Google’s Threat Analysis Group (TAG) has confirmed that Android users around the world are being targeted by the Alien spyware family, which is commercial spyware. Tracking shows that the malware family is an advanced...
The Internet Systems Consortium (ISC) has released an advisory outlining a vulnerability that could impact the widely deployed Berkeley Internet Name Domain (BIND) server software. The Berkeley Internet Name Domain (BIND) implements a domain...
Alibaba has issued a Fastjson risk notice remote code execution vulnerability which affects versions 1.2.80 and below. The default autoType closure restriction can be bypassed under certain conditions. An attacker could exploit this vulnerability...
The three-day Pwn2Own 2022 hackathon in Vancouver has come to an end this week. Pwn2Own is the world’s most famous hacker competition with the most lucrative prize money. It is hosted by the ZDI...
For the activities of white hat hackers engaged in vulnerability and information security technology research on the Internet, the U.S. Department of Justice said it would not prosecute under statutes such as the Computer...
Pwn2Own Vancouver 2022 hacking contest is currently underway, and products from companies including Microsoft, Apple, Mozilla, and Oracle have all been defeated by hackers. These kinds of offensive and defensive activities help improve the...
On May 19, 2022, Grafana officially issued a risk notice for Grafana Enterprise server-side request forgery vulnerability, the vulnerability number is CVE-2022-29170 with a CVSS3 score of 6.6. The severity is moderate. This flaw...
Theori researchers have created a working PoC exploit for the recently patched CVE-2022-26717 vulnerability affecting Apple Safari product. This vulnerability classified as critical has been found in Apple macOS up to 12.3. It affects...
Recently, security researchers have disclosed a vulnerability in the Huawei AppGallery, which mainly affects developers. Through this vulnerability, anyone can bypass Huawei’s account system and payment system and directly download applications or games that...
Nvidia has released the GeForce 473.47 WHQL driver, a security update in the form of a driver that fixes various CVE vulnerabilities and brings no additional features. It is understood that these vulnerabilities could...
