The database contains ICCID that can be used in SIM swapping attacks. Other information in the leaked dump includes mobile number, customer PII, SIM PUK, IMSI and security hashes.... Read More
Security
Joomla! CMS project has fixed an access control violation flaw, CVE-2020-35616 nearly after 2 years of its reporting.... Read More
Google Docs "Send Feedback" feature vulnerability which could expose your sensitive files to attackers earns researcher a $3,134 bounty.... Read More
Medical labs appointed by governments to test incoming international passengers for COVID-19 contain insecure QR code implementations that may lead to data exposure.... Read More
Facebook has fixed an Instagram bug which leaked users' private email address and date of birth. The company awarded the researcher a $13,125 bug bounty for the report.... Read More
This week, the source code of CMA, a software provider relied on by leading central banks across nations and stock exchanges has been exposed online.... Read More
Multiple privilege escalation vulnerabilities in Stream gaming service that remain unpatched can make it easy for malware and malicious threat actors to gain persistence and escalate permissions on Windows systems.... Read More
Government of Canada website canada.gc.ca is throwing SSL errors due to an expired certificate.
Multiple Canadian government sites continue to have links to this older site which are now breaking.... Read More
NodeJS has released fixes for CVE-2020-8277, a DoS vulnerability that could be triggered via DNS requests.... Read More
Development team behind Drupal, a popular CMS and blogging platform has issued patches for a remote code execution vulnerability, CVE-2020-13671.... Read More
