Author Archives: Savia Lobo

Ericsson’s expired software certificate issue causes massive outages in UK’s O2 and Japan’s SoftBank network services

Posted on by

Yesterday, the Swedish networking and telecommunications company, Ericsson reported an issue in their core software which caused network disturbances for some of its customers. This issue was responsible for a data outage across 11 countries including … Continue reading Ericsson’s expired software certificate issue causes massive outages in UK’s O2 and Japan’s SoftBank network services

Marriott’s Starwood guest database faces a massive data breach affecting 500 million user data

Posted on by

Last week, a popular Hospitality company, Marriott International, unveiled details about a massive data breach, which exposed the personal and financial information of its customers. According to Marriott, this breach was happening over the past four y… Continue reading Marriott’s Starwood guest database faces a massive data breach affecting 500 million user data

How 3 glitches in Azure Active Directory MFA caused a 14-hour long multi-factor authentication outage in Office 365, Azure and Dynamics services

Posted on by

Early this week, Microsoft posted a report on what caused the multi-factor authentication outage in its Office 365 and Azure last week, which prevented users from signing into their cloud services for 14 hours. Microsoft researchers reported that they … Continue reading How 3 glitches in Azure Active Directory MFA caused a 14-hour long multi-factor authentication outage in Office 365, Azure and Dynamics services

Malicious code in npm ‘event-stream’ package targets a bitcoin wallet and causes 8 million downloads in two months

Posted on by

Last week Ayrton Sparling, a Computer Science major at CSUF, California disclosed that the popular npm package, event-stream, contains a malicious package named flatmap-stream. He disclosed the issue via the GitHub issue on the&#160… Continue reading Malicious code in npm ‘event-stream’ package targets a bitcoin wallet and causes 8 million downloads in two months

U.S. Postal Service patches an API exploit that impacted 60 million USPS users’ data

Posted on by

Early this week, the U.S.Postal Service patched an API exploit that could allow users with an account on USPS.com to view other users’ account details and also modify account details on their behalf. This exploit had an impact on 60 million USPS … Continue reading U.S. Postal Service patches an API exploit that impacted 60 million USPS users’ data

Researchers discover a new Rowhammer attack, ‘ECCploit’ that bypasses Error Correcting Code protections

Posted on by

Yesterday, researchers from the Vrije Universiteit Amsterdam’s VUSec group announced that the new Rowhammer attack, known as ECCploit, bypasses ECC protections built into several widely used models of DDR3 chips. The… Continue reading Researchers discover a new Rowhammer attack, ‘ECCploit’ that bypasses Error Correcting Code protections

A multi-factor authentication outage strikes Microsoft Office 365 and Azure users

Posted on by

Yesterday, Microsoft Azure and Office 365 users had trouble logging into their accounts. The problem for this is a multi-factor authentication issue which prevented users to sign into their services. The outage started at 04:39 UTC, yesterday, with Azu… Continue reading A multi-factor authentication outage strikes Microsoft Office 365 and Azure users

Chinese company ZTE Corp to assist the Venezuelan government to monitor citizen behavior using ‘Fatherland Card’

Posted on by

ZTE Corporation, a Chinese multinational telecommunications company, is assisting Venezuela to create a system that can monitor citizen behavior through a new identification card named ‘Fatherland Card’. A few years ago, in 2008, Venezuelan… Continue reading Chinese company ZTE Corp to assist the Venezuelan government to monitor citizen behavior using ‘Fatherland Card’