HackDig : Dig high-quality web security articles

Analysis of CVE-2023-38831 Zero-Day vulnerability in WinRAR

CVE: CVE-2023-38831 A remote code execution when the user attempts to view a benign file within a ZIP archive. The issue occurs because a ZIP archive may include a benign file (such as an ordinary .JPG file) and also a folder that has the same name as the benign file, and the contents of the folder (which may include executable content) are processed duri
Publish At:2023-09-23 16:46 | Read:60764 | Comments:0 | Tags:News Vulnerability

Government of Bermuda blames Russian threat actors for the cyber attack

The Government of Bermuda believes that the recent cyberattack against its IT infrastructure was launched by Russian threat actors. This week a cyber attack hit the Government of Bermuda causing the interruption of internet/email and phone services. The attack impacted all the government departments. “The Department of Information and Digital T
Publish At:2023-09-23 11:31 | Read:75981 | Comments:0 | Tags:Breaking News Hacking Government of Bermuda hacking news inf

City of Dallas has set a budget of $8.5 million to mitigate the May Royal ransomware attack

The City of Dallas revealed that the Royal ransomware gang that hit the city system in May used a stolen account. In May 2023, a ransomware attack hit the IT systems at the City of Dallas, Texas. To prevent the threat from spreading within the network, the City shut down the impacted IT systems. The City confirmed the security incident and is working
Publish At:2023-09-23 07:33 | Read:110461 | Comments:0 | Tags:Breaking News Cyber Crime Data Breach Hacking Malware City o

Advisory X41-2023-001: Two Vulnerabilities in OPNsense

Advisory X41-2023-001: Two Vulnerabilities in OPNsense===========================================================Highest Severity Rating: HighConfirmed Affected Versions: 23.1.11_1, 23.7.3, 23.7.4Confirmed Patched Versions: Commit 484753b2abe3fd0fcdb73d8bf00c3fc3709eb8b7Vendor: Deciso B.V. / OPNsenseVendor URL: https://opnsense.orgCredit: X41 D-Sec GmbH, Yas
Publish At:2023-09-22 23:40 | Read:131551 | Comments:0 | Tags:No Tag

APPLE-SA-2023-09-21-1 Safari 16.6.1

-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256APPLE-SA-2023-09-21-1 Safari 16.6.1Safari 16.6.1 addresses the following issues.Information about the security content is also available athttps://support.apple.com/kb/HT213930.Apple maintains a Security Updates page athttps://support.apple.com/HT201222 which lists recentsoftware updates with security advisories.
Publish At:2023-09-22 23:40 | Read:128482 | Comments:0 | Tags:No Tag

APPLE-SA-2023-09-21-2 iOS 17.0.1 and iPadOS 17.0.1

-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256APPLE-SA-2023-09-21-2 iOS 17.0.1 and iPadOS 17.0.1iOS 17.0.1 and iPadOS 17.0.1 addresses the following issues.Information about the security content is also available athttps://support.apple.com/kb/HT213926.Apple maintains a Security Updates page athttps://support.apple.com/HT201222 which lists recentsoftware upd
Publish At:2023-09-22 23:40 | Read:139721 | Comments:0 | Tags: IOS

APPLE-SA-2023-09-21-3 iOS 16.7 and iPadOS 16.7

-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256APPLE-SA-2023-09-21-3 iOS 16.7 and iPadOS 16.7iOS 16.7 and iPadOS 16.7 addresses the following issues.Information about the security content is also available athttps://support.apple.com/kb/HT213927.Apple maintains a Security Updates page athttps://support.apple.com/HT201222 which lists recentsoftware updates wit
Publish At:2023-09-22 23:40 | Read:131172 | Comments:0 | Tags: IOS

