EUVD-2017-1426

Malware in sbrugna...

Default credentials

An issue was discovered in Mahara before 18.10.0. It mishandled user requests that could discontinue a user's ability to maintain their own account changing username, changing primary email address, deleting account. The correct behavior was to either prompt them for their password and/or send a...

HackerOne: Content spoofing on invitations page

When you are an owner of a program on h1 , you are allowed to invite external users to access any report through email . As you invite someone , this is how the body of invitation is being sent through email :- link to researcher's profile invited you to join the bug Title Of The Bug for Name of...

Izz ad-Din al-Qassam Cyber Fighters threaten American Banks again

The Izz ad-Din al-Qassam Cyber Fighters published a new message on their Pastebin profile , warning of a new round of cyber attacks against U.S. financial institutions, beginning this week. In September and October, al-Qassam launched widespread distributed denial-of-service DDoS attacks against...

Hackers steal 250,000 X Factor Details !

Hackers steal 250,000 X Factor Details ! The FBI is reportedly investigating after hackers broke into Simon Cowell's computer network. Details of more than 250,000 X Factor entrants are said to have been stolen and Simon and bosses at American TV network Fox, are said to be scared that the thieve...

CVE-2010-4764

Open Ticket Request System OTRS before 2.4.10, and 3.x before 3.0.3, does not present warnings about incoming encrypted e-mail messages that were based on revoked PGP or GPG keys, which makes it easier for remote attackers to spoof e-mail communication by leveraging a key that has a revocation...