194
57 Views

A Twitter Bug Allowed Firefox To Store Cached Files Shared Via DMs

logicfish Security Cyber Security NewsHacking NewsNewsVulnerabilitiesbugcache filescache memorycached dataCyber Securityfirefoxfirefox web browserflawglitchMozilla Firefoxpersonal dataPersonal Informationtwittertwitter accounttwitter accountstwitter bugTwitter data sharingtwitter exploittwitter exploitedTwitter FailTwitter glitchTwitter vulnerabilityvulnerability All https://latesthackingnews.com   Discuss    Share

Twitter has recently disclosed a vulnerability that indirectly affected users’ privacy. As disclosed, this Twitter bug allowed a browser to



A Twitter Bug Allowed Firefox To Store Cached Files Shared Via DMs on Latest Hacking News.

254
32 Views

Watch: Rare Second World War footage of Bletchley Park-linked MI6 intelligence heroes emerges, shared online

logicfish Security watch rare second world footage bletchley park-linked intelligence heroes emerges shared online All https://go.theregister.co.uk   Discuss    Share
A glimpse of life at Whaddon Hall

Vid  An astonishingly rare film documenting British intelligence personnel, linked to the code-breakers at Bletchley Park, has been released by the park's trust, offering a glimpse of unsung heroes who helped win the Second World War.…

253
63 Views

Not only is Zoom's strong end-to-end encryption not actually end-to-end, its encryption isn't even that strong

logicfish Security only zooms strong end-to-end encryption actually isnt even that All https://go.theregister.co.uk   Discuss    Share
Another damning probe into vid-conf software emerges

Zoom has faced increased scrutiny and criticism as its usage soared from 10 million users a day to 200 million in a matter of months, all thanks to coronavirus pandemic lockdowns.…

204
36 Views

NSO Group: Facebook tried to license our spyware to snoop on its own addicts – the same spyware it's suing us over

logicfish Security group facebook tried license spyware snoop addicts same suing over All https://go.theregister.co.uk   Discuss    Share
Antisocial network sought surveillance tech to boost its creepy Onavo Protect app, it is claimed

NSO Group – sued by Facebook for developing Pegasus spyware that targeted WhatsApp users – this week claimed Facebook tried to license the very same surveillance software to snoop on its own social-media addicts.…

243
61 Views

ESA missions back doing science after precautionary pandemic plug pull: We talk to space boffins about Mars Express emergency command line

logicfish Security missions back doing science after precautionary pandemic plug pull talk space boffins about mars express emergency command line All https://go.theregister.co.uk   Discuss    Share
Meanwhile, three-quarters of NASA staff now staying at home

ESA's mission operations centre in Germany has got back to doing interplanetary science after a short stand-down due to COVID-19.…

171
62 Views

Serious Security Vulnerabilities Discovered In Rank Math WordPress Plugin

logicfish Security Cyber Security NewsHacking NewsNewsVulnerabilitiesbugflawpluginPluginsPrivilege Escalationsecurity fixSecurity Flawvulnerabilitiesvulnerabilityvulnerable WordPress pluginwordpresswordpress exploitwordpress patchWordPress pluginwordpress PluginsWordPress vulnerability All https://latesthackingnews.com   Discuss    Share

Extending the stream of vulnerable WordPress plugins, now joins Rank Math. Reportedly, a couple of serious security vulnerabilities existed in



Serious Security Vulnerabilities Discovered In Rank Math WordPress Plugin on Latest Hacking News.

169
18 Views

How Just Visiting A Site Could Have Hacked Your iPhone or MacBook Camera

logicfish Security Apple iOSApple iPhoneApple MacBookcamera hackHacking camerahacking iphoneiphone camera hackingsafari vulnerabilitysafari web browser All http://feedproxy.google.com   Discuss    Share
If you use Apple iPhone or MacBook, here we have a piece of alarming news for you.

Turns out merely visiting a website — not just malicious but also legitimate sites unknowingly loading malicious ads as well — using Safari browser could have let remote attackers secretly access your device's camera, microphone, or location, and in some cases, saved passwords as well.

Apple recently paid a $
224
80 Views

Zoom vows to spend next 90 days thinking hard about its security and privacy after rough week, meeting ID war-dialing tool emerges

logicfish Security zoom vows spend next days thinking hard about security privacy after rough week meeting war-dialing tool emerges All https://go.theregister.co.uk   Discuss    Share
Passwords-by-default feature may be faulty. But hey, who else just went from 10 to 200 million daily users?

