Tag: unauthorized access
-
Slashdot: Meta Fined $102 Million For Storing 600 Million Passwords In Plain Text
Source URL: https://yro.slashdot.org/story/24/09/27/2226229/meta-fined-102-million-for-storing-600-million-passwords-in-plain-text?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Meta Fined $102 Million For Storing 600 Million Passwords In Plain Text Feedly Summary: AI Summary and Description: Yes Summary: Meta has faced a hefty fine of $101.5 million from the Irish Data Protection Commission for improperly storing user passwords in plain text, highlighting serious compliance failures under GDPR.…
-
Hacker News: The Firestore vulnerability found in Arc is likely widespread
Source URL: https://venki.dev/notes/firestore-vuln Source: Hacker News Title: The Firestore vulnerability found in Arc is likely widespread Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses a vulnerability in Firestore security rules, specifically how incorrect configurations can be exploited, leading to unauthorized document creations by attackers. This serves as a critical warning for…
-
Alerts: Versa Networks Releases Advisory for a Vulnerability in Versa Director, CVE-2024-45229
Source URL: https://www.cisa.gov/news-events/alerts/2024/09/20/versa-networks-releases-advisory-vulnerability-versa-director-cve-2024-45229 Source: Alerts Title: Versa Networks Releases Advisory for a Vulnerability in Versa Director, CVE-2024-45229 Feedly Summary: Versa Networks has released an advisory for a vulnerability (CVE-2024-45229) affecting Versa Director. A cyber threat actor could exploit this vulnerability to exercise unauthorized REST APIs. CISA urges organizations to apply necessary updates, hunt for any malicious…
-
Hacker News: Gaining access to anyones browser without them even visiting a website
Source URL: https://kibty.town/blog/arc/ Source: Hacker News Title: Gaining access to anyones browser without them even visiting a website Feedly Summary: Comments AI Summary and Description: Yes Summary: The text presents a detailed examination of a security vulnerability found in the Arc browser, specifically related to its integration with Firebase and Firestore for authentication and data…
-
Cisco Security Blog: Re-Imagining Zero Trust With an In-Office Experience, Everywhere
Source URL: https://feedpress.me/link/23535/16814426/re-imagining-zero-trust-with-an-in-office-experience-everywhere Source: Cisco Security Blog Title: Re-Imagining Zero Trust With an In-Office Experience, Everywhere Feedly Summary: Cisco has designed our solution to overcome common obstacles by powering a secure, in-office experience anywhere that builds on Cisco’s own zero trust journey. AI Summary and Description: Yes Summary: Cisco’s solution aims to enhance security and…
-
The Register: Fortinet admits miscreant got hold of customer data in the cloud
Source URL: https://www.theregister.com/2024/09/13/fortinet_data_loss/ Source: The Register Title: Fortinet admits miscreant got hold of customer data in the cloud Feedly Summary: That would explain this 440GB leak, then Fortinet has admitted that bad actors accessed cloud-hosted data about its customers, but insisted it was a “limited number" of files. The question is: how limited is "limited"?……
-
The Register: Cisco’s Smart Licensing Utility flaws suggest it’s pretty dumb on security
Source URL: https://www.theregister.com/2024/09/05/cisco_smart_licensing_utility_flaws/ Source: The Register Title: Cisco’s Smart Licensing Utility flaws suggest it’s pretty dumb on security Feedly Summary: Two critical holes including hardcoded admin credential If you’re running Cisco’s supposedly Smart Licensing Utility, there are two flaws you ought to patch right now.… AI Summary and Description: Yes Summary: The text highlights critical…
-
The Register: Sinister sysadmin allegedly locked up thousands of Windows workstations, demanded ransom
Source URL: https://www.theregister.com/2024/08/29/vm_engineer_extortion_attempt/ Source: The Register Title: Sinister sysadmin allegedly locked up thousands of Windows workstations, demanded ransom Feedly Summary: Sordid search history is evidence in case that could see him spend 35 years for extortion and wire fraud A former infrastructure engineer who allegedly locked IT department colleagues out of their employer’s systems, then…
-
The Register: Dick’s Sporting Goods discloses cyberattack
Source URL: https://www.theregister.com/2024/08/28/dickssporting_goods_runs_into_problems/ Source: The Register Title: Dick’s Sporting Goods discloses cyberattack Feedly Summary: Authorities probing unwanted intrusion; hard questions ahead Dick’s Sporting Goods, America’s largest retail chain for outdoorsy types, has admitted that it suffered a cyberattack last week.… AI Summary and Description: Yes Summary: Dick’s Sporting Goods has announced a cyberattack involving unauthorized…
-
Slashdot: FBI Is Sloppy On Secure Data Storage and Destruction, Warns Watchdog
Source URL: https://hardware.slashdot.org/story/24/08/26/2026227/fbi-is-sloppy-on-secure-data-storage-and-destruction-warns-watchdog?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: FBI Is Sloppy On Secure Data Storage and Destruction, Warns Watchdog Feedly Summary: AI Summary and Description: Yes Summary: The audit by the Department of Justice Office of the Inspector General exposes significant lapses in the FBI’s handling of electronic storage media, raising security concerns for national security data.…