Headline

IP Surveillance Bugs in Axis Gear Allow RCE, Data Theft

Three security vulnerabilities in Axis video products could open up the door to a bevy of different cyberattacks on businesses.

3 years ago

Threatpost

Open in Source

#IoT #Vulnerabilities #Web Security

Researchers discover a new technique attackers could use to encode vulnerabilities into software while evading detection.

3 years ago

DARKReading

Open in Source

#vulnerability

CVE-2021-41868: Comparing v2.3.3...v2.4 · onionshare/onionshare

OnionShare 2.3 before 2.4 allows remote unauthenticated attackers to upload files on a non-public node when using the --receive functionality.

3 years ago

CVE

Open in Source

CVE-2021-41867: Comparing v2.3.3...v2.4 · onionshare/onionshare

An information disclosure vulnerability in OnionShare 2.3 before 2.4 allows remote unauthenticated attackers to retrieve the full list of participants of a non-public OnionShare node via the --chat feature.

3 years ago

CVE

Open in Source

Tips & Tricks for Unmasking Ghoulish API Behavior

Jason Kent, hacker-in-residence at Cequence Security, discusses how to track user-agent connections to mobile and desktop APIs, to spot malicious activity.

3 years ago

Threatpost

Open in Source

#Cloud Security #InfoSec Insider #Vulnerabilities #Web Security

Latest web hacking tools – Q4 2021

We take a look at the latest additions to security researchers’ armoury

3 years ago

PortSwigger

Open in Source

Google Spots New Technique to Sneak Malware Past Detection Tools

The operator behind OpenSUpdater is using a new way to sneak adware and other malware past security tools.

3 years ago