Video-conferencing app maker Zoom has promised to do better at security after a bruising week in which it was found to be unpleasantly leaky in several ways.…

173
81 Views

Zoom Conferencing App Exposes Users Email IDs And Photos To Other Users

logicfish Security Cyber Security NewsHacking NewsNewsVulnerabilitiesconferencing appflawvulnerabilityZoomZoom appZoom bugZoom conferencing appZoom Desktop Conferencing appZoom exposes user email IDsZoom exposes user photosZoom flawZoom iOS appZoom leaked users dataZoom removed Facebook SDKzoom shared data with FacebookZoom vulnerabilityZoom Windows Client All https://latesthackingnews.com   Discuss    Share

One more privacy issue has been spotted in Zoom. This time, researchers have found that the Zoom app potentially exposes



Zoom Conferencing App Exposes Users Email IDs And Photos To Other Users on Latest Hacking News.

156
20 Views

Microsoft Edge Now Alerts Users Of Breached Passwords

logicfish Security Cyber Security NewsHacking NewsNewsbreached passwordsbrowserBrowser Fingerprintingbrowser trackingdevice fingerprintingEdgeEdge block unwanted programsEdge BrowserfingerprintingmicrosoftMicrosoft EdgeMicrosoft Edge alerts breached passwordsMicrosoft Edge Password MonitorPassword Monitorweb browser All https://latesthackingnews.com   Discuss    Share

Microsoft has recently rolled out the new version of its Edge browser. As announced, the new version comes with numerous



Microsoft Edge Now Alerts Users Of Breached Passwords on Latest Hacking News.

239
30 Views

If you use Twitter with Firefox in a shared computer account, you may have slightly spilled some private data on that PC

logicfish Security twitter with firefox shared computer account have slightly spilled some private data that All https://go.theregister.co.uk   Discuss    Share
HTTP header ends in own goal

Twitter on Thursday warned of an esoteric bug that, in limited circumstances, allowed users' non-public profile information to potentially fall into the hands of other users.…

187
70 Views

Critical Vulnerability In LINE Could Allow Admin Access To Official Account

logicfish Security Cyber Security NewsHacking NewsNewsVulnerabilitiesbugflawIDORInsecure Direct Object ReferenceLINE appLINE vulnerabilityvulnerability All https://latesthackingnews.com   Discuss    Share

A serious vulnerability existed in the messenger app LINE that allowed admin access to Official Accounts. Line not only patched



Critical Vulnerability In LINE Could Allow Admin Access To Official Account on Latest Hacking News.

184
19 Views

Two Local Security Vulnerabilities Discovered Zoom macOS Client

logicfish Security Cyber Security NewsHacking NewsNewsVulnerabilitiesApple Macbugconference hackconferencing appflawlocal privilege escalationmacOSPrivilege EscalationvulnerabilitiesvulnerabilityZoomZoom appZoom bugZoom conferencing appZoom Desktop Conferencing appZoom flawZoom macOS Clientzoom shared data with FacebookZoom vulnerabilityzoom zero-day All https://latesthackingnews.com   Discuss    Share

Continuing with the trail of security issues, now there are two security vulnerabilities in the Zoom macOS Client. The vulnerabilities,



Two Local Security Vulnerabilities Discovered Zoom macOS Client on Latest Hacking News.

235
30 Views

Why is ransomware still a thing? One-in-three polled netizens say they would cave to extortion demands

logicfish Security ransomware still thing one-in-three polled netizens they would cave extortion demands All https://go.theregister.co.uk   Discuss    Share
American young adults are easiest marks for criminals, study reckons

Want to know why ransomware is still rampant? One in three surveyed folks in North Americans said they would be willing to pay up to unscramble their files once their personal systems were infected.…

169
19 Views

Zoom Client On Windows Exposes Windows Credentials To Attackers

logicfish Security Cyber Security NewsHacking NewsNewsbugCredentialsflawUNC pathUniversal Naming Convention (UNC)urlvulnerabilityWindows credentialsZoomZoom appZoom bugZoom conferencing appZoom Desktop Conferencing appZoom flawZoom vulnerabilityZoom Windows Client All https://latesthackingnews.com   Discuss    Share

Zoom has once again made it to the news owing to another privacy issue. As discovered, Zoom client on Windows



Zoom Client On Windows Exposes Windows Credentials To Attackers on Latest Hacking News.

