Ghost CMS vulnerable to critical authentication bypass flaw
A critical vulnerability in the Ghost CMS newsletter subscription system could allow external users to create newsletters or modify existing ones so that they contain…
Month: December 2022
Deserialized web security roundup: Algolia API key leak, GitHub CVE reporting, scoring CVSS scores
Adam Bannister 02 December 2022 at 17:19 UTC Updated: 19 December 2022 at 17:12 UTC Your fortnightly rundown of AppSec vulnerabilities, new hacking techniques, and…
Elon Musk’s Twitter Files Are a Feast for Conspiracy Theorists
It has become established rhetoric among the political right that suppressing the story about Hunter Biden’s laptop was nothing short of a conspiracy between the…
NATO tames AI Driven Cyber Threats
We all know that a technology can never be at fault, as it is the mind that does most of the damage. And the same…
Enterprises waste money on identity tools they don’t use
Misguided enterprise investment in multiple identity tools is proving insufficient in defending against today’s threat landscape, according to One Identity. 96% of companies report using…
Facebook to Pay $725 Million to settle Lawsuit Over Cambridge Analytica Data Leak
Dec 27, 2022Ravie LakshmananData Security / Privacy Meta Platforms, the parent company of Facebook, Instagram, and WhatsApp, has agreed to pay $725 million to settle…
Massive Twitter data leak investigated by EU privacy watchdog
Source: DALL-E The Irish Data Protection Commission (DPC) has launched an inquiry following last month’s news reports of a massive Twitter data leak. This leak affected…
Black Hat Europe 2022: A defendable internet is possible, but only with industry makeover
John Leyden 07 December 2022 at 15:19 UTC Updated: 07 December 2022 at 15:22 UTC Empower buyers and stop fixating about zero-days, conference attendees told…
Popular HR and Payroll Company Sequoia Discloses a Data Breach
The human resources, payroll, and benefits management company Sequoia said in disclosures to customers at the beginning of the month that it detected unauthorized access…
Insurance cover becoming impossible for Cyber Attacks
Insurance companies like Lloyd offer cyber insurance policies that cover a business from facing a business loss during a cyber-attack. However, in coming days, cyber…
SMEs: Boost awareness on cybersecurity – ENISA tools and guidance
In a time of increased remote work and growing cyber threats, SMEs face major cybersecurity challenges. Low-security budget, lack of employee awareness, management support, lack…
Facebook Cracks Down on Spyware Vendors from U.S., China, Russia, Israel, and India
Meta Platforms disclosed that it took down no less than 200 covert influence operations since 2017 spanning roughly 70 countries across 42 languages. The social…