WordPress Block Editor could let even most basic users exploit XSS vulns!
WordPress 5.4.2 release announcement stated the update shipped with multiple fixes for Cross-Site Scripting (XSS) vulnerabilities. Out of this...
Security
Patient video consultations leaked in medical data breach: Babylon Health UK
In an a unfortunate incident, video consultants of some patients using the Babylon Health app were leaked to other...
Security firm admits to exposure of 5 billion records, after attempting to censor researchers
In March 2020, Bob Diachenko reported discovering an unprotected, publicly accessible Elasticsearch instance which exposed two collections of records:...
Keepnet Labs case study: how NOT to handle a data breach
We just released news on this one but here's a summary of what happened: In March 2020, Bob Diachenko,...
Italian business operation CloudEye actually aids hackers in spreading GuLoader
Conservative estimates put company’s monthly income at a minimum $500,000. According to a recently released report, researchers at Checkpoint blame...
Google’s indexing of WhatsApp numbers raises privacy concerns
Google is indexing the phone numbers used on WhatsApp, and a researcher is concerned that it could cause privacy issues...
ZEE5 allegedly hacked by ‘Korean hackers’, customer info at risk
A hacker identifying themselves as "John Wick" and "Korean Hackers" claim to have breached the systems for Indian video on demand...
Joomla data breach leaks 2,700 user records via exposed backups
A Joomla database leak has exposed the personal information, including hashed passwords, of 2,700 individuals registered on the Joomla Resources Directory...
“Sign in with Apple” vulnerability earns researcher $100,000
Remember seeing that slick "Sign in with Apple" button across many websites and apps? It turns out that a vulnerability allowed...
Microsoft IIS servers hacked by Blue Mockingbird to mine Monero
This month news broke about a hacker group, namely Blue Mockingbird, exploiting a critical vulnerability in Microsoft IIS servers to plant Monero (XMR)...