Malicious code in sher-net (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f87dc8302df47889be1acee83b535b423d7f04e597ed61cca62dc2727f4d5d46 Starting the module activates a hardcoded telegram bot allowing remote code execution, data exfiltration, collecting webcam photos, clipboard data, etc. ---...

CVE-2020-10858

Zulip Desktop before 5.0.0 allows attackers to perform recording via the webcam and microphone due to a missing permission request handler...

CVE-2022-23488

BigBlueButton is an open source web conferencing system. Versions prior to 2.4-rc-6 are vulnerable to Insertion of Sensitive Information Into Sent Data. The moderators-only webcams lock setting is not enforced on the backend, which allows an attacker to subscribe to viewers' webcams, even when th...

CVE-2022-24890

Nextcloud Talk is a video and audio conferencing app for Nextcloud. In versions prior to 13.0.5 and 14.0.0, a call moderator can indirectly enable user webcams by granting permissions, if they were enabled before removing the permissions. A patch is available in versions 13.0.5 and 14.0.0. There...

A Bag of RATs: VenomRAT vs. AsyncRAT

Introduction Remote access tools RATs have long been a favorite tool for cyber attackers, since they enable remote control over compromised systems and facilitate data theft, espionage, and continuous monitoring of victims. Among the well-known RATs are VenomRAT and AsyncRAT. These are open-sourc...

Unitree Robotics A1 Security Breach

Unitree Robotics A1 is a quadrupedal robot from Chinese company Unitree Robotics. A security vulnerability exists in Unitree Robotics A1 version 1.16, which stems from a lack of authentication and allows a local attacker to use a web server to view through a webcam...

CVE-2022-24890 Exposure of Private Personal Information to an Unauthorized Actor in Nextcloud Talk

Nextcloud Talk is a video and audio conferencing app for Nextcloud. In versions prior to 13.0.5 and 14.0.0, a call moderator can indirectly enable user webcams by granting permissions, if they were enabled before removing the permissions. A patch is available in versions 13.0.5 and 14.0.0. There...

What is RAT Remote Access Trojan ❓ Detection and Removal

Introduction Humans live in the 21st century where a large portion of our exchanges are taken care of on the web. Thus, people, businesses and organizations are presented with new online protection dangers. A significant number of these digital dangers will break into your framework and challenge...

Storm-Breaker - Tool Social Engineering (Access Webcam, Microphone, OS Password Grabber And Location Finder) With Ngrok

Tool Social Engineering Access Webcam, Microphone, OS Password Grabber And Location Finder With Ngrok Features: Get Device Information Without Any Permissions Access Location SMARTPHONES Os Password Grabber WIN-10 Access Webcam Access Microphone Operating Systems Tested Kali Linux 2020 Installati...

Zulip Desktop 安全漏洞

Zulip Desktop is a desktop version of the team chat application from Zulip USA. An authorization issue vulnerability exists in versions prior to Zulip Desktop 5.0.0, which stems from allowing an attacker to record from a webcam and microphone because of an unprivileged request processor...

Hackers deface 1000+ Israeli websites in attempt to get webcam access

By Waqas Hackers also left a warning message for Israeli agencies to be prepared for a big surprise. This is a post from HackRead.com Read the original post: Hackers deface 1000+ Israeli websites in attempt to get webcam access...

Apple Safari Flaws Enable One-Click Webcam Access

A security researcher has disclosed vulnerabilities in Apple’s Safari browser that can be used to snoop on iPhones, iPads and Mac computers using their microphones and cameras. To exploit the flaws in a real-world attack, all an attacker would need to do is convince a victim to click one maliciou...

Opinion: Websites Ask for Permissions And Attack Forgiveness

Web pages are increasingly powerful—asking for notifications, webcam access, or location—but this great power comes with great vulnerabilities...

A Zoom Flaw Gives Hackers Easy Access to Your Webcam

All it takes is one wrong click, and the popular video conferencing software will put you in a meeting with a stranger...

Firefox < 28.0 Multiple Vulnerabilities

The installed version of Firefox is a version prior to 28.0 and is, therefore, potentially affected by the following vulnerabilities : - Memory issues exist that could lead to arbitrary code execution. CVE-2014-1493, CVE-2014-1494 - An issue exists where extracted files for updates are not...