Lucene search
K

109 matches found

Malwarebytes
Malwarebytes
added 2023/08/03 8:30 p.m.28 views

Film companies lose battle to unmask Reddit users

An interesting case marking the limits of what data big business can expect to dig up has concluded its day or to be more accurate, many days in court. Ars Technica reports that film companies have lost their battle to make social site Reddit identify anonymous users discussing piracy. No fewer...

6.8AI score
Exploits0
Talos Blog
Talos Blog
added 2023/07/06 12:0 p.m.16 views

The growth of commercial spyware based intelligence providers without legal or ethical supervision

Attackers have long used commercial products developed by legitimate companies to compromise targeted devices. These products are known as commercial spyware. Commercial spyware operations mainly target mobile platforms with zero- or one-click zero-day exploits to deliver spyware. This threat...

6.9AI score
Exploits0
Schneier on Security
Schneier on Security
added 2023/06/07 11:6 a.m.15 views

How Attorneys Are Harming Cybersecurity Incident Response

New paper: "Lessons Lost: Incident Response in the Age of Cyber Insurance and Breach Attorneys": Abstract: Incident Response IR allows victim firms to detect, contain, and recover from security incidents. It should also help the wider community avoid similar attacks in the future. In pursuit of...

6.7AI score
Exploits0
0day.today
0day.today
added 2023/04/06 12:0 a.m.282 views

Music Gallery Site v1.0 - SQL Injection Vulnerability (2)

Exploit Title: Music Gallery Site v1.0 - SQL Injection on page viewmusicdetails.php Exploit Author: Muhammad Navaid Zafar Ansari CVE Assigned: CVE-2023-0961 mitre.org nvd.nist.org Author Name: Muhammad Navaid Zafar Ansari Vendor Homepage: https://www.sourcecodester.com Software Link: Music Galler...

9.8CVSS9.4AI score0.01883EPSS
Exploits5
Malwarebytes
Malwarebytes
added 2023/03/16 6:0 a.m.15 views

Facebook illegally processed user data, says court

The Amsterdam court has ruled that Facebook illegally processed user data in a case started by the Dutch Data Privacy Stichting DPS, a foundation that acts on behalf of victims of privacy violations in the Netherlands. According to the ruling, Facebook used personal data for advertising purposes ...

6.7AI score
Exploits0
Schneier on Security
Schneier on Security
added 2023/03/06 12:6 p.m.12 views

New National Cybersecurity Strategy

Last week, the Biden administration released a new National Cybersecurity Strategy summary here. There is lots of good commentary out there. Its basically a smart strategy, but the hard parts are always the implementation details. Its one thing to say that we need to secure our cloud...

2AI score
Exploits0
Krebs on Security
Krebs on Security
added 2023/03/03 1:33 a.m.37 views

Highlights from the New U.S. Cybersecurity Strategy

The Biden administration today issued its vision for beefing up the nations collective cybersecurity posture, including calls for legislation establishing liability for software products and services that are sold with little regard for security. The White Houses new national cybersecurity strate...

Exploits0
0day.today
0day.today
added 2023/02/27 12:0 a.m.471 views

Music Gallery Site 1.0 SQL Injection Vulnerability

Music Gallery Site - SQL Injection on page musiclist.php and parameter cid is vulnerable, application url is ?page=musiclist&cid=?. Any remote attacker can access this page to exploit the vulnerbility. CVE Assigned: CVE-2023-0938 mitre.org nvd.nist.org Author Name: Muhammad Navaid Zafar Ansari...

9.8CVSS9.2AI score0.01883EPSS
Exploits11
Malwarebytes
Malwarebytes
added 2023/02/17 3:30 p.m.17 views

Two Supreme Court cases could change the Internet as we know it

The Supreme Court is about to reconsider Section 230, a law thats been the foundation of the way we have used the Internet for decades. The court will be handling a few cases that at first glance are about online platforms' liability for hosting accounts from foreign terrorists. But at a deeper...