210
67 Views

Rethinking VPN: Tailscale startup packages Wireguard with network security

logicfish Security rethinking tailscale startup packages wireguard with network security All https://go.theregister.co.uk   Discuss    Share
'A whole bunch of tunnels': Mesh networking with per-node permissions and OAuth security

Interview  WireGuard, a new VPN protocol with both strong performance and easy setup, has been adopted by startup Tailscale as the basis of a peer-to-peer remote networking system that is both secure and quick to configure.…

192
67 Views

Magecart Hackers Inject iFrame Skimmers in 19 Sites to Steal Payment Data

logicfish Security Credit card breachcredit card hackingCredit Card SkimmersE-commerce websiteeCommerce SoftwareJS SniffersMagecartMagecart hackerswebsite hacking All http://feedproxy.google.com   Discuss    Share
Cybersecurity researchers today uncovered an ongoing new Magecart skimmer campaign that so far has successfully compromised at least 19 different e-commerce websites to steal payment card details of their customers.

According to a report published today and shared with The Hacker News, RiskIQ researchers spotted a new digital skimmer, dubbed "MakeFrame," that injects HTML iframes into
185
63 Views

Webinar — Autonomous Breach Protection: The New Security Paradigm Shift

logicfish Security Autonomous Breach ProtectioncybersecurityCynetSecurity Operation Centers All http://feedproxy.google.com   Discuss    Share
Organizations today struggle with multi-product security stacks, that are expensive to purchase and maintain and also require a highly skilled security team to manually integrate and operate.

The current Coronavirus crisis that has imposed a strict quarantine on organizations and security teams highlights the inherent weakness in relying on manual operation.

This gives rise to a new security
220
58 Views

For the past five years, every FBI secret spy court request to snoop on Americans has sucked, says watchdog

logicfish Security past five years every secret court request snoop americans sucked says watchdog All https://go.theregister.co.uk   Discuss    Share
Feeling secure? Sucker

Analysis  The FBI has not followed internal rules when applying to spy on US citizens for at least five years, according to an extraordinary report [PDF] by the Department of Justice’s inspector general.…

161
68 Views

WARNING: Hackers Install Secret Backdoor on Thousands of Microsoft SQL Servers

logicfish Security cryptocurrencyCyber Attackdatabase hackingdatabase securityhacking newsMalware attackMSSQL hackingMySQLwindows malware All http://feedproxy.google.com   Discuss    Share
Cybersecurity researchers today uncovered a sustained malicious campaign dating back to May 2018 that targets Windows machines running MS-SQL servers to deploy backdoors and other kinds of malware, including multi-functional remote access tools (RATs) and cryptominers.

Named "Vollgar" after the Vollar cryptocurrency it mines and its offensive "vulgar" modus operandi, researchers at Guardicore
231
39 Views

Microsoft finds itself in odd position of sparing elderly, insecure protocols: Grants stay of execution to TLS 1.0, 1.1

logicfish Security microsoft finds itself position sparing elderly insecure protocols grants stay execution All https://go.theregister.co.uk   Discuss    Share
A few more months to get those servers upgraded 'in light of current global circumstances'

Microsoft has blinked once again and delayed disabling TLS 1.0 and 1.1 by default in its browsers until the latter part of 2020.…

240
45 Views

Cyberscum target Microsoft SQL Server boxen – and some careless sysadmins were reinfected after cleaning it out

logicfish Security cyberscum target microsoft server boxen some careless sysadmins were reinfected after cleaning All https://go.theregister.co.uk   Discuss    Share
Two-year campaign observed by Guardicore

A malware gang is targeting Microsoft SQL servers with such precision that they're disabling rival gangs' software nasties in their quest to steal control of servers from their rightful owners.…

235
39 Views

Cloudflare family-friendly DNS service flubs first filtering foray: Vital LGBTQ, sex-ed sites blocked 'by mistake'

logicfish Security cloudflare family-friendly service flubs first filtering foray vital lgbtq sex-ed sites blocked mistake All https://go.theregister.co.uk   Discuss    Share
For a biz that prides itself on not censoring the internet, it sure likes censoring the internet

Cloudflare, known for free speech advocacy, rolled out a self-styled family-friendly variation of its DNS service to block adult content – and ended up denying access to LGBTQ websites and sex education resources.…

191
22 Views

GitLab Addressed Multiple Important Vulnerabilities With The Latest Releases

logicfish Security Cyber Security NewsHacking NewsNewsVulnerabilitiesBug Bountybug bounty programflawflawsgitlabGitLab Bug Bounty ProgramGitLab flawsGitLab vulnerabilityhackeroneremote code executionvulnerabilitiesvulnerability All https://latesthackingnews.com   Discuss    Share

GitLab has recently addressed numerous security vulnerabilities in their latest software releases. While all the flaws belonged to different categories,



GitLab Addressed Multiple Important Vulnerabilities With The Latest Releases on Latest Hacking News.

