HTTP request smuggling bug patched in mitmproxy Post Views: 177 Reading Time: 2 Minutes Mitmproxy, an open source, interactive HTTPS proxy service, has patched a dangerous bug that potentially allowed attackers to stage HTTP request smuggling attacks against backend...
Flash loan attack on One Ring protocol nets crypto-thief $1.4 million Post Views: 115 Reading Time: 2 Minutes Attackers have stolen $1.4 million from the One Ring protocol via a flash loan attack, blockchain platform One Ring Finance has revealed. Losses...
DeadBolt Ransomware Resurfaces to Hit QNAP Again Post Views: 246 Reading Time: 2 Minutes DeadBolt ransomware has resurfaced in a new wave of attacks on QNAP that begin in mid-March and signals a new targeting of the Taiwan-based network-attached storage (NAS) devices...
Lapsus$ Data Kidnappers Claim Snatches From Microsoft, Okta Post Views: 251 Reading Time: 2 Minutes Lapsus$ shared screenshots of internal Okta systems and 40Gb of purportedly stolen Microsoft data on Bing, Bing Maps and Cortana. Both Microsoft and...
Browser-in-the-Browser Attack Makes Phishing Nearly Invisible Post Views: 589 Reading Time: 2 Minutes The novel method takes advantage of third-party single sign-on (SSO) options embedded on websites that issue popup windows for authentication, such as “Sign in with...
Workaround offered for unpatched HTML-to-PDF rendering vulnerability Post Views: 206 Reading Time: 2 Minutes A popular software library for rendering PDFs from HTML documents suffers from an unpatched vulnerability that poses a remote code execution (RCE) risk,...
