Cyber Scene #52 - Cyber: Capitol Offense and Counter  

​Pub Crawl summarizes, by hard problems, sets of publications that have been peer reviewed and presented at SoS conferences or referenced in current work. The topics are chosen for their usefulness for current researchers.

Researchers at Checkpoint Research discovered a vulnerability in the popular TikTok short-form video-sharing platform, which could have allowed adversaries to easily compile users’ phone numbers, unique user IDs, and other data that could be used for…

As the use of web-based applications continues to grow due to the increase in remote work during the COVID-19 pandemic, it is now more important than ever for the government to adopt better strategies for protecting classified data and reducing threats.…

WebsitePlanet researchers and a security researcher named Jeremiah Fowler discovered an unsecured Elasticsearch server containing more than 323,000 Cook County, Illinois, court-related related records. Cook County is the second-most-populous county…

A researcher at Realmode Labs found three vulnerabilities in the Amazon Kindle e-reader. The first vulnerability found could allow an adversary to send an e-book to the victim's Kindle device. The second vulnerability found would allow an adversary to…

The cybersecurity company SonicWall has announced that highly sophisticated threat actors targeted its secure remote access products. SonicWall's product line includes security solutions for networks, remote access, email, cloud technology, and endpoints…

A security researcher named John Page has launched a new website called MalVun that lists vulnerabilities in malware code. The site aims to help other security professionals break, disable, and uninstall malware on infected hosts. The site is described…

An infamous dark web marketplace called Joker's Stash, where cybercriminals trade stolen card data, will shut down on February 15, 2021. Its operators announced the site's closure through messages and advertisements on various hacking forums. It is…

Einstein Health Network, a Pennsylvania-based company operating medical rehab, outpatient, and primary care centers, recently announced that it was affected by a breach of its employee email system, which exposed patient personal and medical information…

Researchers at Risk Based Security discovered that reported global breach volumes dropped 48% last year compared to 2019, but the number of exposed records soared 141% to top 37 billion.  The researchers also found that in total, there were 3923…

A team of researchers with Onapsis Research Labs discovered a publicly available exploit on the code-hosting platform GitHub that affects SAP. The exploit was published on January 14 by a Russian researcher named Dmitry Chastuhin. According to the…