CVE-2021-1572
CVE-2021-1572
Similar Posts
Malspam Campaign Used Hancitor to Download Cuba Ransomware
Cybercrime , Cybercrime as-a-service , Email Security & Protection Attackers Co-Opted Malware for Data Exfiltration and Ransom, Group-IB Finds Akshaya Asokan (asokan_akshaya) • May 8, 2021 Attackers co-opted the Hancitor malware downloader and recently used it to deliver Cuba ransomware as part of an email spam campaign for data exfiltration and ransom extortion,…
Microsoft Database Engine Vulnerabilities Patched
Application Security , Governance & Risk Management , IT Risk Management Exploits Could Enable Remote Attacks on MS IIS and SQL Rashmi Ramesh • August 4, 2021 Researchers at Palo Alto Networks’ Unit 42 say they have demonstrated how exploits of Microsoft Jet Database Engine vulnerabilities could lead to remote attacks on Microsoft…
Amazon Gets Apple to Boot App That Spots Fake Reviews From App Store
Apple on Friday removed the app Fakespot from its App Store at Amazon’s request. Amazon complained Fakespot misled customers, broke App Store rules, and posed a security risk. Fakespot’s CEO said he was shocked by the turn of events. See more stories on Insider’s business page. Amazon got Apple to remove an app called Fakespot…
Ransomware hits hundreds of US companies, security firm says
WASHINGTON — A ransomware attack paralyzed the networks of at least 200 U.S. companies on Friday, according to a cybersecurity researcher whose company was responding to the incident. The REvil gang, a major Russian-speaking ransomware syndicate, appears to be behind the attack, said John Hammond of the security firm Huntress Labs. He said the criminals…
Vulnerability Allows Remote DoS Attacks Against Apps Using Linphone SIP Stack
A serious vulnerability affecting the Linphone Session Initiation Protocol (SIP) client suite can allow malicious actors to remotely crash applications, industrial cybersecurity firm Claroty warned on Tuesday. SIP is a signaling protocol designed for initiating, maintaining and terminating communication sessions. The protocol is often used for voice, video, instant messaging, and other types of applications….
North Korean Hackers Targeting Defense Firms with ThreatNeedle Malware
A prolific North Korean state-sponsored hacking group has been tied to a new ongoing espionage campaign aimed at exfiltrating sensitive information from organizations in the defense industry. Attributing the attacks with high confidence to the Lazarus Group, the new findings from Kaspersky signal an expansion of the APT actor’s tactics by going beyond the usual…