CVE-2021-22333
There is an Improper Validation of Array Index vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause code to execute, thus obtaining system permissions.
Similar Posts
Nearly 50,000 IPs Compromised in Kubernetes Clusters
Governance & Risk Management , IT Risk Management Trend Micro: Cryptojacking Group TeamTNT Targets Clusters in Wormlike Attack Prajeet Nair (@prajeetspeaks) • May 26, 2021 Logo for Kubernetes open-source container orchestration system Researchers at Trend Micro say about 50,000 IPs were compromised across multiple Kubernetes clusters in a wormlike attack by the cloud-focused…
BitSight, Mastercard and Tenable Make Acquisitions
3rd Party Risk Management , Blockchain & Cryptocurrency , Governance & Risk Management Risk Assessment, Improving DevSecOps, Cryptocurrency Risk Research Drive Deals Doug Olenick (DougOlenick) • September 14, 2021 Merger and acquisition activity picked up again in September with BitSight, Tenable and Mastercard all making deals. See Also: An All-in-One Vulnerability Management, Detection,…
Hackers Hack Hackers as Underground Carding Site is Breached
Thousands of cyber-criminals have had their personal data leaked online after a popular carding forum was hacked, according to Group-IB. The Singapore-based security firm said it discovered that data belonging to users of the Swarmshop site was leaked to another underground forum on March 17. “The database was posted on a different underground forum and…
Hackers Target Critical Infrastructure in Southeast Asia
Critical Infrastructure Security , Cybercrime , Cybercrime as-a-service Symantec: China-Linked Actors Investigate SCADA Systems Akshaya Asokan (asokan_akshaya) • August 7, 2021 An unidentified hacking group with suspected China ties is targeting critical infrastructure in South East Asia as part of a cyberespionage campaign to exfiltrate information about the victim’s SCADA systems. says a…
Deloitte and Sophos Make Acquisitions
Governance & Risk Management , Network Detection & Response , Next-Generation Technologies & Secure Development Both Firms Buy Two Cybersecurity Companies Doug Olenick (DougOlenick) • July 27, 2021 Brisk M&A activity in the cybersecurity sector continues. Among the latest moves: Deloitte and Sophos each have announced two acquisitions See Also: Live Webinar |…
US announces new security directive after critical pipeline hack
The US Department of Homeland Security (DHS) has announced new pipeline cybersecurity requirements after the largest fuel pipeline in the United States was forced to shut down operations in early May following a ransomware attack. The new security directive requires critical pipeline owners and operators to report any confirmed and potential cybersecurity incidents to the Cybersecurity and Infrastructure Security…