Monthly red digest with red vulnerabilities and incidents

Microsoft is the headliner of the outgoing month. Too many too critical vulnerabilities in the last month. Also, other vendors with zero-day and 1-click vulnerabilities are worth noting. In addition to vulnerabilities, there were several high-profile hacks and news about ransomware + some APT for our monthly digest. Vulnerabilities: Microsoft, IOT, Nvidia, Atlassian, Western Digital … Continue reading Monthly red digest with red vulnerabilities and incidents

Hardcoded account in Zyxel, whatsapp user’s data → facebook and news about Julian Assange

At the beginning of the year there is not much news, but we were able to collect a digest with the loudest and coolest news. Vulnerabilities: Zyxel fail, cool bug in Google docs and new side-channel attack, + it's recommended to patch Nvidia drivers;Tools: Offensive staff only;News: Julian Assange, whatsapp transfers your data directly to … Continue reading Hardcoded account in Zyxel, whatsapp user’s data → facebook and news about Julian Assange

Bug Parade with all headliners, zero-days and malware news

Recently, there has been a lot of news about ransomware and their types. Nvidia and google chrome began to release updates more often. Vulnerabilities: Nvidia, Google Chrome and cool report from NSA;Tools: New PlumHound module (BlueHound), tool for SOC analysts and etc.;News: Malware, attacks and games;Research: Have you ever heard about Flare-On? It was attached … Continue reading Bug Parade with all headliners, zero-days and malware news