Windows update breaks USB support in recovery mode

We usually tell our faithful readers to install updates as soon as possible, but this time there’s an exception. Microsoft’s October security update has disabled USB mice and keyboards in the Windows Recovery Environment WinRE. WinRE is a special mode built into Windows that helps you fix problem...

EUVD-2017-11641

Malware in sbrugna...

EUVD-2011-3209

Malware in sbrugna...

EUVD-2015-1249

Malware in sbrugna...

EUVD-2016-5731

Malware in sbrugna...

EUVD-2022-49154

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2022-46338

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - g810-led 0.4.2, a LED configuration tool for Logitech Gx10 keyboards, contained a udev rule to make supported device nodes world-readable and writable, allowing...

CVE-2019-8350

The Simple - Better Banking application 2.45.0 through 2.45.3 fixed in 2.46.0 for Android was affected by an information disclosure vulnerability that leaked the user's password to the keyboard autocomplete functionality. Third-party Android keyboards that capture the password may store this...

Making Acoustic Side-Channel Attacks on Noisy Keyboards Viable with LLM-Assisted Spectrograms' "Typo" Correction

The large integration of microphones into devices increases the opportunities for Acoustic Side-Channel Attacks ASCAs, as these can be used to capture keystrokes' audio signals that might reveal sensitive information. However, the current State-Of-The-Art SOTA models for ASCAs, including...

PT-2025-37969

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A user-after-free vulnerability exists in the Linux kernel related to HID Human Interface Device processing, specifically within the handling of ASUS ROG N-Key keyboards. A maliciously...

USB Support in XenApp/XenDesktop Server Products

This article contains information about USB Support in XenApp. USB Support in XenApp/XenDesktop Citrix support for peripherals attached to a client device is a fundamental functionality leveraged by the Citrix Server Based Computing SBC model. Support for many client-side peripherals exists...

Using Machine Learning to Detect Keystrokes

Researchers have trained a ML model to detect keystrokes by sound with 95% accuracy. "A Practical Deep Learning-Based Acoustic Side Channel Attack on Keyboards" Abstract: With recent developments in deep learning, the ubiquity of microphones and the rise in online services via personal devices,...

Information Disclosure

g810-led is vulnerable to information disclosure. The library contained a udev rule to make supported device nodes world-readable and writable, allowing any process on the system to read traffic from keyboards, including sensitive data...

Code injection

g810-led 0.4.2, a LED configuration tool for Logitech Gx10 keyboards, contained a udev rule to make supported device nodes world-readable and writable, allowing any process on the system to read traffic from keyboards, including sensitive data...

UBUNTU-CVE-2022-46338

g810-led 0.4.2, a LED configuration tool for Logitech Gx10 keyboards, contained a udev rule to make supported device nodes world-readable and writable, allowing any process on the system to read traffic from keyboards, including sensitive data...

g810-led 安全漏洞

g810-led is a Linux boot controller for the Logitech G213, G410, G413, G512, G513, G610, G810, G815, G910, and GPRO keyboards from MatMoul Personal Developers. A security vulnerability exists in g810-led version 0.4.2, which stems from its udev rules making supported device nodes globally readabl...

CVE-2022-46338

g810-led 0.4.2, a LED configuration tool for Logitech Gx10 keyboards, contained a udev rule to make supported device nodes world-readable and writable, allowing any process on the system to read traffic from keyboards, including sensitive data...

PT-2022-27827 · G810-Led · G810-Led

Name of the Vulnerable Software and Affected Versions: g810-led version 0.4.2 Description: The issue allows any process on the system to read traffic from keyboards, including sensitive data, due to a udev rule that makes supported device nodes world-readable and writable. This affects a LED...

Got the security controls wrong in OT and maritime? Watch as engineers work around them

Industrial control systems security is slowly improving, partly a result of attention from regulators and lawmakers. However, we often see security controls implemented that don’t take account of the unique challenges that engineers looking after OT environments face. We see controls brought in...

nordkeyboards.com Cross Site Scripting vulnerability OBB-2136476

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...