0.3AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/02/13 9:30 a.m.17 views

French law to report cyberincidents within 3 days to become effective soon

The pressure on victims of cybercrime to notify authorities in a timely manner is increasing from many sides and for multiple reasons. On January 24, 2023 France passed a law Article L12-10-1 of the Insurance Code that victims of cybercrime are required to report the incident within 72 hours afte...

6.7AI score
Exploits0
GithubExploit
GithubExploit
added 2022/11/22 9:10 a.m.124 views

Exploit for Use After Free in Microsoft

Home-Demolisher PoC for CVE-2021-31166 and CVE-2022-21907...

10CVSS9.9AI score0.99657EPSS
Exploits40
The Hacker News
The Hacker News
added 2022/11/10 7:30 a.m.33 views

Re-Focusing Cyber Insurance with Security Validation

The rise in the costs of data breaches, ransomware, and other cyber attacks leads to rising cyber insurance premiums and more limited cyber insurance coverage. This cyber insurance situation increases risks for organizations struggling to find coverage or facing steep increases. Some Akin Gump...

7.2AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2022/10/21 11:0 a.m.16 views

Your Microsoft Exchange Server Is a Security Liability

Endless vulnerabilities. Massive hacking campaigns. Slow and technically tough patching. It's time to say goodbye to on-premise Exchange...

2.4AI score
Exploits0
Malwarebytes
Malwarebytes
added 2022/07/10 10:39 p.m.18 views

4 ways businesses can save money on cyber insurance

So, your business has just suffered a data breach and it’s time to dig deep in your pockets to pay all the resulting expenses. Without cyber insurance, you can expect to pay a dizzying amount of cash. In 2022 alone, the average cost of a data breach for businesses under 1,000 employees was close ...

0.8AI score
Exploits0
Imperva Blog
Imperva Blog
added 2022/06/21 12:30 p.m.21 views

Can Business Cybersecurity Protection Outlay Offset Cybercrime Insurance?

What is cybercrime insurance? Business cybersecurity protection cybercrime insurance safeguards organizations from any financial losses relating to damage to or loss of information from, networks and IT systems. This may include reputation loss, the cost of business interruption, infringement of...

7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2022/03/18 4:2 p.m.18 views

Online Safety Bill’s provisions for “legal but harmful” content described as “censor’s charter”

The UKs Online Safety Bill, a landmark piece of legislation that that aims to regulate the countrys online content, has just been introduced into Parliament after undergoing significant revisions. The bill has been in progress for about five years and its main objective is to regulate online...

0.4AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2022/03/10 4:6 p.m.14 views

New US Law to Require Cyber Incident Reports

The US Congress is poised to pass the Cyber Incident Reporting for Critical Infrastructure Act of 2022. Once signed by the President, it will become law. The law will require critical infrastructure owners and operators to report cyber incidents and ransomware payments. The legislation was...

0.2AI score
Exploits0
The Hacker News
The Hacker News
added 2021/08/26 12:25 p.m.43 views

The Increased Liability of Local In-home Propagation

Today I discuss an attack vector conducive to cross-organizational spread, in-home local propagation. Though often overlooked, this vector is especially relevant today, as many corporate employees remain working from home. In this post, I contrast in-home local propagation with traditional vector...

0.9AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2021/07/21 3:47 p.m.42 views

Venmo Gets More Private—but It's Still Not Fully Safe

Eliminating the global feed is a good step. But until the platform offers privacy by default, it remains a liability for many of its users...

2.9AI score
Exploits0
Kitploit
Kitploit
added 2021/06/27 9:30 p.m.72 views

Mythic - A Collaborative, Multi-Platform, Red Teaming Framework

A cross-platform, post-exploit, red teaming framework built with python3, docker, docker-compose, and a web browser UI. It's designed to provide a collaborative and user friendly interface for operators, managers, and reporting throughout red teaming. Details Check out a series of YouTube videos...

7.3AI score
Exploits0References1
Rows per page
Query Builder