12 matches found
EUVD-2022-38503
Malicious code in bioql PyPI...
CVE-2022-35621
Access control vulnerability in Evoh NFT EvohClaimable contract with sha256 hash code fa2084d5abca91a62ed1d2f1cad3ec318e6a9a2d7f1510a00d898737b05f48ae allows remote attackers to execute fraudulent NFT transfers...
Anatsa Banking Trojan Targeting Users in US, UK, Germany, Austria, and Switzerland
A new Android malware campaign has been observed pushing the Anatsa banking trojan to target banking customers in the U.S., U.K., Germany, Austria, and Switzerland since the start of March 2023. "The actors behind Anatsa aim to steal credentials used to authorize customers in mobile banking...
Beware: Cybercriminals Launch New BrasDex Android Trojan Targeting Brazilian Banking Users
The threat actors behind the Windows banking malware known as Casbaneiro has been attributed as behind a novel Android trojan called BrasDex that has been observed targeting Brazilian users as part of an ongoing multi-platform campaign. BrasDex features a "complex keylogging system designed to...
CVE-2022-35621
Access control vulnerability in Evoh NFT EvohClaimable contract with sha256 hash code fa2084d5abca91a62ed1d2f1cad3ec318e6a9a2d7f1510a00d898737b05f48ae allows remote attackers to execute fraudulent NFT transfers...
CVE-2022-35621
Summary (CVE-2022-35621): An access-control flaw in the EvohClaimable ERC-721 contract enables a remote attacker to cause fraudulent NFT transfers by exploiting how transferFrom/safeTransferFrom do not verify that the _from parameter is the actual NFT owner. The attacker can cause the contract to...
CVE-2022-35621
Access control vulnerability in Evoh NFT EvohClaimable contract with sha256 hash code fa2084d5abca91a62ed1d2f1cad3ec318e6a9a2d7f1510a00d898737b05f48ae allows remote attackers to execute fraudulent NFT transfers...
PT-2022-22928 · Unknown · Evoh Nft Evohclaimable Contract
Name of the Vulnerable Software and Affected Versions: Evoh NFT EvohClaimable contract affected versions not specified Description: The issue is related to an access control vulnerability in the Evoh NFT EvohClaimable contract. This vulnerability allows remote attackers to execute fraudulent NFT...
FBI: Rise in Business Email-based Attacks a $43B Headache
The FBI warned the global cost of business email compromise BEC attacks is $43 billion for the time period of June 2016 and December 2021. According to FBI report, 241,206 complaints were lodged by the agency’s Internet Crime Center IC3. BEC or email account compromise EAC are an advanced scammin...
CamuBot Banking Trojan Returns In Targeted Attacks
The CamuBot malware, known for targeting Brazilian bank customers, has returned in a slew of recent offensives. The latest wave of attacks are highly personalized and, unlike previous campaigns, target victims’ mobile banking apps as an extra step to evade detection when making fraudulent...
Feds Arrest 74 Email Fraudsters Involved in Nigerian BEC Scams
The United States Department of Justice announced Monday the arrest of 74 email fraudsters across three continents in a global crackdown on a large-scale business email compromise BEC scheme. The arrest was the result of a six-month-long operation dubbed "Operation Wire Wire" that involved the US...
FBI Warns Businesses of Email Scams, Wire Fraud
U.S. businesses are losing millions in fraudulent wire transfers that have their root in email compromises of accounts belonging to top executives. An FBI advisory issued Thursday warns businesses that regularly conduct wire transfer payments to be vigilant about potential email account...