CVS Health Database Breach Left 1 Billion User Records Exposed Online

  Security researchers have discovered an online database belonging to CVS Health which exposed over a billion records online. On March 21st, 2021 Website Planet research team in collaboration with independent cybersecurity researcher Jeremiah Fowler discovered a non-password-protected database belonging to CVS health that contained over 1 billion records. CVS Health, headquartered in Woonsocket, Rhode […]

Continue Reading

Three Unpatched Bugs Spotted in Third-Party Provisioning Platform

  Researchers at Rapid7 have unearthed three highly critical security flaws in Akkadian Provisioning Manager, a third-party provisioning tool within Cisco Unified Communications environments that can be chained together to enable remote code execution (RCE) with elevated privileges. Cisco’s UC suite allows VoIP and online video communications across enterprise footprints. The Akkadian products are equipment […]

Continue Reading

CyRC Identifies Three Major DoS Flaws in Popular Open Source Message Brokers

  Synopsys Cybersecurity Research Centre (CyRC) has warned organizations of easily triggered denial-of-service (DoS) vulnerabilities in three widely used open-source message brokers: RabbitMQ, EMQ X, and VerneMQ.  A message broker is a software that enables applications, systems, and services to communicate with each other and exchange information by translating messages between formal messaging protocols. It […]

Continue Reading

3.2 Million PCs Compromised in a Malware Campaign

  Security researchers at Nordlocker have discovered that 1.2 terabytes of personal details and information were stolen through a customized malware strain which was largely spread through illegal software, including pirated games and a cracked version of Adobe Photoshop.  Between 2018 and 2020 the malware had infected 3.2 million PCs and stole over 6 million […]

Continue Reading

Major Security Flaw Patched by Hyperkitty

  Hyperkitty, a Django-based application responsible for providing a web interface for the popular open-source mailing list and newsletter management service Mailman, has patched a critical flaw that disclosed personal mailing lists while importing them. Amir Sarabadani, a software engineer at Wikimedia Deutschland, identified the flaw while upgrading Wikimedia’s mailing lists from Mailman 2 to […]

Continue Reading