EUVD-2021-27512

Malicious code in bioql PyPI...

MAL-2022-1302 Malicious code in azure-communication-network-traversal (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3f7a0cec00dbd776206a45492d115fdad30ccb30649387fcb23e928778c431a8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in azure-communication-network-traversal (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3f7a0cec00dbd776206a45492d115fdad30ccb30649387fcb23e928778c431a8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-2136 Malicious code in communication-network-traversal (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9644017375dc5e148ea3c57c8227a481169d1336d4ed3abeb0c2d09728a6c81b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Graph Analysis of the Conti Ransomware Group Internal Chats

We were presented with a remarkably rich source of intelligence with the leaked communications from the Conti ransomware group. It’s a compelling and insightful read. The leaked information contains details on messages, including information on timestamps, sender, receiver, and the actual body of...

Hardcoded credentials

A CWE-798: Use of Hard-coded Credentials vulnerability exists. If an attacker were to obtain the TLS cryptographic key and take active control of the Courier tunneling communication network, they could potentially observe and manipulate traffic associated with product configuration...

Hitachi Energy XMC20 and FOX61x

1. EXECUTIVE SUMMARY CVSS v3 9.0 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: XMC20 and FOX61x Vulnerabilities: Weak Password Requirements, Missing Handler 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to...

CVE-2021-40333

Weak Password Requirements vulnerability in Hitachi Energy FOX61x, XCM20 allows an attacker to gain unauthorized access to the Data Communication Network DCN routing configuration. This issue affects: Hitachi Energy FOX61x versions prior to R15A. Hitachi Energy XCM20 versions prior to R15A...

CVE-2021-40333

Weak Password Requirements vulnerability in Hitachi Energy FOX61x, XCM20 allows an attacker to gain unauthorized access to the Data Communication Network DCN routing configuration. This issue affects: Hitachi Energy FOX61x versions prior to R15A. Hitachi Energy XCM20 versions prior to R15A...

CVE-2021-40333 Weak default credential associated with TCP port 26

Weak Password Requirements vulnerability in Hitachi Energy FOX61x, XCM20 allows an attacker to gain unauthorized access to the Data Communication Network DCN routing configuration. This issue affects: Hitachi Energy FOX61x versions prior to R15A. Hitachi Energy XCM20 versions prior to R15A...

SEL AcSELerator Architect 2.2.24 - CPU Exhaustion Denial of Service

!/usr/bin/env python coding: utf8 SEL AcSELerator Architect 2.2.24 Remote CPU Exhaustion Denial of Service Vendor: Schweitzer Engineering Laboratories, Inc. Product web page: https://www.selinc.com Affected version: 2.2.24.0 ICD package version: 2.38.0 Summary: Substation communications networks...

FCC Promotes Best Practices for SS7 Communications

The Federal Communications Commission FCC has released a public notice encouraging communications service providers to voluntarily use security best practices recommended by the Communications Security, Reliability, and Interoperability Council CSRIC, a federal advisory committee to the FCC. Thes...

Cisco ONS Control Card远程拒绝服务漏洞

BUGTRAQ ID: 33261 CVE ID：CVE-2008-3818 CNCVE ID：CNCVE-20083818 Cisco 15310-CL, 15310-MA, ONS 15327, ONS 15454, ONS 15454 SDH和ONS 15600硬件通过CTX, CTX2500, XTC, TCC/TCC+/TCC2/TCC2P, TCCi/TCC2/TCC2P和TSC控制卡管理，这些控制卡通常连接数据通信网络DCN，DCN用于在管理端点和网络实体进行管理信息传送。DCN的定义有时又叫为Management Communication Network...

Cell Phone Signal hijacking-vulnerability warning-the black bar safety net

Interesting article, this concept has long been proposed, but very few people described so fine. And to be able to implement the“attacker”requirements, high. GSM in the one-way authentication issues in 3G（WCDMA network will be overwritten, since the certification no longer is a 3-tuple, but the...