Pakistan Computer Emergency Response Team

Members of Hezbollah, a militant organization operating in Lebanon, used old-school pagers to avoid being tracked down and targeted by Israeli intelligence. Who else uses pagers and why?

Pagers used in Hezbollah attacks: who still uses them and why? | Cybernews Members of Hezbollah, a organization operating in Lebanon, used pagers to avoid being tracked down by Israeli intelligence. Who else uses pagers and why?

https://threatpost.com/adobe-zero-day-bug-acrobat-reader/166044/

Hackers Leverage Adobe Zero-Day Bug Impacting Acrobat Reader A patch for Adobe Acrobat, the world’s leading PDF reader, fixes a vulnerability under active attack affecting both Windows and macOS systems that could lead to arbitrary code ex*****on.

https://duo.com/decipher/lemon-duck-botnet-shifts-tactics-in-microsoft-exchange-server-attacks

Lemon Duck Botnet Shifts Tactics in Microsoft Exchange Server Attacks The Lemon Duck cryptocurrency-mining botnet was seen behind a spike of April attacks exploiting the Microsoft Exchange server ProxyLogon flaw.

https://www.darkreading.com/vulnerabilities---threats/microsoft-patch-tuesday-4-critical-cves-3-publicly-known-1-wormable/d/d-id/1340981

Microsoft Patch Tuesday: 4 Critical CVEs, 3 Publicly Known, 1 Wormable Microsoft releases security patches for 55 vulnerabilities in its monthly roundup, which includes a critical, wormable flaw in the HTTP protocol stack.

Saturday with Dork
is related to -2018-6389
WordPress 4.9.x unauthenticated attackers can cause a resource consumption by using the large list of registered .js files.

Rapid Safeguard on Twitter “Saturday with Dork is related to -2018-6389 WordPress 4.9.x unauthenticated attackers can cause a resource consumption by using the large list of registered .js files. ”

Remote Code Ex*****on Against SharePoint Server Abusing DataSet.
CVE-2020-1147 full analysis and exploit.

SharePoint and Pwn :: Remote Code Ex*****on Against SharePoint Server Abusing DataSet When CVE-2020-1147 was released last week I was curious as to how this vulnerability manifested and how an attacker might achieve remote code ex*****on with ...

https://www.fortinet.com/blog/business-and-technology/atp-29-targets-ssl-vpn-flaws

ATP 29 Targeting SSL VPN Flaws APT29 has targeted various vulnerabilities in SSL-VPN solutions, including a vulnerability resolved by Fortinet in May 2019. For all customers Fortinet recommends the following actions are taken im…

https://www.fortinet.com/blog/industry-trends/addressing-security-requirements-of-dynamic-cloud-environments

Addressing the Security Requirements of Dynamic Cloud Environments | Fortinet Explore the key elements to consider when selecting a cloud security solution that can protect your dynamic cloud infrastructure, from public, to private, to hybrid cloud environments.…

https://www.techradar.com/news/coronavirus-malware-detected-online

Coronavirus malware infects thousands of devices worldwide Criminals jump on health worries to trick victims into downloading malware

https://www.androidcentral.com/are-android-phones-safe-viruses-banking

Are Android phones 'safe' from viruses & for banking? No online device is really safe, but your Android phone gets pretty darn close.

https://www.technologyreview.com/f/615096/this-is-how-a-popular-free-antivirus-program-sells-your-data/

This is how a popular free antivirus program sells your data One of the most popular antivirus companies in the world sells people’s sensitive data in a way that can put their privacy at risk, according to new reports.The culprit: Avast is a multibillion-dollar computer security company based in the Czech Republic.

https://pakwired.com/protecting-facebook-photos-from-facial-recognition-software/

Protecting Facebook Photos from Facial Recognition Software Clearview AI was found scraping more than 3 billion images from millions of websites including Facebook.