SQL injection vulnerability in e-learning platform Moodle could enable database takeover
Security flaw could risk data leak [...]
Showing only posts in The Daily Swig. Show all posts.
Concerns raised over bug disclosure program aimed at tackling Russia’s ‘propaganda machine’
Some cybersecurity professionals express unease about ‘red team’ VDP launched alongside defense-focused program [...]
Fresh flaws in Facebook Canvas earn bug bounty hunter a second payday
Next-level account takeover [...]
Utah privacy bill places tighter controls on consumer data
Policymakers move forward with new data privacy legislation [...]
Japanese beauty retailer Acro blames third-party hack for breach of 100k payment cards
Company traces compromise to vulnerability in payment processor’s systems [...]
RCE vulnerability in Dynamicweb enterprise software could allow server compromise
‘Extremely easy to exploit’ bug introduced to codebase in 2018, say researchers [...]
Equifax data breach: Consumers unlikely to benefit financially from final settlement
Potential claimants would face an ‘uphill battle in order to establish standing’, says US privacy law expert [...]
Google WAF bypassed via oversized POST requests
Security research highlights web application firewall security risk [...]
Nvidia hackers allegedly attempting to blackmail company into open-sourcing GPU drivers
Unusual demand follows request that hardware firm removes mining hashrate limiters on GPUs [...]
‘We’re firefighters for victims of armed conflict’ – Hackers Without Borders co-founder on NGO’s timely arrival
‘We had NGOs for press, medical staff, and mental health issues, but not for cyber-attack victims’ [...]
Ukraine invasion: WordPress-hosted university websites hacked in ‘targeted attacks’
Education institutions hit by more than 100,000 attacks in 24 hours [...]
Remote code execution vulnerability uncovered in Hashnode blogging platform
A local file coding error could be exploited to trigger RCE [...]
Toyota shuts down production after ‘cyber-attack’ on supplier
JITter in the supply chain [...]
Private chat? Chrome Skype extension with 9m installs found to be leaking user info
Microsoft addresses issue at eleventh hour, as researcher publicly discloses ‘trivial’ privacy bug in browser plugin [...]
Critical GitLab vulnerability could allow attackers to steal runner registration tokens
Flaw present in multiple versions of DevOps platform – update now [...]
Bug Bounty Radar // The latest bug bounty programs for March 2022
New web targets for the discerning hacker [...]
Cyber-attack on Nvidia linked to Lapsus$ ransomware gang
Claims that threat actors said hardware giant had ‘hacked back’ have surfaced [...]
Bridgestone Americas ‘disconnects’ manufacturing facilities following ‘security incident’
World’s biggest tire manufacturer yet to determine ‘scope or nature of any potential incident’ [...]
Flurry Finance heist nets crypto thieves $295k
Theft topped out at six figures after DeFi platform blocked ‘token balance multiplier’ exploit [...]
Data study reveals predictors of supply chain attacks in NPM repositories
Researchers outline the six key indicators that an NPM package may be compromised [...]
DNA data of sexual assault victims exposed in breach at US laboratory
Medical information included in leak after third-party compromise [...]
Data wiper deployed in cyber-attacks targeting Ukrainian systems
Newly named ‘HermeticWiper’ malware discovered on hundreds of endpoints [...]
US fraudster jailed over $300k business email compromise scheme
Scheme unraveled when defendant tried to cash ill-gotten gains [...]
Zero-day XSS vulnerability in Horde webmail client can be triggered by file preview function
Researchers release details of unpatched security flaw [...]
EU countries offer cyber-defense assistance to Ukraine
Increase in cyber-attacks expected to accompany further incursions into Ukrainian territory [...]
« newer articles | page 20 | older articles »