Archive for June, 2021

CVE-2021-22345

There is an Input Verification Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause out-of-bounds memory write.
Source: NIST
CVE-2021-22345

CVE-2021-22349

There is an Input Verification Vulnerability in Huawei Smartphone. Successful exploitation of insufficient input verification may cause the system to restart.
Source: NIST
CVE-2021-22349

CVE-2021-22352

There is a Configuration Defect Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may allow attackers to hijack the device and forge UIs to induce users to execute malicious commands.
Source: NIST
CVE-2021-22352

CVE-2021-22346

There is an Improper Permission Management Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may lead to the disclosure of user habits.
Source: NIST
CVE-2021-22346

CVE-2021-22348

There is a Memory Buffer Improper Operation Limit Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause code to execute.
Source: NIST
CVE-2021-22348

CVE-2021-22351

There is a Credentials Management Errors Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may induce users to grant permissions on modifying items in the configuration table,causing system exceptions.
Source: NIST
CVE-2021-22351

CVE-2021-22350

There is a Memory Buffer Improper Operation Limit Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause the device to crash and restart.
Source: NIST
CVE-2021-22350

CVE-2021-34075

In Artica Pandora FMS <=754 in the File Manager component, there is sensitive information exposed on the client side which attackers can access.
Source: NIST
CVE-2021-34075

Accenture Acquires Sentor

Accenture Acquires Sentor

Global professional services company Accenture has acquired an independent provider of cyber-defense and managed security services headquartered in Sweden’s capital, Stockholm.



The acquisition of Sentor by Accenture was announced yesterday. Financial terms of the deal were not disclosed. 



“Securing a business ecosystem can’t be piecemeal; it takes the right talent, investments and technology know-how,” said Kelly Bissell, who leads Accenture Security globally. 



“The acquisition of Sentor further expands our ability to help clients match this challenging cybersecurity environment. We are excited about what we can achieve together to help organizations in Sweden become more resilient.”



Sentor was founded in 1998 and has additional offices in the Swedish cities of Gӓvle and Malmӧ. Included within the company’s portfolio are security testing, advisory services, and managed detection and incident-response capabilities, which are powered by a round-the-clock security operations center located in Stockholm. 



The approximately 80 cybersecurity professionals working for Sentor serve a client base spanning multiple industries, including finance, insurance, manufacturing and retail. They will now join the Accenture team in Sweden, bolstering the company’s local capabilities and resources.



“Sentor has a very strong reputation in the cybersecurity community in Sweden through its long-lasting experience in delivering advanced cybersecurity services to the Swedish market,” said Bala Periasamy, who leads Accenture Security in Sweden. 



“They have managed to attract exceptional talent and grow a technical security culture that is unique in the industry.”



Åse Holmberg, Sentor CEO, said, “Maintaining a high cybersecurity posture is not an IT issue, but a major concern for businesses and organizations around the world. Sentor’s goal has never been to ‘just’ help our clients with cybersecurity. We strive to raise the bar throughout the entire region to ensure organizations in the Nordics have a strong cybersecurity presence.”



Holmberg added that teaming up with Accenture’s global team would help Sentor to achieve that goal.



“Together we can provide an unmatched level of advanced technical skills needed to tackle the cybersecurity challenges of the 21st century. As a result, we not only help clients better defend themselves against the imminent threat adversaries pose but give our employees more opportunities to grow.”


Source: Infosecurity
Accenture Acquires Sentor

Intl. Law Enforcement Operation Takes Down DoubleVPN

The VPN service allegedly provided a means for cybercriminals to target their victims, Europol officials report.
Source: DarkReading
Intl. Law Enforcement Operation Takes Down DoubleVPN