Selective disclosure in the identity wallet: How users share the data that is really needed

Name, date of birth, address, email address, passwords, tax records, or payroll – all this sensitive user data is stored by companies in huge databases to identify individuals for digital services. Although companies have long applied limits to employe… Continue reading Selective disclosure in the identity wallet: How users share the data that is really needed

Millions of files with potentially sensitive information exposed online, researchers say

A survey by Censys found 314,000 distinct internet-connected devices and web servers with open directory listings.

The post Millions of files with potentially sensitive information exposed online, researchers say appeared first on CyberScoop.

Continue reading Millions of files with potentially sensitive information exposed online, researchers say

Cl0p’s MOVEit attack tally surpasses 2,000 victim organizations

The number of victim organizations hit by Cl0p via vulnerable MOVEit installations has surpassed 2,000, and the number of affected individuals is now over 60 million. The victim organizations are overwhelmingly based in the US. “The most heavily … Continue reading Cl0p’s MOVEit attack tally surpasses 2,000 victim organizations

Airbus Launches Investigation After Hacker Leaks Data

Airbus has launched an investigation after a hacker claimed to have breached the company’s systems and leaked some business documents.
The post Airbus Launches Investigation After Hacker Leaks Data appeared first on SecurityWeek.
Continue reading Airbus Launches Investigation After Hacker Leaks Data

LockBit leaks sensitive data from maximum security fence manufacturer

The LockBit ransomware group has breached Zaun, a UK-based manufacturer of fencing systems for military sites and critical utilities, by compromising a legacy computer running Windows 7 and using it as an initial point of access to the wider company ne… Continue reading LockBit leaks sensitive data from maximum security fence manufacturer

Almost all VPNs are vulnerable to traffic-leaking TunnelCrack attacks

Several vulnerabilities that affect most VPN products out there can be exploited by attackers to read user traffic, steal user information, or even attack user devices, researchers have discovered. “Our attacks are not computationally expensive, … Continue reading Almost all VPNs are vulnerable to traffic-leaking TunnelCrack attacks

Points.com Vulnerabilities Allowed Customer Data Theft, Rewards Program Hacking

Multiple vulnerabilities in the airline and hotel rewards platform points.com could have led to personal information theft and unauthorized administrative access.
The post Points.com Vulnerabilities Allowed Customer Data Theft, Rewards Program Hacking … Continue reading Points.com Vulnerabilities Allowed Customer Data Theft, Rewards Program Hacking

VirusTotal Provides Clarifications on Data Leak Affecting Premium Accounts

VirusTotal has provided clarifications on the recent data leak that resulted in the exposure of information on 5,600 of the threat analysis service’s customers.
The post VirusTotal Provides Clarifications on Data Leak Affecting Premium Accounts appear… Continue reading VirusTotal Provides Clarifications on Data Leak Affecting Premium Accounts