Information Security newsfeeds from around the world in English and French. Find it all in one place… here. 5 years worth of information.
Security researchers have discovered an online database belonging to CVS Health which exposed over a billion records online. On March 21st, 2021 Website Planet research team in collaboration with independent cybersecurity researcher Jeremiah Fowler discovered a non-password-protected database belonging to CVS health that contained over 1 billion records. CVS Health, headquartered in Woonsocket, Rhode […]
Continue Reading
America’s largest propane supplier, AmeriGas, has revealed a data breach that lasted ‘8-second’ but affected 123 employees and one US resident. It serves more than 2 million customers in all 50 US states and has more than 2,500 distribution locations. Threat actors exploited networks of J. J. Keller – a vendor responsible for providing […]
Continue Reading
Researchers at Rapid7 have unearthed three highly critical security flaws in Akkadian Provisioning Manager, a third-party provisioning tool within Cisco Unified Communications environments that can be chained together to enable remote code execution (RCE) with elevated privileges. Cisco’s UC suite allows VoIP and online video communications across enterprise footprints. The Akkadian products are equipment […]
Continue Reading
Synopsys Cybersecurity Research Centre (CyRC) has warned organizations of easily triggered denial-of-service (DoS) vulnerabilities in three widely used open-source message brokers: RabbitMQ, EMQ X, and VerneMQ. A message broker is a software that enables applications, systems, and services to communicate with each other and exchange information by translating messages between formal messaging protocols. It […]
Continue Reading
Kevin Backhouse, a researcher at GitHub Security Lab revealed the details of an easy-to-exploit Linux flaw that can be exploited to escalate privileges to root on the targeted system. The vulnerability, classified as highly critical and termed as CVE-2021-3560, affects polkit, a system service installed by default on many Linux distributions. On Thursday, Kevin […]
Continue Reading
Security researchers at Nordlocker have discovered that 1.2 terabytes of personal details and information were stolen through a customized malware strain which was largely spread through illegal software, including pirated games and a cracked version of Adobe Photoshop. Between 2018 and 2020 the malware had infected 3.2 million PCs and stole over 6 million […]
Continue Reading
On Thursday, cyber-security researchers in India announced the discovery of a malicious free present marketing campaign managed by China-based hackers to gather personal user data. The marketing campaign is pretending to be an offer from Tata Motors, the biggest automobile manufacturing company in India, reports IANS. The analysis workforce at New Delhi-based CyberPeace Foundation […]
Continue Reading
ADATA, a Taiwan-based leading memory and storage manufacturer, was forced to take its systems offline after a ransomware attack crippled its network in late May. ADATA is known for manufacturing superior DRAM memory modules, NAND nonvolatile storage cards, mobile accessories, gaming products, diversion products, wattage trains, and industrial solutions. ADATA admitted in an email […]
Continue Reading
Hyperkitty, a Django-based application responsible for providing a web interface for the popular open-source mailing list and newsletter management service Mailman, has patched a critical flaw that disclosed personal mailing lists while importing them. Amir Sarabadani, a software engineer at Wikimedia Deutschland, identified the flaw while upgrading Wikimedia’s mailing lists from Mailman 2 to […]
Continue Reading
The New South Wales Ministry of Health (NSW Health) has confirmed that it was impacted by a cyberattack involving the Accellion file transfer system. The system was widely used to share and store files by organizations across the globe, including NSW Health. NSW Health has been working with NSW Police and Cyber Security NSW […]
Continue Reading