106 matches found
EUVD-2015-9128
Malware in sbrugna...
EUVD-2008-1492
Malware in sbrugna...
EUVD-2023-12925
Malicious code in bioql PyPI...
EUVD-2024-0783
Malicious code in bioql PyPI...
Minoritised Ethnic People'S Security and Privacy Concerns and Responses Towards Essential Online Services
Minoritised ethnic people are marginalised in society, and therefore at a higher risk of adverse online harms, including those arising from the loss of security and privacy of personal data. Despite this, there has been very little research focused on minoritised ethnic people's security and...
Victoria’s Secret US Website Restored After Security Incident
Victoria's Secret website was down due to a 'security incident' impacting online and some in-store services. Get the…...
CVE-2015-9288
The Unity Web Player plugin before 4.6.6f2 and 5.x before 5.0.3f2 allows attackers to read messages or access online services via a victim's credentials...
Chrome Users Can Now Sync Passkeys Across Devices with New Google PIN Feature
Google on Thursday unveiled a Password Manager PIN to let Chrome web users sync their passkeys across Windows, macOS, Linux, ChromeOS, and Android devices. "This PIN adds an additional layer of security to ensure your passkeys are end-to-end encrypted and can't be accessed by anyone, not even...
What’s new in the MSRC Report Abuse Portal and API
The Microsoft Security Response Center MSRC has always been at the forefront of addressing cyber threats, privacy issues, and abuse arising from Microsoft Online Services. Building on our commitment, we have introduced several updates to the Report Abuse Portal and API, which will significantly...
[updated] Apex Legends Global Series plagued by hackers
The North American finals of online shooter game Apex Legends has been postponed after games were disrupted by hacking incidents. Apex Legends, published by EA, is currently in an important stage of its Global Series, the regional finals mode. This is a big deal for the top players since there is...
Using Machine Learning to Detect Keystrokes
Researchers have trained a ML model to detect keystrokes by sound with 95% accuracy. "A Practical Deep Learning-Based Acoustic Side Channel Attack on Keyboards" Abstract: With recent developments in deep learning, the ubiquity of microphones and the rise in online services via personal devices,...
Microsoft Vulnerability Severity Classification for Online Services Publication
The Microsoft Security Response Center MSRC is always looking for ways to provide clarity and transparency around how we assess the impact of vulnerabilities reported in our products and services. We have published a new Microsoft Vulnerability Severity Classification for Online Services to provi...
Microsoft Vulnerability Severity Classification for Online Services Publication
The Microsoft Security Response Center MSRC is always looking for ways to provide clarity and transparency around how we assess the impact of vulnerabilities reported in our products and services. We have published a new Microsoft Vulnerability Severity Classification for Online Services to provi...
CVE-2023-0939
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in NTN Information Technologies Online Services Software allows SQL Injection. This issue affects Online Services Software: before 1.17...
CVE-2023-0939
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in NTN Information Technologies Online Services Software allows SQL Injection.This issue affects Online Services Software: before 1.17...
Sql injection
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in NTN Information Technologies Online Services Software allows SQL Injection.This issue affects Online Services Software: before 1.17...
CVE-2023-0939
CVE-2023-0939 affects NTN Information Technologies Online Services Software, prior to version 1.17. It is an SQL Injection vulnerability due to improper neutralization of special elements in SQL commands, with potential impact to confidentiality, integrity, and availability (CVSS v3.1 base score ...
CVE-2023-0939 Multiple SQL Injection on NTN Information Technologies' Online Services software
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in NTN Information Technologies Online Services Software allows SQL Injection. This issue affects Online Services Software: before 1.17...
PT-2023-16626
Name of the Vulnerable Software and Affected Versions Online Services Software versions prior to 1.17 Description The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection attacks. Recommendation...
NTN Information Technologies Online Services Software SQL注入漏洞
NTN Information Technologies Online Services Software is an online services software from NTN Information Technologies. A security vulnerability exists in NTN Information Technologies Online Services Software prior to version 1.17 that stems from improper neutralization of special elements, which...