds of thousands of children who shouldn't have been on the platform. The Chinese social media giant is also accused of collecting data on Canadian users without properly explaining what it does...
New YiBackdoor Malware Shares Major Code Overlaps with IcedID and Latrodectus
Cybersecurity researchers have disclosed details of a new malware family dubbed YiBackdoor that has been found to share "significant" source code overlaps with IcedID and Latrodectus. "The exact connection to YiBackdoor is not yet clear, but it may be used in conjunction with Latrodectus and Iced...
Can you disappear online? (Lock and Code S06E19)
This week on the Lock and Code podcast There's more about you online than you know. The company Acxiom, for example, has probably determined whether you’re a heavy drinker, or if you're overweight, or if you smoke or all three. The same company has also probably estimated—to the exact dollar—the...
DHS Has Been Collecting US Citizens’ DNA for Years
Newly released data shows Customs and Border Protection funneled the DNA of nearly 2,000 US citizens—some as young as 14—into an FBI crime database, raising alarms about oversight and legality...
SUSE CVE-2023-53340
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Collect command failures data only for known commands DEVX can issue a general command, which is not used by mlx5 driver. In case such command is failed, mlx5 is trying to collect the failure data, However, mlx5 doesn't...
Linux Distros Unpatched Vulnerability : CVE-2013-0464
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple cross-site scripting XSS vulnerabilities in IBM Eclipse Help System IEHS 3.4.3 and 3.6.2, as used in IBM SPSS Data Collection 6.0, 6.0.1, and 7.0, allo...
Google misled users about their privacy and now owes them $425m, says court
A court has ordered Google to pay $425m in a class action lawsuit after it was found to have misled users about their online privacy. In July 2020, Google user Anibal Rodriguez filed a lawsuit against the search giant, arguing that it misled users with its "Web & App Activity" setting. The settin...
ICSLure: a Very High Interaction Honeynet for PLC-Based Industrial Control Systems
The security of Industrial Control Systems ICSs is critical to ensuring the safety of industrial processes and personnel. The rapid adoption of Industrial Internet of Things IIoT technologies has expanded system functionality but also increased the attack surface, exposing ICSs to a growing range...
Study Reveals TikTok, Alibaba, Temu Collect Extensive User Data in America
Incogni finds top foreign apps downloaded in the US harvest names, locations, and emails, sharing them with third parties for ads and profiling...
Google settles YouTube lawsuit over kids’ privacy invasion and data collection
Google has agreed to a $30 million settlement in the US over allegations that it illegally collected data from underage YouTube users for targeted advertising. The lawsuit claims Google tracked the personal information of children under 13 without proper parental consent, which is a violation of...