34 matches found
EUVD-2013-4720
Malware in sbrugna...
EUVD-2013-4721
Malware in sbrugna...
EUVD-2013-4719
Malware in sbrugna...
EUVD-2013-4722
Malware in sbrugna...
CVE-2013-4876
The Verizon Wireless Network Extender SCS-2U01 has a hardcoded password for the root account, which makes it easier for physically proximate attackers to obtain administrative access by leveraging a login prompt...
CVE-2020-9436
PHOENIX CONTACT TC ROUTER 3002T-4G through 2.05.3, TC ROUTER 2002T-3G through 2.05.3, TC ROUTER 3002T-4G VZW through 2.05.3, TC ROUTER 3002T-4G ATT through 2.05.3, TC CLOUD CLIENT 1002-4G through 2.03.17, and TC CLOUD CLIENT 1002-TXTX through 1.03.17 devices allow authenticated users to inject...
TrickBot Targets Verizon, T-Mobile, Sprint Users to Siphon PINs
The TrickBot malware, known previously for targeting U.S. banks, is now setting a bullseye on users of U.S.-based mobile carriers, including Verizon Wireless, T-Mobile and Sprint, to launch SIM swapping attacks. Researchers with Dell’s Secureworks research team warned that they have observed the...
Mobile-First Phishing Kit Targets Verizon Customers
As people increasingly go mobile-first in their work and personal lives, cybercrime is keeping up: The latest is a phishing kit that specifically targets Verizon Wireless customers in the U.S. According to Jeremy Richards, a researcher at Lookout Security, the kit pushes phishing links to users v...
verizonwireless.com XSS vulnerability
Vulnerable URL: https://www.verizonwireless.com/connected-devices/hum-by-verizon/?alert/OPENBUGBOUNTY/...
devices.verizonwireless.com XSS vulnerability
Open Bug Bounty ID: OBB-422603 Description| Value ---|--- Affected Website:| devices.verizonwireless.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS...
Verizon Wireless Internal Credentials, Infrastructure Details Exposed in Amazon S3 Bucket
Organizations continue to leak data through publicly accessible Amazon S3 buckets, pointing a harsh finger at continued lax attitudes toward the custodianship of sensitive data. Verizon is the latest business affected by this epidemic, leaking in this case files marked confidential from an intern...
Verizon Patches XSS Issues in its Messaging Client
Verizon late last year patched a vulnerability in its Message+ messaging client that could have allowed an attacker to take over a session and possibly extend their reach into a user’s account management settings. Researcher Randy Westergren yesterday disclosed some details on the bug, which coul...
billpaysvc.verizonwireless.com XSS vulnerability
Vulnerable URL: https://billpaysvc.verizonwireless.com/vzwprepay/prepay/nos/listStores.action Details: Description| Value ---|--- Patched:| Yes, at 23.11.2017 Latest check for patch:| 23.11.2017 23:21 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not...
Threat Outbreak Alert RuleID18835: Email Messages Distributing Malicious Software on November 17, 2015
Medium Alert ID: 41616 First Published: 2015 October 20 20:23 GMT Last Updated: 2015 November 18 14:00 GMT Version: 10 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID1883...
Verizon Allows Opt Out of UIDH Mobile Supercookie
Verizon Wireless has made a change that now allows customers to opt out of the ad-targeting program that relies on the so-called supercookie identifier that was inserted into Web requests users send. The use of the identifier, known as a UIDH, drew the ire of privacy advocates and users when it w...
Verizon Wireless Injects Identifiers to Track Mobile Customers’ Online Activities
The Nation's largest telecom operator 'Verizon Wireless' is tracking its customers' mobile internet traffic by adding a token to Web requests traveling over its network, in order to facilitate targeted advertising even if a user has opted out of their Customer Proprietary Network Information CPNI...
Simple Bug Exposed Verizon Wireless Users' SMS History
A security researcher discovered a simple vulnerability in Verizon Wireless’s Web-based customer portal that enabled anyone who knows a subscriber’s phone number to download that user’s SMS message history, including the numbers of the people he communicated with. The vulnerability, which has bee...
Simple, but Critical vulnerability in Verizon Portal revealed users' SMS History
A Security researcher discovered a critical privacy vulnerability on Verizon Wireless’s Web-based customer portal that allows anyone to download user’s SMS History and Numbers of other users he communicated with. Back in August, researcher 'Cody Collier' found that a simple URL exploit could allo...
CVE-2013-4875
The Uboot bootloader on the Verizon Wireless Network Extender SCS-2U01 allows physically proximate attackers to bypass the intended boot process and obtain a login prompt by connecting a crafted HDMI cable and sending a SysReq interrupt...
CVE-2013-4874
The Uboot bootloader on the Verizon Wireless Network Extender SCS-26UC4 allows physically proximate attackers to obtain root access by connecting a crafted HDMI cable and using a sys session to modify the ramboot environment variable...