LINK ThroughTek has a P2P SDK containing the flaw allowing the camera to be eavesdropped – Examine the link and see what you need to do to remediate this.
Breach Announcements – June 15, 2021
AmeriGas (propane provider) – 8 second data breach Above is a list of Companies I have information for that have confirmed some sort of Breach (its obviously not complete since most never report anything, just what I hear about) Note: This is going to be a new type of post – will only happen once per […]
Apple fixes new Zero-Day exploit on iPhone – Patch now
LINK Enough said –
Breach Announcements – June 14, 2021
Oklahoma cancer center – data exposure Sol Oriens (nuclear weapons contractor) – ransomware Above is a list of Companies I have information for that have confirmed some sort of Breach (its obviously not complete since most never report anything, just what I hear about) Note: This is going to be a new type of post […]
Zoll Defibrillator affected by Easy RCE
LINK Significant RCE found in the medical device, Zoll Defibrillator. For medical institutions this should be investigated immediately.
Breach Announcements – June 11, 2021
Edward Don (Food service supplier) – ransomware McDonalds (in Taiwan and South Korea) – unspecified attack and data access Volkswagen – information disclosure Five Rivers Health Centers in Dayton, Ohio – information disclosure Carter’s (baby clothes) – information disclosure Above is a list of Companies I have information for that have confirmed some sort of […]
Old SonicWall vulnerability still works on SRA (eol) devices
LINK If I read this right, old patches/updates to SonicWall devices for CVE-2019-7481 dont entirely fix the vulnerability on SRA devices. These old SRA devices are no longer supported and will not be fixed, time to make a touch decision on removing it
7 year old flaw in polkit found
LINK Polkit (formerly PolicyKit) is a component for controlling system-wide privileges in Unix-like operating systems. This vulnerability has been found in Red Hat, Debian, Fedora, Ubuntu and more – suggest if you run a linux OS, investigate this
Breach Announcements – June 10, 2021
Electronic Arts – (750gb of source code stolen) Above is a list of Companies I have information for that have confirmed some sort of Breach (its obviously not complete since most never report anything, just what I hear about) Note: This is going to be a new type of post – will only happen once per […]
Breach Announcements – June 9, 2021
Spain’s Ministry of Labor and Social Economy – unknown attacker at this time Above is a list of Companies I have information for that have confirmed some sort of Breach (its obviously not complete since most never report anything, just what I hear about) Note: This is going to be a new type of post […]