[ad_1] Salt Security has revealed research unveiling critical API security vulnerabilities in the OAuth protocol implementations of popular online platforms like Grammarly, Vidio and Bukalapak. These vulnerabilities, which have now been addressed, had the potential to compromise user credentials and enable full account takeovers, endangering billions... Continue reading
Return to previous page
Page 132
[ad_1] PII Belonging to Indian Citizens, Including their Aadhaar IDs, Offered for Sale on the Dark Web Pierluigi Paganini October 24, 2023 Hundreds of millions of PII records belonging to Indian residents, including Aadhaar cards, are being offered for sale on the Dark Web. PII... Continue reading
[ad_1] Police in Spain have said they cracked a major organized crime ring which it’s claimed made at least €3m ($3.2m) from various online scams and fraud. National Police officers swooped on 16 locations in the provinces of Madrid, Málaga, Huelva, Alicante and Murcia where... Continue reading
[ad_1] How did the Okta Support breach impact 1Password? Pierluigi Paganini October 24, 2023 1Password detected suspicious activity on its Okta instance after the recent compromise of the Okta support system. The password management and security application 1Password announced it had detected suspicious activity on... Continue reading
[ad_1] Global law enforcers have claimed another victory in the ongoing fight against ransomware, after seizing infrastructure and arresting a suspected key member of the Ragnar Locker group. Between October 16 and 20, police conducted searches in Czechia, Spain and Latvia, including the home of... Continue reading
[ad_1] Cisco warns of a second IOS XE zero-day used to infect devices worldwide Pierluigi Paganini October 23, 2023 Cisco found a second IOS XE zero-day vulnerability, tracked as CVE-2023-20273, which is actively exploited in attacks in the wild. Cisco last week warned customers of a zero-day... Continue reading
[ad_1] Identity and access management (IAM) specialist Okta has found itself on the receiving end of another security breach after a threat actor was able to access a stolen credential. Chief security officer (CSO) for the vendor, David Bradbury, explained in a brief blog post... Continue reading
[ad_1] CISA adds second Cisco IOS XE flaw to its Known Exploited Vulnerabilities catalog Pierluigi Paganini October 23, 2023 US CISA added the vulnerability CVE-2023-20273 in Cisco IOS XE to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the vulnerability CVE-2023-20273 in Cisco IOS XE... Continue reading
[ad_1] A recent research report by Uptycs has highlighted the evolution of QuasarRAT, an open-source remote administration tool (RAT) known for its lightweight nature and range of malicious functions. According to an advisory published on Friday by Uptycs security researcher Tejaswini Sandapolla, the C#-based tool,... Continue reading
[ad_1] City of Philadelphia suffers a data breach Pierluigi Paganini October 23, 2023 The City of Philadelphia discloses a data breach that resulted from a cyber attack that took place on May 24 and that compromised City email accounts. The City of Philadelphia announced it... Continue reading