Joomla fixes ACL violation vulnerability after 2 years
The development team behind popular CMS Joomla which powers over 2.5 million sites has patched an access control violation vulnerability...
Google ‘Send Feedback’ bug could expose your sensitive data to attackers
This week, security researcher KL Sreeram has disclosed a vulnerability in Google Docs which could let hackers steal sensitive data...
Word malware uses GitHub and Imgur pic to run Cobalt Strike script
A new strand of malware uses Word files with macros to download a PowerShell script from GitHub. This PowerShell script further downloads...
UK energy supplier E.ON erroneously takes out Direct Debit payments early
British energy supplier E.ON has emailed an apology to its customers after erroneously taking out direct debit payments from their...
Insecure QR codes on COVID-19 test results come with data exposure risks
As more and more governments around the world impose mandatory coronavirus testing for arriving international passengers during the ever-evolving pandemic...
Facebook fixes Instagram bug that leaked user’s private email address and birthday
This week a researcher walked away with a $13,125 bug bounty award for responsibly reporting a data leak to Facebook....
American Bank Systems slapped with class-action lawsuit for not timely disclosing ransomware data breach
This year, American Bank Systems (ABS) was hit with a ransomware attack as reported by Security Report, which the company...
5 Cybersecurity Tips for Remote Work
Guest post by Karlyn McKell Has your living room recently transformed into your conference room too? If so, you’re not...
Source code used by Central Banks and Stock Exchanges leaked online
This week, the source code of CMA, a software provider relied on by leading central banks across nations and stock...
Steam gamers: your Windows PC is prone to privilege escalation attacks
Steam, a popular video game platform is vulnerable to privilege escalation attacks. On Windows PCs, Steam creates installation directories with...