16 matches found
EUVD-2014-5582
Malware in sbrugna...
Brazil’s manufacturing industry under attack by Vice Society ransomware group
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary The Vice Society ransomware group is a cyber threat group that made headlines in late 2022 and early 2023 for a series of attacks against various targets, including the rapid transit system in San...
Vice Society actors target K-12 institutions in US
Threat Level Actor Report For a detailed threat advisory, download the pdf file here Summary Vice Society is an extortion hacking group that emerged in the summer of 2021. The Vice Society does not use a specific ransomware variant. Instead, they used variants of Hello Kitty, Five Hands, and...
Hello Kitty Database of 3.3 Million Users Surfaces
A cache of data including 3.3 million user credentials belonging to Hello Kitty parent company Sanrio surfaced over the weekend. The breach was originally reported in December 2015, but at the time Sanrio denied any data was stolen as part of the breach. The breach was tied to a misconfigured...
Hello Kitty Nail Salon - Base64 encoded String, Customized SSL, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Hello Kitty Nail Salon published at the 'play' market has multiple vulnerabilities...
Hello Kitty Seasons - Customized SSL, Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Hello Kitty Seasons published at the 'play' market has multiple vulnerabilities...
Hello Kitty Christmas Puzzles - Base64 encoded String, Exported ContentProvider, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Hello Kitty Christmas Puzzles published at the 'play' market has multiple vulnerabilities...
Hello Kitty Jewel Town! - Customized SSL, Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Hello Kitty Jewel Town! published at the 'play' market has multiple vulnerabilities...
Hello Kitty Carnival - Certificates or keys found, Dynamic Code Loading, Exported components vulnerabilities
HackApp vulnerability scanner discovered that application Hello Kitty Carnival published at the 'play' market has multiple vulnerabilities...
Hello Kitty's Pie Shop - Customized SSL, Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Hello Kitty's Pie Shop published at the 'play' market has multiple vulnerabilities...
Hello Kitty Cafe - Customized SSL, Dangerous filesystem permissions, Hardcoded secrets vulnerabilities
HackApp vulnerability scanner discovered that application Hello Kitty Cafe published at the 'play' market has multiple vulnerabilities...
Hello Kitty AR effect - Customized SSL, Dangerous filesystem permissions, MIT license vulnerabilities
HackApp vulnerability scanner discovered that application Hello Kitty AR effect published at the 'play' market has multiple vulnerabilities...
CVE-2014-5695
The Hello Kitty Cafe aka com.sd.google.helloKittyCafe application 1.4.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The Hello Kitty Cafe aka com.sd.google.helloKittyCafe application 1.4.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5695
The CVE-2014-5695 entry affects the Android app Hello Kitty Cafe (com.sd.google.helloKittyCafe) version 1.4.0, where SSL certificate verification is not performed for servers. This allows a man-in-the-middle to spoof servers and capture sensitive information via a crafted certificate. The core ca...
CVE-2014-5695
The Hello Kitty Cafe aka com.sd.google.helloKittyCafe application 1.4.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...