New variant of Joker malware found in Android apps on Play Store

By Sudais Asif The original Joker malware was identified on Play Store back in September 2019. This is a post from HackRead.com Read the original post: New variant of Joker malware found in Android apps on Play Store...

This Week in Security News: 15 Billion Credentials Currently Up for Grabs on Hacker Forums and New Mirai Variant Expands Arsenal

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, read about how fifteen billion usernames and passwords for a range of internet services are currently for sale on underground forums. Also,...

TAU Threat Analysis: Hakbit Ransomware

The bad actors behind Hakbit ransomware recently released an updated variant of their ransomware, which encrypts the victim’s data and demands 3 Bitcoins in ransom payment. This updated variant is delivered via phishing email as a malicious Excel document, and contains added functionality from th...

Hoaxcalls Botnet Exploits Symantec Secure Web Gateways

Cyberattackers are targeting a post-authentication remote code-execution vulnerability in Symantec Secure Web Gateways as part of new Mirai and Hoaxcalls botnet attacks. Hoaxcalls first emerged in late March, as a variant of the Gafgyt/Bashlite family; it’s named after the domain used to host its...

DEBIAN-CVE-2018-10756

Use-after-free in libtransmission/variant.c in Transmission before 3.00 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted torrent file...

New Mac variant of Lazarus Dacls RAT distributed via Trojanized 2FA app

This blog post was authored by Hossein Jazi, Thomas Reed and Jérôme Segura. We recently identified what we believe is a new variant of the Dacls Remote Access Trojan RAT associated with North Korea's Lazarus group, designed specifically for the Mac operating system. Dacls is a RAT that was...

Shopify: IDOR on stocky application-Low Stock-Varient-Settings-Columns

Hello, I have found a IDOR on stocky application Low Stock-Varient-Settings-Columns attribute, in fact malicious user can change the columns of another user. POC: 1Create two user A and B, login to A and create a store, test.myshopify.com login to user B and create a store test1.myshopify.com...

The vulnerability of the header::add_INFO_descriptor function in the VCF file handling package VCFtools allows a attacker to cause a service failure.

The vulnerability of the header::addINFOdescriptor function in the VCF file handling library VCFtools is related to the use of memory after it is freed. Exploiting this vulnerability could allow a malicious actor to cause service failure by using a specially created vcf file...

The vulnerability of the header::add_INFO_descriptor function in the VCF file handling package VCFtools allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the header::addINFOdescriptor function in the VCF file handling library VCFtools relates to reading data beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information through a specially created vcf fi...

The vulnerability of the header::add_FORMAT_descriptor function in the VCF file handling package VCFtools allows a attacker to cause a service failure.

The vulnerability of the header::addFORMATdescriptor function in the VCF file handling package VCFtools is related to the use of memory after it is freed. Exploiting this vulnerability could allow a malicious actor to cause service failure by using a specially created vcf file...

CVE-2020-3252

Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about these vulnerabilities, see the Details section o...

Cumulative Update 41 for Microsoft Dynamics NAV 2017 (Build 30219)

Cumulative Update 41 for Microsoft Dynamics NAV 2017 Build 30219 This article applies to Microsoft Dynamics NAV 2017 for all countries and all language locales. An information disclosure vulnerability exists if Microsoft Dynamics Business Central/NAV on-premises does not correctly hide the value ...

Arbitrary Code Execution

icu is vulnerable to arbitrary code execution. The vulnerability exists as a stack-based buffer overflow flaw was found in the way ICU performed variant canonicalization for some locale identifiers. If a specially-crafted locale representation was opened in an application linked against ICU, it...

DRIVE.NET, Inc.: [www.drive2.ru] Insufficient Security Configurability - Email notification is not being sent while changing passwords

Email notification was not sent while changing passwords. This issue was fixed. Best Practices As recommended practices, Due to missing notification email when changing password, If the password has been maliciously changed, the user will not be able to notice it, so immediate security measures...

Mukashi: A New Mirai IoT Botnet Variant Targeting Zyxel NAS Devices

A new version of the infamous Mirai botnet is exploiting a recently uncovered critical vulnerability in network-attached storage NAS devices in an attempt to remotely infect and control vulnerable machines. Called "Mukashi," the new variant of the malware employs brute-force attacks using differe...

New Mirai Variant 'Mukashi' Targets Zyxel NAS Devices

Another variant of the shape-shifting Mirai botnet is attacking Zyxel network-attached storage NAS devices using a critical vulnerability that was only recently discovered, according to security researchers. The variant, dubbed Mukashi, takes advantage of a pre-authentication command injection...

New TrickBot Variant Updates Anti-Analysis Tricks

Researchers uncovered a new variant of the TrickBot malware that relies on new anti-analysis techniques, an updated method for downloading its payload as well as adopting minor changes to the integration of its components. TrickBot is a module-based malware that, while first identified as a banki...

Variant of Paradise Ransomware Targets Office IQY Files

A new variant of the Paradise ransomware attacks rarely-targeted Microsoft Office Excel IQY files, providing a new and relatively inobtrusive way to infiltrate and hijack an organization’s network, researchers have found. Lastline Labs’ James Haughom discovered the variant in December in a spam...

Latest LokiBot malware variant distributed as Epic Games installer

By Deeba Ahmed The new variant of the notorious LokiBot malware is more sophisticated and effective than its previous versions. This is a post from HackRead.com Read the original post: Latest LokiBot malware variant distributed as Epic Games installer...

Mozilla: Type Confusion in XPCVariant.cpp

Due to a missing case handling object types, a type confusion vulnerability could occur, resulting in a crash. We presume that with enough effort that it could be exploited to run arbitrary code. This vulnerability affects Firefox ESR 68.4 and Firefox 72...