Whistleblowing security researchers deny ‘inappropriate access’ to Indiana Covid-19 survey data
Midwestern state in data leak drama [...]
Showing only posts by The Daily Swig. Show all posts.
Fortinet WAF vulnerable to command injection attacks, researchers find
Patch for FortiWeb flaw due over the coming days [...]
XSS vulnerability in popular WordPress plugin SEOPress could enable complete site takeover
Security issue in CMS add-on has been patched [...]
Audiomack music streaming platform launches public bug bounty
New program follows a year-long private VDP [...]
Florida woman ‘damaged computers, deleted crucial business data’ after she was fired
A harsh lesson in the importance of access revocation [...]
Nation-state threat: How DDoS-over-TCP technique could amplify attacks
Researchers detail novel way of increasing cyber-attack surface [...]
Realtek SDK vulnerabilities impact dozens of downstream IoT vendors
Wireless tech software flaws allowed attackers to achieve root access on vulnerable devices [...]
Data breach at New York university potentially affects 47,000 citizens
Thousands of Social Security numbers may have been compromised A data breach at a New York university has potentially exposed the personal information of nearly 47,000 individuals. The Research Founda [...]
Fight or flight: How one of the UK’s busiest airports defends against cyber-attacks
Manchester Airport Group’s Tony Johnson reveals top threat to the sector – and it might not be what you’d expect [...]
Steam security: Valve promptly resolves ‘unlimited funds’ gaming wallet cheat
Security researcher earns $7,500 bug bounty after discovering business logic flaw [...]
‘Unpatched’ vulnerabilities in Wodify fitness management platform allow attackers to steal gym payments, extract member data
Personal trainers urged to exercise caution over alleged security flaws [...]
Research: Hundreds of high-traffic web domains vulnerable to same-site attacks
‘The same-site security boundary is becoming more and more relevant’ [...]
Exhaustive study puts China’s infamous Great Firewall under the microscope
Censorship platform is distorting some internet lookups, researchers warn [...]
Node.js developers fix high-risk vulnerability that could allow remote domain hijacking
Users of the JS framework need to patch now [...]
Data breach at US waste management firm exposes employees’ healthcare details
Waste Management Resources said attacker gained network access in January [...]
Apple drops controversial lawsuit against Corellium
Fears of chilling effect on security tool development lifted [...]
International cybercrime gang charged with Covid-19 business email compromise fraud
Twenty-three nationals involved in €1 million scheme [...]
Web hosting platform cPanel & WHM is vulnerable to authenticated RCE
Pen testers and vendor disagree over appropriate mitigations [...]
Web hosting platform cPanel & WHM is vulnerable to authenticated RCE and privilege escalation
Pen testers and vendor disagree over appropriate mitigations [...]
Firefox 91 features HTTPS by default in private browsing mode
Web browser will go further to protect against cyber-attacks [...]
Data of three million elderly citizens exposed in cloud security oversight
SeniorAdvisor has now secured the leaky bucket [...]
Top Hacks from Black Hat and DEF CON 2021
Tools, techniques, and (hybrid) procedures [...]
Singaporean telco StarHub discloses data leak affecting 57,000 customers
Company says data breach unrelated to previous system compromise [...]
The Ripple Effect: How increasing the number of women in the infosec can result in a happier workplace
Women in tech was a key community topic at this year’s Black Hat USA conference [...]
‘A whole new attack surface’ – Researcher Orange Tsai documents ProxyLogon exploits against Microsoft Exchange Server
‘Possibly the most severe vulnerability in the history of Microsoft Exchange’ [...]
« newer articles | page 37 | older articles »