CISA Launches New Threat Detection Dashboard

Subscribe to Newsletters

Cybersecurity Risk Management FREE Event 4/22
Using MS Teams as Your Phone System – FREE Event 4/14
Earn (ISC)2 CPEs at Interop Digital, April 29

More Informa Tech Live Events

White Papers

What is Pure Signal RECON?

Are We Cyber-Resilient? The Key Question Every Organization Must Answer

SANS 2021 Cyber Threat Intelligence Survey

The Essential Guide to Securing Remote Access

Cybersecurity Report Card

More White Papers

Video

All Videos

Cartoon

Post a Comment

Cartoon Archive

Current Issue

2021 Top Enterprise IT TrendsWe’ve identified the key trends that are poised to impact the IT landscape in 2021. Find out why they’re important and how they will affect you today!

Back Issues | Must Reads

Flash Poll

All Polls

How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.

Download Now!

Assessing Cybersecurity Risk in Today’s Enterprises

0 comments

The Malware Threat Landscape

0 comments

How Data Breaches Affect the Enterprise (2020)

0 comments

More Reports

Twitter Feed

Bug Report

Enterprise Vulnerabilities
From DHS/US-CERT’s National Vulnerability Database
CVE-2021-25373
PUBLISHED: 2021-04-09

Using unsafe PendingIntent in Customization Service prior to version 2.2.02.1 in Android O(8.x), 2.4.03.0 in Android P(9.0), 2.7.02.1 in Android Q(10.0) and 2.9.01.1 in Android R(11.0) allows local attackers to perform unauthorized action without permission via hijacking the PendingIntent.

CVE-2021-25374
PUBLISHED: 2021-04-09

An improper authorization vulnerability in Samsung Members "samsungrewards" scheme for deeplink in versions 2.4.83.9 in Android O(8.1) and below, and 3.9.00.9 in Android P(9.0) and above allows remote attackers to access a user data related with Samsung Account.

CVE-2021-25375
PUBLISHED: 2021-04-09

Using predictable index for attachments in Samsung Email prior to version 6.1.41.0 allows remote attackers to get attachments of another emails when users open the malicious attachment.

CVE-2021-25376
PUBLISHED: 2021-04-09

An improper synchronization logic in Samsung Email prior to version 6.1.41.0 can leak messages in certain mailbox in plain text when STARTTLS negotiation is failed.

CVE-2021-25377
PUBLISHED: 2021-04-09

Intent redirection in Samsung Experience Service versions 10.8.0.4 in Android P(9.0) below, and 12.2.0.5 in Android Q(10.0) above allows attacker to execute privileged action.

The post CISA Launches New Threat Detection Dashboard appeared first on Malware Devil.

https://malwaredevil.com/2021/04/09/cisa-launches-new-threat-detection-dashboard/?utm_source=rss&utm_medium=rss&utm_campaign=cisa-launches-new-threat-detection-dashboard