Bunch of News

~
Persistence without “Persistence”: Meet The Ultimate Persistence Bug – “NoReboot”

https://blog.zecops.com/research/persistence-without-persistence-meet-the-ultimate-persistence-bug-noreboot/

~
Vulnerability in QVPN Service

https://www.qnap.com/en/security-advisory/qsa-21-61

~
A New Web Skimmer Campaign Targets Real Estate Websites Through Attacking Cloud Video Distribution Supply Chain

https://unit42.paloaltonetworks.com/web-skimmer-video-distribution

~
VMware Workstation, Fusion and ESXi updates address a heap-overflow vulnerability (CVE-2021-22045)

https://www.vmware.com/security/advisories/VMSA-2022-0001.html

~
New Zloader Campaign exploits Microsoft’s Signature Verification putting users at risk

https://research.checkpoint.com/2022/can-you-trust-a-files-digital-signature-new-zloader-campaign-exploits-microsofts-signature-verification-putting-users-at-risk/

~
Vulnerability in Apache HTTP Server

Security researchers have discovered a buffer overflow vulnerability (CVE-2021-44790) in Apache HTTP Server. Successful exploitation could allow an attacker to perform a remote code execution attack.

https://www.csa.gov.sg/singcert/Alerts/al-2022-072