Cyber incident that closed British Museum was inside job
A disgruntled insider appears to have been behind a security incident at the British Museum, which forced the 270-year-old institution to partially close its doors…
Month: January 2025
Critical Apache Solr Vulnerability Grants Write Access to Attackers on Windows
A new security vulnerability has been uncovered in Apache Solr, affecting versions 6.6 through 9.7.0. The issue, classified as a Relative Path Traversal vulnerability, exposes…
Google launches new Identity Check feature for data security
Google, the web search giant owned by Alphabet Inc., has introduced a new security feature designed to protect your data in case your phone is…
GitHub Desktop Vulnerability Risks Credential Leaks via Malicious Remote URLs
Jan 27, 2025Ravie LakshmananVulnerability / Software Security Multiple security vulnerabilities have been disclosed in GitHub Desktop as well as other Git-related projects that, if successfully…
Royal Mail SMS Phishing Scam Targets Victims with Fake Delivery Fee Requests
Beware of a convincing Royal Mail SMS phishing scam asking for personal details and payment for re-delivery. Learn how to identify and protect yourself from…
Oxford-Cambridge Arc gets government support
Secretary of state for science, innovation and technology Peter Kyle has confirmed the government’s commitment to supporting the Oxford-Cambridge Arc, a region that is home…
Three Big Reasons Ransomware Payments Are Up More Than 5X Over Last Year
If the mission of cybersecurity is to protect the organization from losses to cybercriminals, we are in deep trouble. Over the past year there has…
UnitedHealth almost doubles victim numbers from massive Change Healthcare data breach
UnitedHealth says it now estimates that the data breach on its subsidiary Change Healthcare affected 190 million people, nearly doubling its previous estimate from October.…
Multiple Git flaws led to credentials compromise
Multiple Git flaws led to credentials compromise Pierluigi Paganini January 27, 2025 Vulnerabilities in the Git credential retrieval protocol could have allowed threat actors to…
Quantifying the Value of Bug Bounty Programs: ROI, ROM, or Both?
HackerOne customers consistently factor in cost savings when measuring the success of their security engagements, with 59% valuing the estimated savings of reputational or customer-related incidents…
Apache Solr For Windows instances Vulnerability Allows Arbitrary Path Write-Access
A critical security vulnerability (CVE-2024-52012) affecting Apache Solr instances on Windows has been identified, allowing attackers to gain arbitrary file path write access using the…
From Prospect to Partner: Jon Stone Shares HackerOne Career Story
At HackerOne, SDRs focus on prospecting, qualifying leads, and setting up meetings for AEs, while developing these skills to take on more responsibilities, including closing deals…