Data-Enriched Profiles on 1.2B People Exposed in Gigantic Leak

Although the data was legitimately scraped by legally operating firms, the security and privacy implications are numerous. Continue reading Data-Enriched Profiles on 1.2B People Exposed in Gigantic Leak

Unsecured Adobe Server Exposes Data for 7.5 Million Creative Cloud Users

The U.S. multinational computer software company Adobe has suffered a serious security breach earlier this month that exposed user records’ database belonging to the company’s popular Creative Cloud service.

With an estimated 15 million subscribers, A… Continue reading Unsecured Adobe Server Exposes Data for 7.5 Million Creative Cloud Users

This Week in Security: Zeroconf Strikes Again, Lastpass Leaks your Last Password, And All Your Data is Belong to Us

VoIP cameras, DVRs, and other devices running the Web Services Dynamic Discovery (WSDD) protocol are being used in a new type of DDoS attack. This isn’t the first time a zeroconf service has been hijacked as part of a DDoS, as UPnP has also been abused in similar ways.

Feel …read more

Continue reading This Week in Security: Zeroconf Strikes Again, Lastpass Leaks your Last Password, And All Your Data is Belong to Us

IT Firm Manager Arrested in the Biggest Data Breach Case of Ecuador’s History

Ecuador officials have arrested the general manager of IT consulting firm Novaestrat after the personal details of almost the entire population of the Republic of Ecuador left exposed online in what seems to be the most significant data breach in the c… Continue reading IT Firm Manager Arrested in the Biggest Data Breach Case of Ecuador’s History

Police raids after data on most of Ecuador’s citizens leaks online

If you’re a citizen of Ecuador, chances are that you’ve had your personal and financial information exposed after an ElasticSearch server was left unsecured.
Victims even include Wikileaks founder Julian Assange…
Continue reading Police raids after data on most of Ecuador’s citizens leaks online

Leaky database full of fake Groupon emails turns out to belong to crooks

Crooks made bogus accounts to buy tickets with fake credit cards, resold them to unsuspecting buyers, and left the database-o-fraud wide open. Continue reading Leaky database full of fake Groupon emails turns out to belong to crooks

Removing Search Guard from the Central Repository

We at Sonatype take our responsibility as stewards of the Central Repository (Central) very seriously, and for well over a decade we have been dedicated to the ideal of immutability when it comes to serving components to the community that relies … Continue reading Removing Search Guard from the Central Repository