286 matches found
EUVD-2025-204552
Malicious code in spamsms npm...
EUVD-2006-2941
Malware in sbrugna...
EUVD-2004-0831
Malware in sbrugna...
EUVD-2009-1038
Malware in sbrugna...
EUVD-2006-3468
Malware in sbrugna...
Form validation popups could capture escape key presses. Therefore, spamming form validation messages could be used to prevent users from exiting full-screen mode. This vulnerability affects Firefox < 128 and Thunderbird < 128.
...
An Overview of 7726 User Reports: Uncovering SMS Scams and Scammer Strategies
Mobile network operators implement firewalls to stop illicit messages, but scammers find ways to evade detection. Previous work has looked into SMS texts that are blocked by these firewalls. However, there is little insight into SMS texts that bypass them and reach users. To this end, we...
CVE-2025-47779
Asterisk is an open-source private branch exchange PBX. Prior to versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cert5 of certified-asterisk, SIP requests of the type MESSAGE RFC 3428 authentication do not get proper alignment. An authenticated attacker...
DEBIAN-CVE-2025-47779
Asterisk is an open-source private branch exchange PBX. Prior to versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cert5 of certified-asterisk, SIP requests of the type MESSAGE RFC 3428 authentication do not get proper alignment. An authenticated attacker...
CVE-2025-47779 Using malformed From header can forge identity with ";" or NULL in name portion
Asterisk is an open-source private branch exchange PBX. Prior to versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cert5 of certified-asterisk, SIP requests of the type MESSAGE RFC 3428 authentication do not get proper alignment. An authenticated attacker...
CVE-2025-47779 Using malformed From header can forge identity with ";" or NULL in name portion
Asterisk is an open-source private branch exchange PBX. Prior to versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cert5 of certified-asterisk, SIP requests of the type MESSAGE RFC 3428 authentication do not get proper alignment. An authenticated attacker...
CVE-2025-47779
CVE-2025-47779 affects Asterisk and certified-asterisk where SIP MESSAGE authentication requests can be misaligned, enabling an authenticated attacker to spoof a user identity and send spam/fake chat messages that appear to come from trusted entities. Impact includes potential social engineering ...
CVE-2025-47779
Asterisk is an open-source private branch exchange PBX. Prior to versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cert5 of certified-asterisk, SIP requests of the type MESSAGE RFC 3428 authentication do not get proper alignment. An authenticated attacker...
Denial Of Service (DoS)
vrite is vulnerable to Denial of Service DoS. This vulnerability exists due to the absence of rate limits, which allows an attacker to send spam messages to the victim's email inbox...
Phishers make a date with your calendar apps
Calendars are a rich source of bad behaviour for scammers and spammers. They’re one of the most prolific tools the workplace has for collaborative actions and general cross-purpose messaging. They’ve been misused by bad actors for many years now, most commonly spamming unwary potential victims an...
Google takes on Docs notification spammers
Cloud-based document suites have always been a hot target for scammers. When it’s easy to dip in and out for collaboration purposes, or just share things generally, then its likely that bad people will want in on the action. In 2019, Google calendar users were wading through endless spam...
Unspecified Vulnerability in Gossipsub
Gossipsub is a scalable benchmark pubsub protocol based on randomized topic grids and Gossip. A security vulnerability exists in Gossipsub version 1.0, which stems from the program's failure to implement relevant security protections against invalid spam messages. An attacker can exploit this...
Threat Outbreak Alert RuleID33448: Email Messages Distributing Malicious Software on August 12, 2018
Medium Alert ID: 58665 First Published: 2018 August 13 12:39 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID33448 may contain the following files: Name |...
Threat Outbreak Alert RuleID33110: Email Messages Distributing Malicious Software on July 4, 2018
Medium Alert ID: 58353 First Published: 2018 July 5 15:43 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID33110 may contain the following files: Name | Size...
Threat Outbreak Alert RuleID33039: Email Messages Distributing Malicious Software on June 22, 2018
Medium Alert ID: 58273 First Published: 2018 June 22 13:39 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID33039 may contain the following files: Name | Siz...