MAL-2024-7389 Malicious code in @zitterorg/temporibus-debitis (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 2627e9d9051e0d1895756ce624e1b949a981fa4bc501344f116e24ab383811e3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Dell Data Breach: Personal Information of 49 Million Customers Compromised due to latest API Abuse

Dell recently issued a notice regarding a data breach that occurred on May 9, which has reportedly affected over 49 million customers across the globe. According to a report by BleepingComputer, Dell initiated the distribution of notifications cautioning its customers that their personally...

Cyberattack hits 5 hospitals

Canadian health service provider TransForm has published an update about the cyberattack at its member hospitals. TransForm is a not-for-profit, shared service organization founded by the five hospitals in Erie St. Clair to manage their hospital IT, supply chain, and accounts payable needs. The...

Yappli has unspecified vulnerabilities

Yappli, an application development platform from Yappli Japan, has a security vulnerability in Yappli Android Apps that could be exploited by attackers to access malicious websites containing carefully constructed URLs, where the application could be directed to connect to certain unintended...

多款Qualcomm产品授权问题漏洞

Qualcomm SDX55 and others are products of Qualcomm Incorporated Qualcomm.SDX55 is a modem.IPQ6018 is a central processing unit CPU product.QCA6390 is a central processing unit CPU product. Multiple Qualcomm Products WLAN An authorization issue vulnerability exists in that the vulnerability stems...

JVN#26891339: Multiple vulnerabilities in Retty App

Retty App provided by Retty Inc. contains multiple vulnerabilities listed below. The app is launched by Custom URL Scheme and a user may be led to access an arbitrary URL CWE-939 - CVE-2021-20747 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N| Base Score:...

Grammarly Patches Chrome Extension Bug That Exposed Users’ Docs

UPDATE Grammarly has fixed a bug with its Chrome browser extension that exposed its authorization tokens to websites, allowing sites to assume the identity of a user and view their account’s documents. “I’m calling this a high severity bug, because it seems like a pretty severe violation of user...

China Hacked FDIC And Agency Covered It Up

A scathing congressional report points the finger at hackers sponsored by the Chinese government for their role in a series of hacks against the U.S. Federal Deposit Insurance Corp. FDIC. The report also alleges the agency covered up the hacks in order to guarantee the appointment of current...

Remote Access Hack Compromises POS Vendor

A popular point of sale vendor may have suffered a data breach earlier this year that could affect customers of a handful of Pacific Northwest restaurants. Vancouver, Wash.-based Information Systems & Supplies, a supplier of POS systems to restaurants such as Dairy Queen, Buffalo Wild Wings and...

3 Million Cards Implicated in Michaels Breach

Nearly four months after it first reported it was investigating a data breach, the arts and crafts retail chain Michaels confirmed yesterday that most of its U.S. stores were compromised on and off for eight months and that payment card information of nearly three million of its customers may hav...

Update: Hacking Group TeaMp0isoN Claims Breach of T-Mobile

The hacking group TeaMp0isoN claims to have compromised Web servers used by T-Mobile, and absconded with account information for company employees, including members of T-Mobile’s media team. The group used a post on its official Twitter account taking responsibility for the attack, which targete...

Epsilon Data Breach Expands to Include Capital One, Disney, Others

The compromise of a system at online marketing company Epsilon Data Management that came to light last week and involves the email addresses and names of customers at companies such as Citibank, Kroger and Disney expanded over the weekend to include a slew of other companies. The attack does not...