10 matches found
An Apparent Ransomware Hack Puts the NRA in a Bind
The group behind the reported attack is under sanctions from the US Treasury, which means a payout could come with penalties for the victim...
This Week in Security News - October 29, 2021
What to Expect in a Ransomware Negotiation & Cybercriminals Claim to Have Hacked the NRA...
Grief Ransomware Targets NRA
A ransomware group tied to Russia claims to have stolen data from the National Rifle Association NRA in a ransomware attack on the controversial gun-rights group, which has declined to comment on the situation. The Grief ransomware gang listed the NRA as a victim of its nefarious activity on its...
nra-tour.com Cross Site Scripting vulnerability OBB-1437208
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
nra-tour.co.id Cross Site Scripting vulnerability OBB-1358846
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
Google, PlayStation & NRA suffered DDoS attacks via Memcached servers
By Waqas By now the vulnerability in Memcached Servers has been exposed to This is a post from HackRead.com Read the original post: Google, PlayStation & NRA suffered DDoS attacks via Memcached servers...
CVE-2014-7116
The NRA Journal aka com.magazinecloner.nationalrifleassociationjournal application @7F080181 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Xxe
The NRA Journal aka com.magazinecloner.nationalrifleassociationjournal application @7F080181 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7116
CVE-2014-7116 affects the Android app for the NRA Journal (package com.magazinecloner.nationalrifleassociationjournal). Affected component: SSL certificate validation logic does not verify X.509 certificates from servers, per the provided description. Root cause: missing certificate validation en...
CVE-2014-7116
The NRA Journal aka com.magazinecloner.nationalrifleassociationjournal application @7F080181 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...