All posts in April 2021

■■■■□□ Just how (un)safe is AirDrop? https://nakedsecurity.sophos.com/2021/04/26/naked-security-live-just-how-unsafe-is-airdrop/ https://t.me/cKure/7800

■■□□□ Analysis of the Iranian cyber attack landscape. https://securityboulevard.com/2021/04/analysis-of-the-iranian-cyber-attack-landscape/ https://t.me/cKure/7799

■□□□□ Experian API Leaks Most Americans’ Credit Scores. https://threatpost.com/experian-api-leaks-american-credit-scores/165731/ https://t.me/cKure/7798

■■■■□ PARALLELS DESKTOP RDPMC HYPERCALL INTERFACE AND VULNERABILITIES. https://www.zerodayinitiative.com/blog/2021/4/26/parallels-desktop-rdpmc-hypercall-interface-and-vulnerabilities https://t.me/cKure/7797

■□□□□ British Prime Minister’s Cell Phone Number Exposed. Latest Email https://www.infosecurity-magazine.com:443/news/british-prime-ministers-cell-phone/ https://t.me/cKure/7796

■■■■■ Serious MacOS Vulnerability Patched. https://www.wired.com/story/macos-malware-shlayer-gatekeeper-notarization/ https://t.me/cKure/7795

■■■□□ SniperPhish – The Web-Email Spear Phishing Toolkit. https://github.com/GemGeorge/SniperPhish https://t.me/cKure/7794

■□□□□ Australia proposes teaching cyber-security to five-year-old kids. https://t.me/cKure/7793

■■■■□ A financially motivated threat actor exploited a zero-day bug in Sonicwall SMA 100 Series VPN appliances to deploy new ransomware known as FiveHands on the networks of North American and European targets. https://www.bleepingcomputer.com/news/security/new-ransomware-group-uses-sonicwall-zero-day-to-breach-networks/ https://t.me/cKure/7792

■■■□□ Microsoft security researchers have discovered over two dozen critical remote code execution (RCE) vulnerabilities in Internet of Things (IoT) devices and Operational Technology (OT) industrial systems. https://www.bleepingcomputer.com/news/security/microsoft-finds-critical-code-execution-bugs-in-iot-ot-devices/ https://t.me/cKure/7791