security
Joomla fixes ACL violation vulnerability after 2 years
Joomla! CMS project has fixed an access control violation flaw, CVE-2020-35616 nearly after 2 years of its reporting.
American Bank Systems slapped with class-action lawsuit for not timely disclosing ransomware data breach
American Bank Systems (ABS) has been sued by a class of plaintiffs for their failure to protect customer data and…
Canadian government site canada.gc.ca SSL certificate expires, breaks links
Government of Canada website canada.gc.ca is throwing SSL errors due to an expired certificate. Multiple Canadian government sites continue to…
2021 security predictions from HackerOne’s top ethical hackers
HackerOne's top security researchers and ethical hackers provide their take on what security trends to expect in 2021.
UK delivery company Whistl suffered data breach
Delivery management company Whistl UK has suffered a data breach.
Newly spotted Ethereum vulnerabilities put $1 billion at stake
Researchers have discovered multiple serious vulnerabilities in Ethereum putting cryptocurrency worth million of dollars at risk
Palo Alto Networks researcher discovers Linux privilege escalation vulnerability
A privilege escalation vulnerability had been lurking in the Linux kernel all this time until being discovered by a Palo…
Office 365 phishing page evades detection using Google captcha
A newly discovered Microsoft Office 365 phishing campaign makes the recipient solve Google reCaptchas to both add some legitimacy to…
Gravatar API lets you scrape millions of user profiles
Italian security researcher, Carlo Di Dato discovered that the hidden URL API routes as those shown below can allow a…
Telegram app used by malware to infiltrate online stores
Telegram is being actively used by malware authors targeting e-commerce websites built on Prestashop, Magento and WooCommerce.