CVE-2021-34392
Trusty TLK contains a vulnerability in the NVIDIA TLK kernel where an integer overflow in the tz_map_shared_mem function can bypass boundary checks, which might lead to denial of service.
Similar Posts
CISA releases a new guide on mapping adversary behavior to the MITRE ATT&CK
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has provided a new guidance called “Best Practices for MITRE ATT&CK Mapping”, which is designed to help network defenders to better understand adversary behavior. The main objective is to encourage a common language in threat actor analysis, showing threat intelligence analysts how to map attackers…
White House Presses Russia on JBS Ransomware
Endpoint Security , Fraud Management & Cybercrime , Ransomware Experts Say Ransomware Hasn’t Slowed Down Since Colonial Pipeline Jeremy Kirk (jeremy_kirk) • June 2, 2021 JBS’s facility in Greeley, Colorado. (Photo: Mizzou CAFNR via Flickr/CC) The White House says on Tuesday it has contacted Russia regarding the ransomware attack against JBS SA, the…
9 Android Apps On Google Play Caught Distributing AlienBot Banker and MRAT Malware
9 Android Apps On Google Play Caught Distributing AlienBot Banker and MRAT Malware | IT Security News 9. March 2021 Cybersecurity researchers have discovered a new malware dropper contained in as many as 9 Android apps distributed via Google Play Store that deploys a second stage malware capable of gaining intrusive access to the financial…
WhatsApp security vulnerability could have exploited two billions users
A security vulnerability in popular messaging app WhatsApp’s image filter function discovered by Check Point Research could have exploited more than two billion users worldwide if left unpatched. It is estimated more than 55 billion messages are being sent daily over WhatsApp, with 4.5 billion photos and one billion videos shared per day. Check Point Research recommends…
Hackers might exploit bug in Amazon Kindle, company issues fix | #cybersecurity | #cyberattack | #cybersecurity | #infosecurity | #hacker | National Cyber Security
A team of cyber-security researchers has discovered security flaws in popular e-reading device Amazon Kindle that might have led hackers to take full control of a Kindle device, opening a path to stealing information stored. By tricking victims into opening a malicious e-book, a threat actor could have leveraged the flaws to target specific demographics…
Attacks Surge After Code Published
Application Security , Cybercrime , Cybercrime as-a-service Strikes Increase After ProxyLogon Proof-of-Concept Attack Code Released Akshaya Asokan (asokan_akshaya) • March 20, 2021 There has been a spike in web shells being detected, as ransomware gangs and other attackers increasingly target vulnerable Microsoft Exchange Servers following publication of proof-of-concept attack code for ProxyLogon, which…