CVE-2021-3784
Garuda Linux performs an insecure user creation and authentication that allows any user to impersonate the created account. By creating users from the ‘Garuda settings manager’, an insecure procedure is performed...
Read MoreAuthor: Auto Poster
A Deep Dive into 70 Layers of Obfuscated Info-Stealer Malware
Article URL: https://medium.com/checkmarx-security/a-deep-dive-into-70-layers-of-obfuscated-info-stealer-malware-bdeeac0f04db Comments URL: https://news.ycombinator.com/item?id=37804333 Points: 3 # Comments:...
Read MoreAndroid Devices With Backdoored Firmware Found in US Schools
A global cybercriminal operation called BadBox has infected the firmware of more than 70,000 Android smartphones, CTV boxes, and tablets with the Triada malware. The post Android Devices With Backdoored Firmware Found in US...
Read More
This Week in Security: Looney Tunables, Not a 0-day*, and Curl Warning
This week starts out with a nifty vulnerability in the glibc dynamic loader. This is an important...
Read MoreGoldDigger Android trojan targets Vietnamese banking apps, code contains hints of wider targets
More malware scum using acessibility features to steal personal info Singapore-based infosec outfit Group-IB on Thursday released details of a new Android trojan that exploits the operating system’s accessibility features...
Read More