Rapid7 Flags Multiple Flaws in Sigma Spectrum Infusion Pumps

Security researchers at Rapid7 are warning about multiple secuirty vulnerabilities impacting Baxter’s Sigma Spectrum infusion pumps, including issues that could lead to the leakage of credential.
In an advisory published Thursday, Rapid7 called attenti… Continue reading Rapid7 Flags Multiple Flaws in Sigma Spectrum Infusion Pumps

Academics Devise Open Source Tool For Hunting Node.js Security Flaws

A group of academic researchers have designed an open source Node.js bug hunting tool that has already identified 180 security vulnerabilities.
read more Continue reading Academics Devise Open Source Tool For Hunting Node.js Security Flaws

LastPass Says Source Code Stolen in Data Breach

Password management software firm LastPass has suffered a data breach that led to the theft of source code and proprietary technical information.
read more Continue reading LastPass Says Source Code Stolen in Data Breach

BalkanID Adds $2.3M to Seed Funding Round

BalkanID, a Texas startup building technology in the Identity Governance and Administration (IGA) space, has added $2.3 million to its seed financing round, bringing the total raised to $8.1 million.
read more Continue reading BalkanID Adds $2.3M to Seed Funding Round

Privacy Activists Target Google Over French ‘Spam’ Emails

Google is breaking EU law by sending users of its email service Gmail direct advertising messages, activists said in a complaint sent to French regulators on Wednesday.
It is the latest in a long line of complaints filed by the activist group NOYB (Non… Continue reading Privacy Activists Target Google Over French ‘Spam’ Emails

Plex Confirms Database Breach, Data Theft

Popular streaming media platform Plex is scrambling to reset user passwords after a database hack that included the theft of emails, usernames, and encrypted passwords.
read more Continue reading Plex Confirms Database Breach, Data Theft

Privilege Escalation Flaw Haunts VMware Tools

Virtualization technology software giant VMware on Tuesday released patches to fix an important-severity security flaw in the VMware Tools suite of utilities.
The vulnerability, tracked as CVE-2022-31676, could be exploited by attackers to escalate pri… Continue reading Privilege Escalation Flaw Haunts VMware Tools

GitLab Patches Critical Remote Code Execution Vulnerability

DevOps platform GitLab has issued patches for a critical remote code execution vulnerability impacting its GitLab Community Edition (CE) and Enterprise Edition (EE) releases.
Tracked as CVE-2022-2884 (CVSS 9.9/10 severity), the security flaw can be exp… Continue reading GitLab Patches Critical Remote Code Execution Vulnerability

Novant Health Says Malformed Tracking Pixel Exposed Health Data to Meta

Healthcare services provider Novant Health has sent notifications to more than 1.3 million individuals that their protected health information (PHI) might have been inadvertently exposed to Facebook parent company Meta.
read more Continue reading Novant Health Says Malformed Tracking Pixel Exposed Health Data to Meta

FBI Warns of Proxies and Configurations Used in Credential Stuffing Attacks

The Federal Bureau of Investigation (FBI) has raised an alarm for cybercriminals using proxies and configurations to hide and automate credential stuffing attacks against companies in the United States.
read more Continue reading FBI Warns of Proxies and Configurations Used in Credential Stuffing Attacks