EUVD-2021-9125

Malicious code in bioql PyPI...

EUVD-2025-18203

Malicious code in bioql PyPI...

$20 YoLink IoT Gateway Vulnerabilities Put Home Security at Risk

Four critical zero-day flaws found in the $20 YoLink Smart Hub allow remote physical access, threatening your home security. See the urgent steps you must take now...

The Insecurity of Video Doorbells

Consumer Reports has analyzed a bunch of popular Internet-connected video doorbells. Their security is terrible. First, these doorbells expose your home IP address and WiFi network name to the internet without encryption, potentially opening your home network to online criminals. … Anyone who can...

Cybersecurity considerations to have when shopping for holiday gifts

As I wrote about last week, there are holiday shopping-related scams already popping up all over the place. But another aspect of security that many shoppers dont consider this time of year is the security of the products theyre buying, even through a legitimate online marketplace. This is a...

Reimagine Hybrid Work: Same CyberSec in Office and at Home

It was first the pandemic that changed the usual state of work - before, it was commuting, working in the office & coming home for most corporate employees. Then, when we had to adapt to the self-isolation rules, the work moved to home offices, which completely changed the workflow for many...

How To Compare The Top Home Security Brands of 2022

By Owais Sultan When it comes to choosing the right home security system for your family, it can be difficult to… This is a post from HackRead.com Read the original post: How To Compare The Top Home Security Brands of 2022...

CVE-2021-21950

CVE-2021-21950 affects Anker Eufy Homebase 2 (binary home_security) with CMD_DEVICE_GET_SERVER_LIST_REQUEST. TALOS details/hardened code path: in recv_server_device_response_msg_process, an attacker-controlled nums value drives a loop that writes domain strings and then writes to a fixed buffer (...

Anker Eufy Homebase 2 home_security CMD_DEVICE_GET_RSA_KEY_REQUEST authentication bypass vulnerability

Talos Vulnerability Report TALOS-2021-1379 Anker Eufy Homebase 2 homesecurity CMDDEVICEGETRSAKEYREQUEST authentication bypass vulnerability November 29, 2021 CVE Number CVE-2021-21952 SUMMARY An authentication bypass vulnerability exists in the CMDDEVICEGETRSAKEYREQUEST functionality of the...

All About Ring’s New Virtual Security Guard

By Owais Sultan Ring’s Virtual Security Guard is a live, customizable motion event monitoring service by Rapid Response that works with the external Ring cameras at home or business. This is a post from HackRead.com Read the original post: All About Rings New Virtual Security Guard...

Locking down your cyber life in lockdown

Today the NCSC refreshed their advice for online shoppers, so I thought it’d be handy to review and advise on other aspects of consumer security hygiene. More than ever, we’re reliant on technology, so now that we’re in various stages of lockdown it’s a great time to have a look at your home and...

Google Fixes Mysterious Audio Recording Blip in Smart Speakers

After Google Home users started receiving mysterious alerts when their fire alarms went off or their plates smashed in their homes, Google acknowledged that it accidentally rolled out a feature causing the smart devices to record sounds without the voice prompt. Reports of the privacy faux pas...

Traffic Analysis of Home Security Cameras

Interesting research on home security cameras with cloud storage. Basically, attackers can learn very basic information about what's going on in front of the camera, and infer when there is someone home. News article. Slashdot thread...

AMA Recap: Top 10 Tips to Secure Your Remote Workforce

This is part of our ongoing conversation about the worldwide challenges of working remotely. To stay up-to-date on the latest insights, refer to our live page for COVID-19: Cybersecurity Community Resources. As organizations around the world transition to remote work en masse, cybersecurity...

Multiple Quick Heal Products Input Validation Error Vulnerability

Quick Heal Total Security, Home Security and Total Security Multi-Device are antivirus programs from Quick Heal India. A security vulnerability exists in the AV parsing engine in several Quick Heal products. The vulnerability can be exploited by attackers to bypass virus checks with the help of...

CVE-2020-9362

The Quick Heal AV parsing engine November 2019 allows virus-detection bypass via a crafted GPFLAG in a ZIP archive. This affects Total Security, Home Security, Total Security Multi-Device, Internet Security, Total Security for Mac, AntiVirus Pro, AntiVirus for Server, and Total Security for Andro...

Design/Logic Flaw

The Quick Heal AV parsing engine November 2019 allows virus-detection bypass via a crafted GPFLAG in a ZIP archive. This affects Total Security, Home Security, Total Security Multi-Device, Internet Security, Total Security for Mac, AntiVirus Pro, AntiVirus for Server, and Total Security for Andro...

The US Blames Russia's GRU for Sweeping Cyberattacks in Georgia

By calling out Russia for digital assaults on its neighboring country, the US hopes to head off similar efforts at home...

Smart speakers: Christmas treat or lump of coal?

Christmas is nearly upon us, and thoughts are perhaps turning to various digital presents of a “smart” nature. Home security, hubs, speakers, cameras, and mashups of all of those and more besides. With regards to speakers, the most immediate pieces of your home are theoretically at your beck and...

Malwarebytes is a champion of National Cybersecurity Awareness Month

October is here. For most of us in the US cybersecurity industry, it’s the month when we commemorate National Cybersecurity Awareness Month NCSAM. For those who are unfamiliar with this campaign, NCSAM generally aims at driving awareness for safe Internet use, whether you're a regular consumer or...