Cybercriminals Selling Access to Compromised Networks: 3 Surprising Research Findings

Cybercriminals are innovative, always finding ways to adapt to new circumstances and opportunities. The proof of this can be seen in the rise of a certain variety of activity on the dark web: the sale of access to compromised networks. This type of dark web activity has existed for decades, but i...

Security News: Microsoft Patch Tuesday August 2021, Phishers Started Using reCAPTCHA, Scan 1 IP and Go to Jail

Hello everyone! Yet another news episode. Microsofts August Patch Tuesday Lets start with Microsofts August Patch Tuesday. I think the most interesting thing is that it contains a fix for the PetitPotam vulnerability. I talked about this vulnerability two weeks ago. At the time, Microsoft had no...

Moderate: Red Hat Security Advisory: Red Hat Integration Camel Quarkus Tech-Preview 2 security update

An update to the Red Hat Integration Camel Quarkus tech preview is now available. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability...

France Cracked Down on Google’s Ad Tech. What’s Next?

The French Competition Agency has hit the company with $855 million in fines this year. The money is meaningless—but the changes could be profound...

BazaCall: Phony call centers lead to exfiltration and ransomware

Our continued investigation into BazaCall campaigns, those that use fraudulent call centers that trick unsuspecting users into downloading the BazaLoader malware, shows that this threat is more dangerous than what’s been discussed publicly in other security blogs and covered by the media. Apart...

Unauthorized Access Vulnerability in Clinical Browsing System of Bluebonnet Technologies Inc.

Bluebonnet Technology Co., Ltd. is a well-known medical information technology solution provider, focusing on the field of medical information technology, product development, sales and service as one of the national high-tech enterprises. An unauthorized access vulnerability exists in the clinic...

Directory Traversal Vulnerability in Dynamic Ring Monitoring Backend System of Guangzhou Kingston Electronic Technology Co.

Guangzhou Kingston Electronic Technology Co., Ltd. is a high-tech company integrating R&D, production and sales. A directory traversal vulnerability exists in the back-end system of Guangzhou Kingston Electronic Technology Co. An attacker can exploit this vulnerability to obtain sensitive...

SQL Injection Vulnerability in Dynamic Ring Monitoring Backend System of Guangzhou Kingston Electronic Technology Company Limited (CNVD-2021-54063)

Guangzhou Kingston Electronic Technology Co., Ltd. is a high-tech company integrating R&D, production and sales, and is the leading developer and manufacturer of networked computer room power environment monitoring equipment in China. Guangzhou Kingston Electronic Technology Co., Ltd. dynamic rin...

A week in security (July 5 – July 11)

Last week on Malwarebytes Labs: Racing against a real-life ransomware attack. Podcast with Ski Kacoroski. Kaseya CEO: “The impact of this incredibly sophisticated attack is very minimal” Patch now! Emergency fix for PrintNightmare released by Microsoft. Game over: Apex Legends players locked out ...

Tianjin Shenzhou Haotian Technology Co., Ltd. online self-service accounting system has logic flaws vulnerability

Tianjin Shenzhou Haotian Technology Co., Ltd. is a high-tech enterprise integrating management software design, development, sales and service. Tianjin Shenzhou Haotian Technology Co., Ltd. online self-service reporting system has a logic flaw vulnerability, attackers can use the vulnerability to...

File Upload Vulnerability in Library Cluster Management System of Guangzhou Tutron Computer Software Development Co. Ltd (CNVD-2021-52386)

Ltd. is a high-tech enterprise integrating product research and development, application integration and customer service, with the main goal of providing high-quality application software system design, integration and maintenance services for users in the library industry. There is a file uploa...

SQL Injection Vulnerability in Library Cluster Management System of Guangzhou Tutron Computer Software Development Co. Ltd (CNVD-2021-52066)

Ltd. is a high-tech enterprise integrating product research and development, application integration and customer service, with the main goal of providing high-quality application software system design, integration and maintenance services for users in the library industry. There is a SQL...

Weak password vulnerability in Tianwen's service governance platform

Tianwen Digital Media Technology Beijing Co., Ltd. is a state-controlled national high-tech enterprise and Zhongguancun high-tech enterprise. A weak password vulnerability exists in Tianwen's service governance platform, which can be exploited by attackers to obtain sensitive information...

Security Bulletin: A security vulnerability has been identified in IBM Java SDK shipped with IBM InfoSphere Optim Performance Manager (CVE-2015-4872)

Summary IBM Java SKD is shipped as a component of IBM InfoSphere Optim Performance Manager. Information about a security vulnerability affecting IBM Java SDK has been published in a security bulletin. Vulnerability Details CVEID: CVE-2015-4872 DESCRIPTION: An unspecified vulnerability in Oracle...

SQL Injection Vulnerability in Network Video Surveillance System of Tianmai Technology

Zhengzhou Tianmai Technology Co., Ltd. was founded in 2004, is located in Zhengzhou City, National High-tech Industrial Development Zone, is specializing in public transportation intelligent system solutions provider, is the "city intelligent bus solutions" and "3G/4G video, Beidou/GPS monitoring...

SQL Injection Vulnerability in Power Environment Monitoring System of Guangzhou Longjianda Electronics Co.

Founded in 2008, Longjianda is a high-tech enterprise specializing in providing overall solutions for intelligent archive storage and data center. A SQL injection vulnerability exists in the power environment monitoring system of Guangzhou Longjianda Electronics Co., Ltd, which can be exploited b...

Shaanxi Touyouyou Supply Chain Management Co. Touyoupass has unauthorized access vulnerability

Ltd. is a high-tech enterprise specializing in the research and development, production and sales of end-of-logistics products, and providing industry solutions and implementation services as a whole. Ltd. Touyuyu Tong unauthorized access vulnerability, attackers can use the vulnerability to obta...

File Upload Vulnerability in the Switch Centralized Management Platform of Shenzhen VMware Technology Co.

Ltd. is a network total solution and smart home solution provider. A file upload vulnerability exists in the switch centralized management platform of Shenzhen WML Technology Co. Ltd. that can be exploited by an attacker to upload a webshell and gain server privileges...

Weak Password Vulnerability in Dynamic Ring Monitoring System of Shijiazhuang Hejia Technology Co.

Shijiazhuang Hejia Technology Co., Ltd. is a high-tech enterprise specializing in the development and application of computer room environment and power equipment monitoring system products. Shijiazhuang Hejia Technology Co., Ltd. dynamic ring monitoring system has a weak password vulnerability,...

Ransomware. In the air?

Introduction As an exercise, we were asked to look at the potential vectors for ransomware to affect flight despatch and operations. In most cases, flight systems simply werent significantly exposed, but ground systems affected by ransomware may make flight ops either impossible or significantly...