China’s Salt Typhoon Hackers Breached the US National Guard for Nearly a Year

Plus: Secret IRS data-sharing with ICE, a 20-year-old hackable vulnerability in train brakes, and more...

ebc-brakes.de Cross Site Scripting vulnerability OBB-3886648

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

dellner-brakes.com Cross Site Scripting vulnerability OBB-3769072

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

canTot

This is a Python-based CLI framework called "canTot" that is designed for CAN Bus hacking and exploitation. It is similar to an exploit framework but focused on known CAN Bus vulnerabilities or "fun CAN Bus hacks." The framework is made up of several modules, each with its own specific...

ebc-brakes.de Cross Site Scripting vulnerability OBB-3437817

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

ats-brakes.ru Cross Site Scripting vulnerability OBB-1381242

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

CVE-2020-10268

Critical services for operation can be terminated from windows task manager, bringing the manipulator to a halt. After this a Re-Calibration of the brakes needs to be performed. Be noted that this only can be accomplished either by a Kuka technician or by Kuka issued calibration hardware that...

Tesla Killer: The Fuzzed and the Furious

The Tesla doesn’t have a conventional OBDII port onboard diagnostics as such. There’s a connector, but it’s just provided with +12V/ground in order to power things like insurance telematics dongles. Instead, there’s the Tesla diagnostics connector X427 which is where things get a bit weird. That...

Watch: Hackers take over Tesla Model X; control brakes and doors

By Waqas The hackers from Keen Security Labs, a part of Chinese Internet giant Tencent This is a post from HackRead.com Read the original post: Watch: Hackers take over Tesla Model X; control brakes and doors...

Faily Brakes - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Faily Brakes published at the 'play' market has multiple vulnerabilities...

Unfixed XSS vulnerability at www.tirerack.com

Security researcher p0pc0rn, has submitted on 08/01/2011 a cross-site-scripting XSS vulnerability affecting www.tirerack.com, which at the time of submission ranked 5572 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 21/12/2011. It is currentl...