Tag: Audits
-
The Register: No gains, just pains as 1.6M fitness phone call recordings exposed online
Source URL: https://www.theregister.com/2025/09/09/gym_audio_recordings_exposed/ Source: The Register Title: No gains, just pains as 1.6M fitness phone call recordings exposed online Feedly Summary: HelloGym’s data security clearly skipped leg day Exclusive Sensitive info from hundreds of thousands of gym customers and staff – including names, financial details, and potentially biometric data in the form of audio recordings…
-
The Register: Attackers snooping around Sitecore, dropping malware via public sample keys
Source URL: https://www.theregister.com/2025/09/04/unknown_miscreants_snooping_around_sitecore/ Source: The Register Title: Attackers snooping around Sitecore, dropping malware via public sample keys Feedly Summary: You cut and pasted the machine key from the official documentation? Ouch Unknown miscreants are exploiting a configuration vulnerability in multiple Sitecore products to achieve remote code execution via a publicly exposed key and deploy snooping…
-
The Cloudflare Blog: The impact of the Salesloft Drift breach on Cloudflare and our customers
Source URL: https://blog.cloudflare.com/response-to-salesloft-drift-incident/ Source: The Cloudflare Blog Title: The impact of the Salesloft Drift breach on Cloudflare and our customers Feedly Summary: An advanced threat actor, GRUB1, exploited the integration between Salesloft’s Drift chat agent and Salesforce to gain unauthorized access to Salesforce tenants of Cloudflare and many other companies. AI Summary and Description: Yes…
-
The Register: Stolen OAuth tokens expose Palo Alto customer data
Source URL: https://www.theregister.com/2025/09/02/stolen_oauth_tokens_expose_palo/ Source: The Register Title: Stolen OAuth tokens expose Palo Alto customer data Feedly Summary: Security firm’s Salesforce instance accessed using credentials stolen from Salesloft’s Drift platform breach Palo Alto Networks is writing to customers that may have had commercially sensitive data exposed after criminals used stolen OAuth credentials lifted from the Salesloft…
-
The Register: In the rush to adopt hot new tech, security is often forgotten. AI is no exception
Source URL: https://www.theregister.com/2025/09/02/exposed_ollama_servers_insecure_research/ Source: The Register Title: In the rush to adopt hot new tech, security is often forgotten. AI is no exception Feedly Summary: Cisco finds hundreds of Ollama servers open to unauthorized access, creating various nasty risks Cisco’s Talos security research team has found over 1,100 Ollama servers exposed to the public internet,…
-
The Register: Salesforce data missing? It might be due to Salesloft breach, Google says
Source URL: https://www.theregister.com/2025/08/27/salesforce_salesloft_breach/ Source: The Register Title: Salesforce data missing? It might be due to Salesloft breach, Google says Feedly Summary: Attackers steal OAuth tokens to access third-party sales platform, then CRM data in ‘widespread campaign’ Google says a recent spate of Salesforce-related breaches was caused by attackers stealing OAuth tokens from the third-party Salesloft…
-
Slashdot: LibreOffice Stakes Claim as Strategic Sovereignty Tool For Governments
Source URL: https://news.slashdot.org/story/25/08/26/160253/libreoffice-stakes-claim-as-strategic-sovereignty-tool-for-governments?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: LibreOffice Stakes Claim as Strategic Sovereignty Tool For Governments Feedly Summary: AI Summary and Description: Yes Summary: The text discusses the release of LibreOffice v25.8 by The Document Foundation, emphasizing its strategic importance for digital sovereignty among governments and enterprises. It highlights features that enhance privacy and security, including…
-
The Register: Docker Desktop bug let containers hop the fence with barely a nudge
Source URL: https://www.theregister.com/2025/08/26/docker_desktop_bug/ Source: The Register Title: Docker Desktop bug let containers hop the fence with barely a nudge Feedly Summary: Isolation? We’ve heard of it Docker has patched a critical hole in Docker Desktop that let a container break out and take control of the host machine with laughable ease.… AI Summary and Description:…
-
Cloud Blog: 101+ gen AI use cases with technical blueprints
Source URL: https://cloud.google.com/blog/products/ai-machine-learning/real-world-gen-ai-use-cases-with-technical-blueprints/ Source: Cloud Blog Title: 101+ gen AI use cases with technical blueprints Feedly Summary: A little over a year ago, we published a list of generative AI use cases that has since grown to include more than 600 examples of how organizations are putting AI to work. Yet for many developers and…
-
The Register: Google yet to take down ‘screenshot-grabbing’ Chrome VPN extension
Source URL: https://www.theregister.com/2025/08/21/freevpn_privacy_research/ Source: The Register Title: Google yet to take down ‘screenshot-grabbing’ Chrome VPN extension Feedly Summary: Researcher claims extension didn’t start out by exfiltrating info… while dev says its actions are ‘compliant’ Security boffins at Koi Security have warned of a shift in behavior of a popular Chrome VPN extension, FreeVPN.One, which recently…