Exchange/Outlook Autodiscover Bug Exposed $100K Email Passwords

  Guardicore Security Researcher, Amit Serper identified a critical vulnerability in Microsoft’s autodiscover- the protocol, which permits for the automatic setup of an email account with only the address and password needed.  The vulnerability allows attackers who buy domains containing the word “autodiscover,” such as autodiscover.com or autodiscover.co.uk, to capture the clear-text login details of […]

Continue Reading

Lubbock County Denies Data Leak, Says Data Temporarily Attainable Under New Software System

  Earlier this month, the personal court records for residents of Lubbock County, located in the US state of Texas, were exposed when the county transitioned to a new computer software system. The exposed data contained non-disclosure orders, criminal cases, and civil and family law records.  According to the county’s official website, Lubbock County Defense […]

Continue Reading

Republican Governors Association Targeted in Microsoft Exchange Server Attacks

  The Republican Governors Association was one of many U.S. organizations attacked in March when a nation-state group exploited vulnerabilities in Microsoft Exchange email servers, according to a breach notification letter filed with the Maine attorney general’s office this week.   For companies worldwide, the situation became a cause of concern; nearly 500 persons linked with […]

Continue Reading

UN Computer Networks Breached by Hackers Earlier This Year

  Hackers breached the United Nations’ computer network and stole data, according to researchers at cybersecurity firm Resecurity,  According to Bloomberg, the theft’s unknown perpetrators appear to have acquired access by simply stealing login credentials from a UN employee.  Logging into the employee’s Umoja account provided access. The enterprise resource planning system Umoja, which means […]

Continue Reading