CVE-2023-32229

Due to an error in the software interface to the secure element chip on Bosch IP cameras of family CPP13 and CPP14, the chip can be permanently damaged when enabling the Stream security option signing of the video stream with option MD5, SHA-1 or SHA-256...

Staying Safe in the Era of Browser-based Cryptocurrency Mining

Qualys Malware Research Labs is announcing the release of Qualys BrowserCheck CoinBlocker Chrome extension to detect and block browser-based cryptocurrency mining, aka cryptojacking. Cryptojacking Cryptojacking attacks leverage the victim system’s resources via malicious JavaScript to mine certai...

New Police Ransomware 'Browlock' targeting users in US, Canada and UK

What would you do if a European Cybercrime Agency locked your PC until you paid a fine? A new Police Ransomware family dubbed Trojan:HTML/Browlock by F-secure Antivirus firm, known as Browlock, which spreads by tricking unsuspecting web surfers into believing the police are after them. Ransomware...

usb-blam.txt

I discovered rather inadvertently that laptops do not enjoy having their USB VCC shorted to GND one bit. It is a sure DoS, in fact if the machine has a stupid power supply, it could result in permanent damage. It is kind of scary for kiosk machines like the those ubiquitous Kodak photo centers. I...

SuSE Linux Kernel非授权操作SCS设备固件漏洞

BUGTRAQ ID: 11784 CVECAN ID: CVE-2004-1190 SuSE Linux是一款开放源代码Linux系统。 SuSE Linux对SCSI设备接口的管理存在漏洞，本地攻击者可能利用此漏洞非授权修改破坏设备的固件。 SuSE Linux可能允许本地攻击者覆盖小型计算机系统接口（SCSI）设备的固件。拥有只读访问权限的本地攻击者可以向SCSI设备发送SCSI命令覆盖固件，导致设备永久的不可恢复的失效，可能必须送回厂商才能修复。 S.u.S.E. Linux Enterprise Server 9 S.u.S.E. Linux 9.0 RedHat ------...