251
73 Views

Marriott Hotels hacked AGAIN: Two compromised employee logins abused to siphon off 5.2m guests' personal info

logicfish Security marriott hotels hacked again compromised employee logins abused siphon guests personal info All https://go.theregister.co.uk   Discuss    Share
How many customers' deets? It's not saying just yet

Updated  Marriott Hotels has suffered its second data spillage in as many years after an "unexpected amount" of guests' data was accessed through two compromised employee logins, the under-fire chain has confirmed.…

175
71 Views

E-Commerce Site Tupperware Suffered Credit Card Skimmer Attack

logicfish Security Cyber AttackCyber Security NewsHacking NewsNewsCyber attackdigital paymentFinancial SecurityhackedMageCartpaymentPayment cardsPayment DetailsskimmerSkimmingTupperware card skimmer attackTupperware hacked All https://latesthackingnews.com   Discuss    Share

Recently, US-based online store popular for kitchenware, ‘Tupperware’, has suffered a cyber attack. As discovered by  researchers, hackers placed a



E-Commerce Site Tupperware Suffered Credit Card Skimmer Attack on Latest Hacking News.

220
64 Views

Unpatched Zoom App Bug Lets Hackers Steal Your Windows Password

logicfish Security hack windows passwordhacking newsSMB relay attackVideo Conferencing Softwarevideo hackwindows securityZoom All http://feedproxy.google.com   Discuss    Share
Zoom has been there for nine years, but the immediate requirement of an easy-to-use video conferencing app during the coronavirus pandemic made it overnight a favorite tool for millions of people.

Though Zoom is an efficient online video meeting solution, it's still not the best choice in terms of privacy and security.

According to the latest finding by cybersecurity expert @_g0dmode, which
225
76 Views

At the Supreme Court, Morrisons pops data breach liability win into its trolley – but it's not a get-out-of-compo free card for businesses

logicfish Security supreme court morrisons pops data breach liability into trolley get-out-of-compo free card businesses All https://go.theregister.co.uk   Discuss    Share
Vicarious liability now applies to intentional leaks, top court says

Morrisons supermarket is not liable for the actions of a disgruntled employee who deliberately leaked nearly 100,000 employees' payroll data online, the Supreme Court has ruled.…

229
58 Views

Apple's latest macOS Catalina update mysteriously borks SSH for some unlucky fans. What could be the cause?

logicfish Security apples latest macos catalina update mysteriously borks some unlucky fans what could cause All https://go.theregister.co.uk   Discuss    Share
Connecting to a port greater than 8192 using a hostname now stalls, possibly

Apple's latest update to macOS Catalina appears to have broken SSH for some users.…

206
38 Views

Zoom's end-to-end encryption isn't actually end-to-end at all. Good thing the PM isn't using it for Cabinet calls. Oh, for f...

logicfish Security zooms end-to-end encryption isnt actually good thing using cabinet calls All https://go.theregister.co.uk   Discuss    Share
Super-crypto actually normal TLS, lawsuit launched over Facebook API usage, privacy policy rewritten

UK Prime Minister Boris Johnson sparked security concerns on Tuesday when he shared a screenshot of “the first ever digital Cabinet” on his Twitter feed. It revealed the country’s most senior officials and ministers were using bog-standard Zoom to discuss critical issues facing Blighty.…

209
23 Views

Singapore government scraps physical 2FA tokens for government services

logicfish Security singapore government scraps physical tokens services All https://go.theregister.co.uk   Discuss    Share
There's an app for that. Or text, if you dare. Or even retail outlets

Singapore will bin the physical tokens used to provide two-factor authentication (2FA) for some digital government services.…

225
67 Views

Epic Games floats $1m bounty to ID source of 'commercial smear' claiming Houseparty chat app has been hacked

logicfish Security epic games floats bounty source commercial smear claiming houseparty chat been hacked All https://go.theregister.co.uk   Discuss    Share
Lots of non-savvy users may be recycling previously hacked creds

Group video chat app Houseparty has offered a $1m bounty to identify what it claims is an organised campaign to falsely depict it as a hackers' backdoor.…

Newsletter
Sign up for our newsletter


Unsubscribe at Anytime | Privacy Policy
Welcome, DisDroidians

Send a donation to get your link on the front page - send 0.5mBTC - Or your RSS feed - send 4mBTC.

Please Donate
Send a donation to get your link on the front page - send 0.2mBTC - Or your RSS feed - send 2mBTC here:

 
 
 

Banner

Most Viewed Stories
Latest Comments
Statistics
Disdroid.co.uk - ranking and value