Heap Overflow in FFmpeg EXIF
#HackerNews #HeapOverflow #FFmpeg #EXIF #SecurityBug #Vulnerability #Cybersecurity
#securitybug
FYI: Critical firmware-level vulnerabilities found in Dell laptops (August 2025).
Go update your firmware.
https://www.securityweek.com/flaws-expose-100-dell-laptop-models-to-implants-windows-login-bypass/
#Dell #Latitude #precision #firmward #security #vulnerability #SecurityBug
Well, well, well, another day, another data leak. India's income tax portal had a security bug that exposed sensitive taxpayer data. Thankfully, it's fixed now, but it's a stark reminder that 'secure' is a journey, not a destination. How many 'fixes' until we get it right?
https://techcrunch.com/2025/10/07/security-bug-in-indias-income-tax-portal-exposed-taxpayers-sensitive-data/
#Cybersecurity #DataPrivacy #TechNews #Infosec #SecurityBug
#WhatsApp fixed a #securitybug in its #iOS and #Mac apps used in a sophisticated #spyware campaign targeting specific users. The attack allowed attackers to steal data from compromised devices. While the exact attacker remains unknown, this incident follows previous #spywareattacks on #WhatsAppusers, including those involving #NSO Group’s #Pegasus spyware. https://techcrunch.com/2025/08/29/whatsapp-fixes-zero-click-bug-used-to-hack-apple-users-with-spyware/?eicker.news #tech #media #news
Two students find #security bug that could let millions do #laundry for free
Two #SantaCruz students uncover #securitybug that could let millions do their laundry for free
#CSCServiceWorks provides laundry machines to thousands of residential homes and universities, but the company ignored requests to fix a security bug.
Who could have seen a free laundry #exploit for internet-connected laundry machines coming?
https://techcrunch.com/2024/05/17/csc-serviceworks-free-laundry-million-machines/
#IoT #IoShit
Gaymer.Social has been updated to fix the security issue in v4.3.0-alpha.0 to v4.3.0-alpha.1
(Based on v4.2.5 security fix, thanks to Glitch-Soc for speedy update)
#mastodonupdate #mastodon #security #securitybug #securityfix
🪲 Heads up, Bug Hunters 🪲 We’re still searching for vulnerabilities in IDA and the Decompiler. Help us find one, and you might earn a nice cash reward. Read more 🌐 https://hex-rays.com/bugbounty/?utm_source=Social-Media-Post&utm_medium=Mastodon&utm_campaign=bug-bounty-december-2023
🔎🐞 We are on the lookout for vulnerabilities in IDA and the Decompiler, and if you find one, you might earn a reward. Learn more about our Bug Bounty Program and start hunting today 🌐 https://hex-rays.com/bugbounty/?utm_source=Social-Media-Post&utm_medium=Mastodon&utm_campaign=bug-bounty-june-2023
Ready to test your skills? Start hunting for security bugs, send us a report, and get a reward 🌐 https://hex-rays.com/bugbounty/?utm_source=Social-Media-Post&utm_medium=Mastodon&utm_campaign=bug-bounty-feb-2023
It has been a long time since a security bug was reported! Can you find one? We’ve got a reward waiting for you! More info 🌐 https://hex-rays.com/bugbounty/?utm_source=Social-Media-Post&utm_medium=Twitter&utm_campaign=bug-bounty-jan-2023
Presenting a nice #java #securitybug: https://neilmadden.blog/2022/04/19/psychic-signatures-in-java/
Start updating!
Easy WP SMTP Security Bug Can Reveal Admin Credentials - A poorly configured file opens users up to site takeover. https://threatpost.com/easy-wp-smtp-security-bug/162301/ #admincredentials #vulnerabilities #emailmanagement #vulnerability #sitetakeover #websecurity #securitybug #easywpsmtp #debugfile #wordpress #plugin
Spotify Changes Passwords After Another Data Breach - This is the third breach in the past few weeks for the world’s most popular streaming service. https://threatpost.com/spotify-changes-passwords-data-breach/162256/ #credentialstuffing #cloudsecurity #spotifybreach #dataexposure #websecurity #securitybug #passwords #userdata #spotify #breach
Android Messenger App Still Leaking Photos, Videos - The GO SMS Pro app has been downloaded 100 million times; now, underground forums are actively sha... https://threatpost.com/android-messenger-app-leaking-photos-videos/161741/ #sensitiveinformation #androidmessengerapp #undergroundforums #vulnerabilities #mobilesecurity #vulnerability #messengerapp #securitybug #newversion #trustwave #gosmspro #privacy #exploit
Facebook Messenger Bug Allows Spying on Android Users - The company patched a vulnerability that could connected video and audio calls without the knowled... https://threatpost.com/facebook-messenger-bug-spying-android/161435/ #googleprojectzero #vulnerabilities #mobilesecurity #mobiledevices #vulnerability #securitybug #mobileapps #videocalls #voicecalls #messenger #facebook #android #google #spying #apple #flaw
Facebook, News and XSS Underpin Complex Browser Locker Attack - A sophisticated “browser locker” campaign is spreading via Facebook, ultimately pushing a tech-sup... https://threatpost.com/facebook-xss-browser-locker/160465/ #crosssitescripting #vulnerabilities #techsupportscam #browserlocker #malwarebytes #openredirect #redirections #websecurity #securitybug #facebook #grupoppe #newssite #peru #xss
October Patch Tuesday: Microsoft Patches Critical, Wormable RCE Bug - There were 11 critical bugs and six that were unpatched but publicly known in this month's regular... https://threatpost.com/october-patch-tuesday-wormable-bug/160044/ #securityvulnerabilities #routeradvertisements #remotecodeexecution #publiclydisclosed #vulnerabilities #cve-2020-16898 #cloudsecurity #unpatchedbugs #patchtuesday #websecurity #october2020 #securitybug #microsoft #critical #wormable #patches #tcp/ip
Microsoft Out-of-Band Security Update Fixes Windows Remote Access Flaws - The unscheduled security update addresses two "important"-severity flaws in Windows 8.1 and Windo... https://threatpost.com/microsoft-out-of-band-security-update-windows-remote-access-flaws/158511/ #elevationofprivilege #windowsremoteaccess #windowsserver2008 #vulnerabilities #outofbandupdate #securityupdate #cve-2020-1530 #cve-2020-1537 #patchtuesday #securitybug #microsoft #windows10 #windows7 #windows #patch
Critical DNS Bug Opens Windows Servers to Infrastructure Takeover - Microsoft gives the ‘wormable’ flaw a security rating of 10 – the most severe warning possible. more: https://threatpost.com/critical-dns-bug-windows-servers-infrastructure-takeover/157427/ #microsoftsecurityresponsecenter #criticalvulnerability #domainadministrator #julypatchtuesday #vulnerabilities #microsoftpatch #cve-2020-1350 #dnsnameserver #windowsserver #websecurity #httprequest #securitybug #dns
Client Info
Server: https://mastodon.social
Version: 2025.07
Repository: https://github.com/cyevgeniy/lmst