Bluetooth keeps on giving. Vulnerabilities (CVE-2023-45866, CVE-2024-21306) were discovered that allow either pairing a virtual keyboard with an already paired computer – without authentication.
Source: SC Magazine
Security in Wrenches, Vulns in Atlassian and GitLab, 2023’s Top Web Hacking Tricks – ASW #270
- 1,200+ Vulnerabilities Detected In Microsoft Products In 2023
- A week in security (April 22 – April 28)
- Okta Warns of Credential Stuffing Attacks Using Proxy Services
- Android Malware Brokewell With Complete Device Takeover Capabilities
- Fileless .NET Based Code Injection Attack Delivers AgentTesla Malware