메뉴 건너뛰기

메리메리쩜넷넷

Since 2002

Python || Malware || Security News Grabber

Do NOT Hack this machine!!

컨텐츠 보기기

   보안뉴스 | 최신기사
   보안뉴스 | 긴급경보
   AhnLab 최신 보안뉴스
   AhnLab 악성코드 정보
   NIST NDV
   Krebs On Security
  • CVE-2018-19014 (delta_xl_firmware, infinity_delta_firmware, infinity_explorer_c700_firmware, kappa_firmware)

    2019년 1월 29일

    Drager Infinity Delta, Infinity Delta, all versions, Delta XL, all versions, Kappa, all version, and Inf

  • CVE-2018-19010 (delta_xl_firmware, infinity_delta_firmware, infinity_explorer_c700_firmware, kappa_firmware)

    2019년 1월 29일

    Drager Infinity Delta, Infinity Delta, all versions, Delta XL, all versions, Kappa, all version, and Inf

  • CVE-2019-3462 (active_iq, apt, debian_linux, element_software, ubuntu_linux)

    2019년 1월 29일

    Incorrect sanitation of the 302 redirect field in HTTP transport method of apt versions 1.4.8 and earlie

  • CVE-2018-19012 (delta_xl_firmware, infinity_delta_firmware, infinity_explorer_c700_firmware, kappa_firmware)

    2019년 1월 29일

    Drager Infinity Delta, Infinity Delta, all versions, Delta XL, all versions, Kappa, all version, and Inf

  • CVE-2018-20745 (yii)

    2019년 1월 28일

    Yii 2.x through 2.0.15.1 actively converts a wildcard CORS policy into reflecting an arbitrary Origin he

  • CVE-2018-20744 (go_cors)

    2019년 1월 28일

    The Olivier Poitrey Go CORS handler through 1.3.0 actively converts a wildcard CORS policy into reflecti

  • CVE-2019-6703 (total_donations)

    2019년 1월 27일

    Incorrect access control in migla_ajax_functions-.php in the Calmar Webmedia Total Donations plugin throu

  • CVE-2018-16098 (synaptics_thinkpad_ultranav_driver, thiankpad_l430_firmware, thiankpad_l530_firmware, thiankpad_p1_firmware, thiankpad_p50s_firmware, thiankpad_p51_firmware, thiankpad_p51s_firmware, thiankpad_p52s_firmware, thiankpad_p70_firmware, thiankpad_s1_yoga_firmware, thiankpad_s430_firmware, thiankpad_t420_firmware, thiankpad_t420i_firmware, thiankpad_x1_extreme_firmware, thinkpad_helix_firmware, thinkpad_s230u_firmware, thinkpad_t420s_firmware, thinkpad_t420si_firmware, thinkpad_t430i_firmware, thinkpad_t430s_firmware, thinkpad_t431s_firmware, thinkpad_t440_firmware, thinkpad_t440p_firmware, thinkpad_t440s_firmware, thinkpad_t460s_firmware, thinkpad_t470_firmware, thinkpad_t470s_firmware, thinkpad_t520_firmware, thinkpad_t520i_firmware, thinkpad_t530_firmware, thinkpad_t530i_firmware, thinkpad_t540_firmware, thinkpad_t540p_firmware, thinkpad_t550_firmware, thinkpad_t560_firmware, thinkpad_t570_firmware, thinkpad_t580_firmware, thinkpad_twist_firmware, thinkpad_w530_firmware, thinkpad_w540_firmware, thinkpad_w541_firmware, thinkpad_w550s_firmware, thinkpad_x1_carbon_firmware, thinkpad_x1_firmware, thinkpad_x1_hybrid_firmware, thinkpad_x1_yoga_firmware, thinkpad_x220_firmware, thinkpad_x220_tablet_firmware, thinkpad_x220i_firmware, thinkpad_x230_firmware, thinkpad_x230_tablet_firmware, thinkpad_x230i_firmware, thinkpad_x230i_tablet_firmware, thinkpad_x230s_firmware, thinkpad_x240_firmware, thinkpad_x240s_firmware, thinkpad_x250_firmware, thinkpad_x280_firmware, thinkpad_yoga_11e_firmware)