APPLE-SA-2023-09-21-4 watchOS 10.0.1

-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256APPLE-SA-2023-09-21-4 watchOS 10.0.1watchOS 10.0.1 addresses the following issues.Information about the security content is also available athttps://support.apple.com/kb/HT213928.Apple maintains a Security Updates page athttps://support.apple.com/HT201222 which lists recentsoftware updates with security advisorie
Publish At:2023-09-22 23:40 | Read:129378 | Comments:0 | Tags:No Tag

APPLE-SA-2023-09-21-5 watchOS 9.6.3

-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256APPLE-SA-2023-09-21-5 watchOS 9.6.3watchOS 9.6.3 addresses the following issues.Information about the security content is also available athttps://support.apple.com/kb/HT213929.Apple maintains a Security Updates page athttps://support.apple.com/HT201222 which lists recentsoftware updates with security advisories.
Publish At:2023-09-22 23:40 | Read:103430 | Comments:0 | Tags:No Tag

APPLE-SA-2023-09-21-7 macOS Monterey 12.7

-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256APPLE-SA-2023-09-21-7 macOS Monterey 12.7macOS Monterey 12.7 addresses the following issues.Information about the security content is also available athttps://support.apple.com/kb/HT213932.Apple maintains a Security Updates page athttps://support.apple.com/HT201222 which lists recentsoftware updates with security
Publish At:2023-09-22 23:40 | Read:81334 | Comments:0 | Tags:No Tag

APPLE-SA-2023-09-21-6 macOS Ventura 13.6

-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256APPLE-SA-2023-09-21-6 macOS Ventura 13.6macOS Ventura 13.6 addresses the following issues.Information about the security content is also available athttps://support.apple.com/kb/HT213931.Apple maintains a Security Updates page athttps://support.apple.com/HT201222 which lists recentsoftware updates with security a
Publish At:2023-09-22 23:40 | Read:70701 | Comments:0 | Tags:No Tag

T-Mobile spills billing information to other customers

Some T-Mobile customers logged into their accounts on Wednesday to find another customer’s billing and account information showing on their online dashboards. T-Mobile denied there was an attack, but confirmed there had been a data leak. It said a "temporary system glitch" had misplaced some subscriber account information, causing it to appear on other
Publish At:2023-09-22 22:07 | Read:27071 | Comments:0 | Tags:News Personal T-Mobile billing details data breach glitch

Emergency update! Apple patches three zero-days

Apple has released security updates for several products to address a handful of zero-day vulnerabilities that may already have been used by criminals. Updates are available for: iOS 16.7 and iPadOS 16.7 iOS 17.0.1 and iPadOS 17.0.1 watchOS 9.6.3 watchOS 10.0.1 macOS Ventura 13.6 macOS Monterey 12.7 Safari 16.6.1 The updates may already have reached you in
Publish At:2023-09-22 22:07 | Read:33692 | Comments:0 | Tags:Exploits and vulnerabilities News Apple emergency update CVE

Mac data-stealer malware roundup: AtomicStealer, MetaStealer, Realst all active in September

Intego is currently preparing an exclusive write-up on a new macOS data-stealer malware campaign. But while we prepare to publish that piece, we wanted to share highlights of some other recent developments regarding data-stealing malware families on the Mac.Here are some quick updates about three macOS stealer malware families: AtomicStealer, MetaStealer,
Publish At:2023-09-22 21:45 | Read:33720 | Comments:0 | Tags:Malware malware

LastPass: ‘Horse Gone Barn Bolted’ is Strong Password

The password manager service LastPass is now forcing some of its users to pick longer master passwords. LastPass says the changes are needed to ensure all customers are protected by their latest security improvements. But critics say the move is little more than a public relations stunt that will do nothing to help countless early adopters whose password vau
Publish At:2023-09-22 21:37 | Read:37328 | Comments:0 | Tags:A Little Sunshine Data Breaches The Coming Storm Web Fraud 2

Announce

Share high-quality web security related articles with you:)
Tell me why you support me <3

Tag Cloud

Friend Links