Google patches actively exploited Android vulnerability (CVE-2024-43093)

Google has delivered fixes for two vulnerabilities endangering Android users that “may be under limited, targeted exploitation”: CVE-2024-43047, a flaw affecting Qualcomm chipsets, and CVE-2024-43093, a vulnerability in the Google Play fram… Continue reading Google patches actively exploited Android vulnerability (CVE-2024-43093)

Report: Voice of Practitioners 2024 – The True State of Secrets Security

In this study, GitGuardian and CyberArk reveal the stark reality of secrets management across 1,000 organizations. With 79% experiencing secrets leaks and an average remediation time of 27 days, the findings expose critical gaps between security confid… Continue reading Report: Voice of Practitioners 2024 – The True State of Secrets Security

Synology Urges Patch for Critical Zero-Click RCE Flaw Affecting Millions of NAS Devices

Taiwanese network-attached storage (NAS) appliance maker Synology has addressed a critical security flaw impacting DiskStation and BeePhotos that could lead to remote code execution.
Tracked as CVE-2024-10443 and dubbed RISK:STATION by Midnight Blue, t… Continue reading Synology Urges Patch for Critical Zero-Click RCE Flaw Affecting Millions of NAS Devices

Posted in Uncategorized

BigID DSPM Starter App enhances data security posture for Snowflake customers

BigID launched Data Security Posture Management (DSPM) Starter App, built natively in Snowflake and using the Snowflake Native App Framework. BigID’s DSPM Starter App will be available via Snowflake Marketplace and provide rapid data discovery an… Continue reading BigID DSPM Starter App enhances data security posture for Snowflake customers

Python RAT with a Nice Screensharing Feature, (Tue, Nov 5th)

While hunting, I found another interesting Python RAT in the wild. This is not brand new because the script was released two years ago&#;x26;#;x5b;1&#;x26;#;x5d;. The script I found is based on the same tool and still has a&#;x26;#;xc2;&#;x26;#;xa0;low VT score: 3/64 (SHA256:1281b7184278f2a4814b245b48256da32a6348b317b83c440008849a16682ccb)&#;x26;#;x5b;2&#;x26;#;x5d;. The RAT has a lot of features to control the victim&#;x26;#;39;s computer:

Continue reading Python RAT with a Nice Screensharing Feature, (Tue, Nov 5th)

Posted in Uncategorized