    2019년 1월 25일

    In some Lenovo ThinkPads, an unquoted search path vulnerability was found in various versions of the Syn

  • CVE-2019-1656 (enterprise_nfv_infrastructure_software)

    2019년 1월 25일

    A vulnerability in the CLI of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authen

  • CVE-2019-1655 (webex_meetings_server)

    2019년 1월 25일

    A vulnerability in the web-based management interface of Cisco Webex Meetings Server could allow an unau

  • CVE-2018-20245 (airflow)

    2019년 1월 24일

    The LDAP auth backend (airflow.contrib.aut-h.backends.ldap_auth-) prior to Apache Airflow 1.10.1 was misco

  • CVE-2019-6260 (ast2400_firmware, ast2500_firmware)

    2019년 1월 23일

    The ASPEED ast2400 and ast2500 Baseband Management Controller (BMC) hardware and firmware implement Adva

  • CVE-2019-6338 (debian_linux, drupal)

    2019년 1월 22일

    In Drupal Core versions 7.x prior to 7.62, 8.6.x prior to 8.6.6 and 8.5.x prior to 8.5.9; Drupal core us

  • CVE-2019-1003004 (jenkins)

    2019년 1월 22일

    An improper authorization vulnerability exists in Jenkins 2.158 and earlier, LTS 2.150.1 and earlier in

  • CVE-2018-5738 (bind, ubuntu_linux)

    2019년 1월 17일

    Change #4777 (introduced in October 2017) introduced an unforeseen issue in releases which were issued a

  • CVE-2018-15460 (email_security_appliances_firmware)

    2019년 1월 11일

    A vulnerability in the email message filtering feature of Cisco AsyncOS Software for Cisco Email Securit

  • CVE-2019-0542 (xterm.js)

    2019년 1월 10일

    A remote code execution vulnerability exists in Xterm.js when the component mishandles special character

  • CVE-2018-4012 (brightcloud)

    2019년 1월 4일

    An exploitable buffer overflow vulnerability exists in the HTTP header-parsing function of the Webroot B

  • CVE-2018-18602 (180_indoor_firmware, 180_outdoor_firmware, 360_indoor_firmware, 360_outdoor_firmware, indoor_hd_camera_firmware, outdoor_hd_camera_firmware)

    2019년 1월 1일

    The Cloud API on Guardzilla smart cameras allows user enumeration, with resultant arbitrary camera acces

  • CVE-2018-18601 (gz621w_firmware)

    2019년 1월 1일

    The TK_set_deviceModel_r-eq_handle function in the cloud communication component in Guardzilla GZ621W dev

  • CVE-2018-14992 (zenfone_3_max_firmware)

    2018년 12월 29일

    The ASUS ZenFone 3 Max Android device with a build fingerprint of asus/US_Phone/ASUS_X-008_1:7.0/NRD90M/U

  • CVE-2018-20371 (photorange_photo_vault)

    2018년 12월 23일

    PhotoRange Photo Vault 1.2 appends the password to the URI for authorization, which makes it easier for

  • CVE-2018-1000814 (aiohttp)

    2018년 12월 21일

    aio-libs aiohttp-session version 2.6.0 and earlier contains a Other/Unknown vulnerability in EncryptedCo

  • CVE-2018-1000812 (integria_ims)

    2018년 12월 21일

    Ártica Soluciones Tecnológicas Integria IMS version 5.0 MR56 Package 58, likely earlie

  • CVE-2018-19007 (g-cam/efd-2251_firmware, g-cam/ewpc-2275_firmware)

    2018년 12월 15일

    In Geutebrueck GmbH E2 Camera Series versions prior to 1.12.0.25 the DDNS configuration (in the Network

  • CVE-2018-7988 (mate_9_pro_firmware, nova_2_plus_firmware)

    2018년 11월 28일

    There is a Factory Reset Protection (FRP) bypass vulnerability on several smartphones. The system does n

  • CVE-2018-2488 (fiori_client)

    2018년 11월 14일

    It is possible for a malware application installed on an Android device to send local push notifications

