Collaborate Disseminate
Last week, the team behind LastPass, a password manager website, released an update to patch a security vulnerability that exposes credentials entered by the users on a previously visited site. This vulnerability would let the websites steal credential… Continue reading LastPass patched a security vulnerability from the extensions generated on pop-up windows
Last week, the team at CircleCI came across with a security breach incident that involved CircleCI and a third-party analytics vendor. An attacker got access to the user data including usernames, email addresses that were associated with GitHub and Bit… Continue reading CircleCI reports of a security breach and malicious database in a third-party vendor account
As per a recent report by Naked Security, Google is planning to remove XSS Auditor from its Chrome web browser which is its built-in function designed for detecting cross-site scripting (XSS) vulnerabilities. Usually, an attacker injects their ow… Continue reading Google plans to remove XSS Auditor used for detecting XSS vulnerabilities from its Chrome web browser
Yesterday, Google Calendar was down for nearly three hours around the world. Calendar users that were trying to access the service faced a 404 error message through their browsers from around 10 AM ET to 12:40 PM ET. Google updated the service details … Continue reading Google Calendar was down for nearly three hours after a major outage
Microsoft has taken steps to release security updates for unsupported but still widely-used Windows operating systems like XP and Windows 2003. The company took this move as a part of its May 14 Patch Tuesday, due to the discovery of a “wormable&… Continue reading Microsoft releases security updates: a “wormable” threat similar to WannaCry ransomware discovered
This week, NATIONAL VULNERABILITY DATABASE (NVD) identified an integer overflow flaw in libssh2 before the release of version 1.8.1 which could lead to an out of bounds write. A remote attacker could take advantage of this flaw to compromise an SSH ser… Continue reading Facebook confessed another data breach; says it “unintentionally uploaded” 1.5 million email contacts without consent
Yesterday the team at Mozilla announced that the company is receiving hundreds of bug reports and feature requests from Firefox users on a daily basis. The team noted that it’s important to get the bugs fixed as soon as possible for the smooth fu… Continue reading Mozilla developers have built BugBug which uses machine learning to triage Firefox bugs
Last year, the company announced about adopting an approach to anti-tracking considering user data privacy. The company listed a few key initiatives mitigating harmful practices like fingerprinting and cryptomining. Yesterday, Mozilla announced that it… Continue reading Mozilla adds protection against fingerprinting and Cryptomining scripts in Firefox Nightly and Beta
Yesterday, IBM launched its Blockchain World Wire, a global blockchain network for cross-border payments that will make use of Stablecoin by U.S. dollars and cryptocurrency to make near real-time cross border financial transactions. It is based on dist… Continue reading IBM announces the launch of Blockchain World Wire, a global blockchain network for cross-border payments
After a long break from fundraising, yesterday Cloudflare, a U.S. based company that provides content delivery network services, Internet security, etc, announced that it raised $150 million of funding. The company also announced the joining of Stan Me… Continue reading Cloudflare raises $150M with Franklin Templeton leading the latest round of funding