Security Report

Insecure QR codes on COVID-19 test results come with data exposure risks 4 min read

• Breaches
• News
• Security

Insecure QR codes on COVID-19 test results come with data exposure risks

Ax Sharma December 26, 2020

Medical labs appointed by governments to test incoming international passengers for COVID-19 contain insecure QR code implementations that may lead to data exposure.... Read More

Facebook fixes Instagram bug that leaked user’s private email address and birthday 2 min read

• Breaches
• News
• Security

Facebook fixes Instagram bug that leaked user’s private email address and birthday

Ax Sharma December 21, 2020

Facebook has fixed an Instagram bug which leaked users' private email address and date of birth. The company awarded the researcher a $13,125 bug bounty for the report.... Read More

American Bank Systems slapped with class-action lawsuit for not timely disclosing ransomware data breach 3 min read

• Breaches
• Business
• News

American Bank Systems slapped with class-action lawsuit for not timely disclosing ransomware data breach

Ax Sharma December 18, 2020

American Bank Systems (ABS) has been sued by a class of plaintiffs for their failure to protect customer data and for delaying the disclosure of ransomware attack.... Read More

5 Cybersecurity Tips for Remote Work 3 min read

• Technology
• Thoughts

5 Cybersecurity Tips for Remote Work

Security Report News December 15, 2020

If you’ve recently shifted to remote work, or have been for awhile but looking to secure your home set up, check out these remote work tips... Read More

Source code used by Central Banks and Stock Exchanges leaked online 2 min read

• News
• Security

Source code used by Central Banks and Stock Exchanges leaked online

Ax Sharma December 1, 2020

This week, the source code of CMA, a software provider relied on by leading central banks across nations and stock exchanges has been exposed online.... Read More

Steam gamers: your Windows PC is prone to privilege escalation attacks 2 min read

• News
• Security

Steam gamers: your Windows PC is prone to privilege escalation attacks

Ax Sharma November 25, 2020

Multiple privilege escalation vulnerabilities in Stream gaming service that remain unpatched can make it easy for malware and malicious threat actors to gain persistence and escalate permissions on Windows systems.... Read More

Canadian government site canada.gc.ca SSL certificate expires, breaks links 4 min read

• News
• Security

Canadian government site canada.gc.ca SSL certificate expires, breaks links

Ax Sharma November 21, 2020

Government of Canada website canada.gc.ca is throwing SSL errors due to an expired certificate. Multiple Canadian government sites continue to have links to this older site which are now breaking.... Read More

Mitsubishi companies hit by cyber attack, ransomware 2 min read

• Breaches
• News

Mitsubishi companies hit by cyber attack, ransomware

Ax Sharma November 21, 2020

Mitsubishi Electric and sister companies such as Mitsubishi Polycrystalline have been hit by cyberattacks, including ransomware... Read More

Feds arrest Romanian malware actors behind CyberSeal and Dataprotector 2 min read

• Cybercrime
• News

Feds arrest Romanian malware actors behind CyberSeal and Dataprotector

Ax Sharma November 21, 2020

In a joint effort, international law enforcement authorities including the FBI, Europol, and the Romanian police have arrested a hacker duo that sold malware encryption tools.... Read More

DoS flaw lets attackers crash NodeJS apps via DNS lookups 1 min read

• News
• Security

DoS flaw lets attackers crash NodeJS apps via DNS lookups

Ax Sharma November 20, 2020

NodeJS has released fixes for CVE-2020-8277, a DoS vulnerability that could be triggered via DNS requests.... Read More