MAL-2022-2393 Malicious code in deep-integrations (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 701fc1ba4b0344605c351e6ee31de481a9b83be3551900d9a182a5e220388401 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in deep-integrations (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 701fc1ba4b0344605c351e6ee31de481a9b83be3551900d9a182a5e220388401 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Friday Squid Blogging: Squid Changes Color from Black to Transparent

Neat video. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here...

NVIDIA DGX 输入验证错误漏洞

NVIDIA DGX is a high-performance workstation for deep learning applications from NVIDIA. An input validation error vulnerability exists in NVIDIA DGX A100, which stems from incorrect validation of the SBIOS array index in IpSecDxe. An attacker could exploit this vulnerability to execute arbitrary...

NVIDIA DGX 缓冲区错误漏洞

NVIDIA DGX is a high-performance workstation for deep learning applications from NVIDIA. The NVIDIA DGX A100 suffers from a buffer error vulnerability that originates from accessing an uninitialized pointer to SBIOS in Ofbd. An attacker could exploit this vulnerability to execute arbitrary code o...

Samsung mobile 安全漏洞

Samsung mobile is a cell phone from the South Korean company Samsung. A security vulnerability exists in Samsung mobile AR Emoji SMR prior to Jun-2022 Release 1. An attacker exploiting this vulnerability could allow untrusted applications to use certain camera features via deep links...

CVE-2022-28799

The TikTok application before 23.7.3 for Android allows account takeover. A crafted URL unvalidated deeplink can force the com.zhiliaoapp.musically WebView to load an arbitrary website. This may allow an attacker to leverage an attached JavaScript interface for the takeover with one click...

Bytedance TikTok 安全漏洞

Bytedance TikTok Jieyin International Version is an application for creating and sharing short videos by Chinese company Bytedance. A security vulnerability exists in TikTok versions prior to 23.8.4, which stems from a crafted URL unauthenticated deep link that can force com.zhiliaoapp.musically...

Using Python to unearth a goldmine of threat intelligence from leaked chat logs

Dealing with a great amount of data can be time consuming, thus using Python can be very powerful to help analysts sort information and extract the most relevant data for their investigation. The open-source tools library, MSTICPy, for example, is a Python tool dedicated to threat intelligence. I...

Malicious code in @s3p-js-deep-purple/utils (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 51979342d98be531eeeaff886127fdf5b69d61a3556b72231095ef22a7c088d6 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Weak password vulnerability in the virtualization authorization management system of Deepcore Technology Co.

DeepService Technology Co., Ltd. is a product and service provider specializing in enterprise-class network security, cloud computing, IT infrastructure and the Internet of Things IoT. A weak password vulnerability exists in the virtualization authorization management system of DeepSign Technolog...

4cdl (>=1.0.1 <=1.0.7), 77cli (>=0.0.10 <=0.0.12) +445 more potentially affected by CVE-2021-25944 via deep-defaults (=1.0.5)

deep-defaults NPM version =1.0.5 is affected by a known vulnerability. The following packages have a transitive dependency on deep-defaults and may be impacted: - 4cdl =1.0.1, =0.0.10, =0.0.2, =0.0.1, =0.2.0, =0.0.1, =0.0.1, =1.0.1, =0.0.1, =0.0.1, =1.0.2, =1.0.4 and more Source cves:...

deep-defaults vulnerable to prototype pollution

Overview Prototype pollution vulnerability in 'deep-defaults' versions 1.0.0 through 1.0.5 allows attacker to cause a denial of service and may lead to remote code execution. Details The NPM module deep-defaults can be abused by Prototype Pollution vulnerability since the function deepDefaults do...

GHSA-H6XG-RG33-9MF4 deep-defaults vulnerable to prototype pollution

Overview Prototype pollution vulnerability in 'deep-defaults' versions 1.0.0 through 1.0.5 allows attacker to cause a denial of service and may lead to remote code execution. Details The NPM module deep-defaults can be abused by Prototype Pollution vulnerability since the function deepDefaults do...

@dataparty/bouncer-model (>=1.0.1 <=1.4.0), @dataparty/dpc (>=0.1.0 <=0.4.14) +8 more potentially affected by CVE-2020-28276 via deep-set (=1.0.1)

deep-set NPM version =1.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on deep-set and may be impacted: - @dataparty/bouncer-model =1.0.1, =0.1.0, =0.1.1, =1.0.1, =0.1.0, =0.0.1, =2.2.0 - stalwart =0.1.0 Source cves: CVE-2020-28276 Source advisory:...

Prototype pollution vulnerability in 'deep-set'

The NPM module 'deep-set' can be abused by Prototype Pollution vulnerability since the function deepSet does not check for the type of object before assigning value to the property. Due to this flaw an attacker could create a non-existent property or able to manipulate the property which leads to...

GHSA-WGXM-RG53-H2C6 Prototype pollution vulnerability in 'deep-set'

The NPM module 'deep-set' can be abused by Prototype Pollution vulnerability since the function deepSet does not check for the type of object before assigning value to the property. Due to this flaw an attacker could create a non-existent property or able to manipulate the property which leads to...

Anatomy of a DDoS amplification attack

Amplification attacks are one of the most common distributed denial of service DDoS attack vectors. These attacks are typically categorized as flooding or volumetric attacks, where the attacker succeeds in generating more traffic than the target can process, resulting in exhausting its resources...

Friday Squid Blogging: Ten-Foot Long Squid Washed onto Japanese Shore — ALIVE

This is rare: An about 3-meter-long giant squid was found stranded on a beach here on April 20, in what local authorities said was a rare occurrence. At around 10 a.m., a nearby resident spotted the squid at Ugu beach in Obama, Fukui Prefecture, on the Sea of Japan coast. According to the Obama...

Millions of Java Apps Remain Vulnerable to Log4Shell

Four months after the discovery of the zero-day Log4Shell critical flaw, millions of Java applications still remain vulnerable to compromise, researchers have found. Rezilion expected that due to the “massive amount of media coverage” the bug unsurprisingly received, the majority of applications...