Executive Summary Informations Name CVE-2021-20454 First vendor Publication 2021-04-21 Vendor Cve Last vendor Modification 2021-04-21 Security-Database Scoring CVSS v3 Cvss vector : N/A Overall CVSS Score NA Base Score NA Environmental Score NA impact SubScore NA Temporal Score NA Exploitabality Sub Score NA Calculate full CVSS 3.0 Vectors scores Security-Database Scoring CVSS v2 Cvss…
NVIDIA Windows GPU Display Driver for Windows, all versions, contains a vulnerability in the kernel driver (nvlddmkm.sys) where a NULL pointer dereference may lead to system crash.
Overview. Pulse Connect Secure (PCS) gateway contains a vulnerability that can allow an unauthenticated remote attacker to execute arbitrary code. Description. CVE-2021-22893. An unspecified vulnerability exposed by the Windows File Share Browser and Pulse Secure Collaboration features of Pulse….
Cyberwarfare / Nation-State Attacks , Fraud Management & Cybercrime , Fraud Risk Management Group Used Fresh Tactic to Target South Korea Doug Olenick (DougOlenick) • April 21, 2021 The form Lazarus uses to lure in its victims (Source: Malwarebytes) Malwarebytes researchers report the North Korean advanced persistent threat group Lazarus rolled out a…
A federal investigation into policing practices in the city of Minneapolis has been launched, a day after one of its former officers, Derek Chauvin, was convicted of the murder of George Floyd. Speaking before the investigation was announced Dr Rashawn Ray, a professor of sociology told BBC World News that he was not sure whether…
Geico has filed a data breach notice with the California attorney general’s office, admitting that fraudsters had stolen customers’ driver’s license numbers from its website. In the notice, discovered by TechCrunch, the American auto insurance titan said that from January 21st to March 1st this year, bad actors infiltrated its website using information on its…
Long-time democracy campaigner and Russian chess grandmaster Garry Kasparov has said he is very concerned for the health of Alexei Navalny who is three weeks into a prison hunger strike. He told BBC World News: “We understand that the West cannot save Navalny, but it can seal his fate by simply ignoring him.” It was…
SINGAPORE – Scammers are targeting Singaporeans by promoting an allegedly upgraded version of Facebook Messenger that redirects victims to scam sites that steal their data. And it appears they were promoting the scam with ads on Facebook itself. International cyber-security company Group-IB has flagged the scam campaign, which involves about 1,000 fake Facebook profiles targeting…
Cloud Access Security Brokers (CASB) , Cloud Security , Network Detection & Response Presented by iboss 60 minutes Secured Access Service Edge, or SASE, is no longer a buzzword tossed around by cybersecurity pundits but is a robust, cloud-based service model to enable secure anywhere, anytime access from any device. …
Lazarus APT, a North Korean threat actor known for its sophisticated attacks, has been observed using a clever method to bypass security mechanisms by hiding its malicious code within a bitmap (.BMP) image file used to drop a remote access trojan (RAT) capable of stealing sensitive information. According to researchers at Malwarebytes Labs,…
