Lego’s Bricklink steps on cross site scripting blocks
We take a look at how Lego’s Bricklink service was potentially vulnerable to certain types of XSS attack. If you build it, they will come.…
Month: January 2023
Sam Bankman-Fried Pleads ‘Not Guilty’ in Criminal Case
Blockchain & Cryptocurrency , Cryptocurrency Fraud , Fraud Management & Cybercrime Trial Date Tentatively Set for Oct. 2 Rashmi Ramesh (rashmiramesh_) • January 3, 2023…
Over 60,000 Exchange servers vulnerable to ProxyNotShell attacks
More than 60,000 Microsoft Exchange servers exposed online are yet to be patched against the CVE-2022-41082 remote code execution (RCE) vulnerability, one of the two…
Fidelis Cybersecurity Platforms Added to the DoD ESI Portfolio
[ This article was originally published here ] BETHESDA, Md.–()–Fidelis Cybersecurity, a portfolio company of , today announced its platforms have been added to the…
Sharing Netflix, Disney+ passwords is illegal, according to new guidance
The UK government is flagging password sharing of streaming service credentials as piracy. The Intellectual Property Office (IPO), the UK government body overseeing intellectual property rights…
Poland Sounds Alarm on Russian Hacking
Cyberwarfare / Nation-State Attacks , Fraud Management & Cybercrime , Social Media Government Says Hackers’ Goals Are ‘Destabilization, Intimidation and Sowing Chaos’ Prajeet Nair (@prajeetspeaks)…
Rail giant Wabtec discloses data breach after Lockbit ransomware attack
U.S. rail and locomotive company Wabtec Corporation has disclosed a data breach that exposed personal and sensitive information. Wabtec is a U.S.-based public company producing…
CISSP-ISSAPs – We Need Your Input
[ This article was originally published here ] With more than 150,000 CISSPs around the world, some of you have asked – what’s the next…
Godfather Android banking malware is on the rise
Researchers have uncovered a new campaign of the Godfather banking Trojan, that comes with some new tricks. Researchers at Cyble Research & Intelligence Labs (CRIL)…
Malaysian Agencies Investigate Alleged Breach Affecting 13M
Critical Infrastructure Security , Cybercrime , Fraud Management & Cybercrime Maybank – Country’s Largest Institution – Denies Data Breach Prajeet Nair (@prajeetspeaks) • January 2,…
CDO interview: Lisa Heneghan, global chief digital officer, KPMG
After 12 years with KPMG, Lisa Heneghan took on her latest and greatest challenge for the consultancy firm when she became its global chief digital…
Synology fixes maximum severity vulnerability in VPN routers
Taiwan-based NAS maker Synology has addressed a maximum (10/10) severity vulnerability affecting routers configured to run as VPN servers. The vulnerability, tracked as CVE-2022-43931, was…