  • CVE-2018-6909 (rainmachine_web_application)

    2018년 11월 2일

    A missing X-Frame-Options header in the Green Electronics RainMachine Mini-8 (2nd Generation) and Touch

  • CVE-2018-15395 (wireless_lan_controller_software)

    2018년 10월 18일

    A vulnerability in the authentication and authorization checking mechanisms of Cisco Wireless LAN Contro

  • CVE-2018-0395 (fxos, nx-os)

    2018년 10월 18일

    A vulnerability in the Link Layer Discovery Protocol (LLDP) implementation for Cisco FXOS Software and C

  • New Breed of Fuel Pump Skimmer? Not Really

    Br
    2019년 2월 21일

    Fraud investigators say they've uncovered a sophisticated new breed of credit card skimmers being instal

  • A Deep Dive on the Recent Widespread DNS Hijacking Attacks

    Br
    2019년 2월 18일

    The U.S. government — along with a number of leading security companies — recently warned about a series

  • Bomb Threat Hoaxer Exposed by Hacked Gaming Site

    Br
    2019년 2월 14일

    Federal authorities this week arrested a North Carolina man who allegedly ran with a group of online hoo

  • Patch Tuesday, February 2019 Edition

    Br
    2019년 2월 13일

    Microsoft on Tuesday issued a bevy of patches to correct at least 70 distinct security vulnerabilities i

  • Email Provider VFEmail Suffers ‘Catastrophic’ Hack

    Br
    2019년 2월 12일

    Email provider VFEmail has suffered what the company is calling "catastrophic destruction" at the hands

  • Phishers Target Anti-Money Laundering Officers at U.S. Credit Unions

    Br
    2019년 2월 8일

    A highly targeted, malware-laced phishing campaign landed in the inboxes of multiple credit unions last

  • More Alleged SIM Swappers Face Justice

    Br
    2019년 2월 6일

    Prosecutors in Northern California have charged two men with using unauthorized SIM swaps to steal and e

  • Crooks Continue to Exploit GoDaddy Hole

    Br
    2019년 2월 5일

    Godaddy.com, the world's largest domain name registrar, recently addressed an authentication weakness th

  • 250 Webstresser Users to Face Legal Action

    Br
    2019년 2월 1일

    More than 250 customers of a popular and powerful online attack-for-hire service that was dismantled by

  • Three Charged for Working With Serial Swatter

    Br
    2019년 1월 26일

    The Justice Department has filed criminal charges against three U.S. men accused of swatting, or making

   AlienVault
   TheHackerNews
  • Fileless Malware Detection: A Crash Course

    2019년 2월 21일

    Given you’re here, you’re likely new to this topic, so please be aware in that fileless ma

  • Securing People

    2019년 2월 20일

    Cybersecurity has three pillars of people, process, and technology. Enterprises have historically had

  • Managed Security Trends and Usage

    2019년 2월 11일

    New infographic! The full report is here.       

  • Things I Hearted This Week, 8th February 2019

    2019년 2월 8일

    What a wild week it’s been. There have been assaults on researchers (ok, just one that I know of

  • Security Have and Have-Nots

    2019년 2월 6일

    Security Have and Have-Nots Way back in around the 2010 / 2011 timeframe Wendy Nather coined the phra

  • 6 Security Tips When Trading Online

    2019년 2월 5일

    Image Source: Pixabay Online trading is on the rise as many consumers take control of their own i

  • SIEM: What Is It, and Why Does Your Business Need It?

    2019년 2월 4일

    Security information and event management (SIEM) technology is transforming the way IT teams identi

  • Things I Hearted This Week, 1st Feb 2019

    2019년 2월 1일

    Hello February! I was doing some research last night and was surprised to discover that the Target bre

  • APT10 Group Targets Multiple Sectors, But Seems to Really Love MSSPs

    2019년 2월 1일

    Threat Actors That Don’t Discriminate When it comes to threat actors and the malware variant

  • Top 7 Tips for Improving Cyber Risk Management in 2019

    2019년 1월 30일

    With the constant barrage of headlines regarding breaches in the last few years, it seems that soci

위로