Security Affairs

SEPTEMBER 5, 2019

” reads the security advisory published by ZDI. ” The vulnerability resides in the way the Video for Linux (V4L2) driver handles input data, it could be exploited by an attacker to elevate permissions to kernel level. The post Zero-day vulnerability in Android OS yet to be patched appeared first on Security Affairs.

Access 77

Access Security IT Information Security 77

Security Affairs

MARCH 28, 2020

Since December 2019, researchers from Qihoo 360 observed two different attack groups that are employing two zero-days exploits to take over DrayTek enterprise routers to eavesdrop on FTP and email traffic inside corporate networks. The attacker is snooping on port 21,25,143,110 (1/2) — 360 Netlab (@360Netlab) December 25, 2019. #0-day

Manufacturing 82

Manufacturing Access IT Security 82

Security Affairs

FEBRUARY 27, 2020

From December 2019 it had spread, impersonating and using template emails from the Portuguese Government Finance & Tax (Portal das Finanças – ATA) , Energias de Portugal (EDP) , and most recently DPD firm – an international parcel delivery service. Nome do Servidor: Linux portaldasfinancas 4.4.0-116-generic Pierluigi Paganini.

Government 101

Government IT Security Information Security 101

Security Affairs

SEPTEMBER 16, 2019

Since GDPR legislation came into effect, most EU domain registrars have agreed that WHOIS records are considered private and personally identifiable information. “ 2019-04-30 07:07:59 – The first signed malicious file appears in the wild. Pierluigi Paganini. SecurityAffairs – digital certificates, hacking).

Marketing 80

Marketing GDPR Security IT 80

Security Affairs

MAY 27, 2020

23-04-2020] Malware #portugal #trojan #evasion new sample [link] –c2– hxxp://192.236.147.]100:51224/$rdgate?ACTION=x Figure 2: Grandoreiro variant VT sample submitted on 2020-04-24 during this investigation. Figure 1: Grandoreiro email template Q2 2020 (Portugal). 100:51224/$rdgate?ACTION=x ACTION=x 192.236.147.]100:1950/zflipbgi.iso

Communications 66

Communications Archiving Access IT 66

Security Affairs

APRIL 24, 2020

Singapore, 24/04/2020 – Group-IB , a Singapore-based cybersecurity company, has detected a dump containing details for nearly 400,000 payment card records uploaded to a popular darknet cardshop on April 9. The provenance of this data remains unknown. 2 – Sale of South Korean-issued card dumps in the underground.

Sales 101

Sales Cybersecurity Risk Marketing 101

Security Affairs

APRIL 15, 2021

The simple nature of such attacks combined with the use of malicious JavaScript code for intercepting payment data attract more and more cybercriminals, and JS-sniffers became one of the most prominent sources of stolen bank cards on underground markets. If you want to receive the weekly Security Affairs Newsletter for free subscribe here.

e-Discovery 114

e-Discovery IT Marketing Security 114