CVE-2021-34392
Trusty TLK contains a vulnerability in the NVIDIA TLK kernel where an integer overflow in the tz_map_shared_mem function can bypass boundary checks, which might lead to denial of service.
Similar Posts
North Korean .Gov Hackers Back With Fake Pen-Test Company
A North Korean government-backed APT group has been caught using a fake pen-testing company and a range of sock puppet social media accounts in an escalation of a hacking campaign targeting security research professionals. The notorious hacking group, first exposed by Google earlier this year, returned on March 17th with a website for a fake…
Cyber Extortion Thriving Thanks to Accellion FTA Hits
Cybercrime , Fraud Management & Cybercrime , Fraud Risk Management Coveware: Average Ransom Payment Hits $220,298, Presaging More Supply Chain Attacks Mathew J. Schwartz (euroinfosec) • April 27, 2021 Average and median ransom payments per quarter, based on thousands of cases investigated (Source: Coveware) The zero-day attacks against Accellion File Transfer Appliance users…
Hackers Target Critical Infrastructure in Southeast Asia
Critical Infrastructure Security , Cybercrime , Cybercrime as-a-service Symantec: China-Linked Actors Investigate SCADA Systems Akshaya Asokan (asokan_akshaya) • August 7, 2021 An unidentified hacking group with suspected China ties is targeting critical infrastructure in South East Asia as part of a cyberespionage campaign to exfiltrate information about the victim’s SCADA systems. says a…
Hackers Replacing Dark Web with Telegram – UnFox News
Maybe there is no such thing as a safe messaging app. Privacy concerns led WhatsApp users to migrate away from the app and find a new home on Signal, Telegram, and other apps. However, a cyber intelligence group has released details that show hackers are migrating to Telegram as well from the dark web. Telegram…
Siloscape malware targets Windows containers, breaks through to the underlying Kubernetes cluster • The Register
A reverse engineer has discovered what is claimed to be “the first known malware targeting Windows containers to compromise cloud environments,” a sentence to put any system administrator on edge. Building on work published in December of last year on reverse-engineering Windows containers, security researcher Daniel Prizmant’s latest discovery – made during his day job…
Russia-Linked ‘Ghostwriter’ Disinformation Campaign Tied to Cyberspy Group
A widespread disinformation campaign dubbed Ghostwriter is believed to be the work of a state-sponsored cyber-espionage group, cybersecurity firm FireEye reported on Wednesday. Initially detailed in July 2020 but ongoing for years, the campaign aligns with Russian interests and was initially observed targeting audiences in Lithuania, Latvia, and Poland with NATO-related themes. Since FireEye’s initial…