EUVD-2025-14207

Malicious code in bioql PyPI...

EUVD-2021-8264

Malicious code in bioql PyPI...

How Los Angeles banned smartphones in schools (Lock and Code S06E10)

This week on the Lock and Code podcast … There's a problem in class today, and the second largest school district in the United States is trying to solve it. After looking at the growing body of research that has associated increased smartphone and social media usage with increased levels of...

INTERPOL Disrupts Over 22,000 Malicious Servers in Global Crackdown on Cybercrime

INTERPOL on Tuesday said it took down more than 22,000 malicious servers linked to various cyber threats as part of a global operation. Dubbed Operation Synergia II, the coordinated effort ran from April 1 to August 31, 2024, targeting phishing, ransomware, and information stealer infrastructure...

DIR-X4860 Buffer Overflow Vulnerability at AUO Electronic Devices (Shanghai) Co.

The DIR-X4860 is a wireless router from China's AUO D-Link. AUO Electronic Devices Shanghai Co. The DIR-X4860 suffers from a buffer overflow vulnerability that stems from the inclusion of a stack-based buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code on...

Singapore Police Arrest Six Hackers Linked to Global Cybercrime Syndicate

The Singapore Police Force SPF has announced the arrest of five Chinese nationals and one Singaporean man for their alleged involvement in illicit cyber activities in the country. The development comes after a group of about 160 law enforcement officials conducted a series of raids on September 9...

Code Issue Vulnerability in DAR-7000 at AUO Electronic Devices (Shanghai) Co.

DAR-7000 is an Internet Behavior Audit Gateway from China AUO D-Link. AUO Electronic Devices Shanghai Co. A code issue vulnerability exists in the DAR-7000, which stems from the file parameter of /log/decodmail.php being able to deserialize certain content. No details of the vulnerability are...

SUBNET PowerSYSTEM Center 安全漏洞

SUBNET PowerSYSTEM Center is SUBNET's infrastructure for secure, centralized management of the many different intelligent electronic devices meters, relays, RTUs, etc. deployed throughout the transmission and distribution system. A security vulnerability exists in SUBNET PowerSYSTEM Center versio...

Command Injection Vulnerability in DIR-822+ V1.0.2 of AUO Electronic Equipment (Shanghai) Co.

DIR-822 is a wireless router from D-Link, a Chinese company. A command injection vulnerability exists in the AUO Electronic Devices Shanghai Co. DIR-822+ version V1.0.2, which stems from the SetStaticRouteSettings function failing to correctly filter constructor command special characters,...

Siemens RUGGEDCOM CROSSBOW Authentication Vulnerability Missing Critical Functions

RUGGEDCOM CROSSBOW is a secure access management solution designed to provide NERC CIP compliant access to smart electronic devices. An authentication vulnerability in Siemens RUGGEDCOM CROSSBOW that lacks critical functionality can be exploited by an attacker to write arbitrary files to the file...

SUBNET PowerSYSTEM Center 安全漏洞

SUBNET PowerSYSTEM Center is SUBNET's infrastructure for secure, centralized management of the many different intelligent electronic devices meters, relays, RTUs, etc. deployed throughout the transmission and distribution system. A security vulnerability exists in SUBNET PowerSYSTEM Center 2020 U...

Siemens RUGGEDCOM CROSSBOW Access Control Error Vulnerability

RUGGEDCOM CROSSBOW is a secure access management solution designed to provide NERC CIP-compliant access to intelligent electronic devices. an access control error vulnerability exists in Siemens RUGGEDCOM CROSSBOW, which stems from the failure of the affected application's client-side query handl...

Siemens RUGGEDCOM CROSSBOW Access Control Error Vulnerability (CNVD-2023-17661)

RUGGEDCOM CROSSBOW is a secure access management solution designed to provide NERC CIP-compliant access to intelligent electronic devices. an access control error vulnerability exists in Siemens RUGGEDCOM CROSSBOW, which stems from the failure of the affected application's client-side query handl...

Europol Busts Phishing Gang Responsible for Millions in Losses

Europol on Tuesday announced the dismantling of an organized crime group that dabbled in phishing, fraud, scams, and money laundering activities. The cross-border operation, which involved law enforcement authorities from Belgium and the Netherlands, saw the arrests of nine individuals in the Dut...

Estonian Tied to 13 Ransomware Attacks Gets 66 Months in Prison

An Estonian man was sentenced today to more than five years in a U.S. prison for his role in at least 13 ransomware attacks that caused losses of approximately $53 million. Prosecutors say the accused also enjoyed a lengthy career of "cashing out" access to hacked bank accounts worldwide. Maksim...

What is Eavesdropping Attack❓ Definition, Types and Prevention

Eavesdropping can be defined as the demonstration of quietly catching a discussion among arbitrary outsiders; albeit discourteous, what mischief might it actually do? All things considered, very little in case somebody is simply honestly paying attention to a discussion that intrigues them...

Denial of Service Vulnerability in DIR-878 AC1900 MU-MIMO Dual Band Gigabit Wireless Router

AUO Electronic Devices Shanghai Co., Ltd. provides high-quality network solutions for consumers and businesses of all sizes. A denial of service vulnerability exists in the DIR-878 AC1900 MU-MIMO Dual Band Gigabit Wireless Router. An attacker can exploit this vulnerability to cause a denial of...

Denial of Service Vulnerability in DIR-878 at AUO Electronic Devices (Shanghai) Co.

AUO Electronic Equipment Shanghai Co., Ltd. is a company that mainly deals with network equipment, wireless equipment, switches and other items. A denial of service vulnerability exists in DIR-878 of AUO Electronic Devices Shanghai Ltd. that can be exploited by attackers to cause a denial of...

Duplicate numbering

Freyrscada IEC-60879-5-104 Server Simulator is a software from Freyrscada India for simulating communication between IEDs and RTUs over TCP. The software is written in C for all POSIX compliant operating systems and supports single server simulation with multiple workstations. "Obsolete" Do not u...

Researchers Warn of Flaw Affecting Millions of IoT Devices

Researchers are urging connected-device manufacturers to ensure they have applied patches addressing a flaw in a module used by millions of Internet-of-Things IoT devices. If exploited, researchers speculated that the flaw could allow attackers to knock out a city’s electricity or even overdose a...