CVE-2021-22349
There is an Input Verification Vulnerability in Huawei Smartphone. Successful exploitation of insufficient input verification may cause the system to restart.
Air India disclosed a data breach after personal information belonging to roughly 4.5 million of its customers was leaked two months following the hack of Passenger Service System provider SITA in February 2021. The Indian national carrier first informed passengers that SITA was the victim of a cyberattack on March 19. “This is to inform that…
ESET researchers discover a new Lazarus backdoor deployed against a freight logistics firm in South Africa ESET researchers have discovered a previously undocumented Lazarus backdoor, which they have dubbed Vyveva, being used to attack a freight logistics company in South Africa. The backdoor consists of multiple components and communicates with its C&C server via the…
Application Security , Endpoint Security , Incident & Breach Response Pen Test Partners: Millions Could Have Had Data Exposed Marianne Kolbasuk McGee (HealthInfoSec) • May 6, 2021 Photo: Peloton Security researchers say API flaws could have exposed the private data of millions of Peloton fitness equipment online service users for months before they…
Google intervened to remove nine Android apps downloaded more than 5.8 million times from the company’s Play Store after the apps were caught furtively stealing users’ Facebook login credentials. “The applications were fully functional, which was supposed to weaken the vigilance of potential victims. With that, to access all of the apps’ functions and, allegedly,…
Xinhua file photos of Russian President Vladimir Putin (L) and U.S. President Joe Biden U.S. President Joe Biden on Tuesday called on Russia to de-escalate its tensions with Ukraine in his phone call with Russian President Vladimir Putin, the White House said. The president voiced concerns over the sudden Russian military build-up in Crimea and…
US cyber security firm FireEye said it would sell its products business, including the FireEye name, to a consortium led by private-equity firm Symphony Technology Group for US$1.2 billion (A$1.55 billion) in cash. The deal will separate FireEye’s network, email and cloud security products from its cyber forensics unit, Mandiant Solutions. The deal is expected…