CVE-2021-22349
There is an Input Verification Vulnerability in Huawei Smartphone. Successful exploitation of insufficient input verification may cause the system to restart.
Similar Posts
Spam Downpour Drips New IcedID Banking Trojan Variant
Researchers have seen a new variant of the IcedID banking trojan sliding in via two new spam campaigns. Written in English and carrying .ZIP files full of the malware – or links to such ZIP files – the new twist on the old banking trojan is a tweaked downloader, which the threat actors moved from….
New Android Trojan hijacks Facebook accounts
A previously unseen Android Trojan dubbed FlyTrap has targeted at least 140 countries since March this year, spreading to more than 10 000 victims via social media hijacking, third-party app stores, and sideloaded applications. This was revealed by Zimperium’s zLabs mobile threat research teams, who recently found several previously undetected applications using the company’s z9…
Cybersecurity Fears Trigger Migration From the Public Cloud | Cybersecurity
By Jack M. Germain Mar 26, 2021 7:51 AM PT Cloud cybersecurity — or a lack of it — is feeding a frenzy of companies out of the public cloud. A similar concern about managing compliance obligations is keeping organizations from moving to the cloud in general. However, much of the growing concerns over cloud…
Microsoft Exchange Under Attack With ProxyShell Flaws
The U.S. Cybersecurity and Infrastructure Security Agency is warning of active exploitation attempts that leverage the latest line of “ProxyShell” Microsoft Exchange vulnerabilities that were patched earlier this May, including deploying LockFile ransomware on compromised systems. Tracked as CVE-2021-34473, CVE-2021-34523, and CVE-2021-31207, the vulnerabilities enable adversaries to bypass ACL controls, elevate privileges on the Exchange…
Air India discloses data of 4.5m passengers were stolen in SITA cyber attack
Air India discloses data of 4.5m passengers were stolen in SITA cyber attack | IT Security News Android App Android App with push notifications Sponsors Endpoint Cybersecurity www.endpoint-cybersecurity.com – Consulting in building your security products– Employee awareness training– Security tests for applications and pentesting… and more. Daily Summary Categories CategoriesSelect Category(ISC)2 Blog (323)(ISC)2 Blog infosec (13)(ISC)² Blog (362)2020-12-08…
Traffic Exchange Networks Distributing Malware Disguised as Cracked Software
An ongoing campaign has been found to leverage a network of websites acting as a “dropper as a service” to deliver a bundle of malware payloads to victims looking for “cracked” versions of popular business and consumer applications. “These malware included an assortment of click fraud bots, other information stealers, and even ransomware,” researchers from…