Collaborate Disseminate
Often claimed as a worst-case scenario, a container breakout vulnerability has been discovered in RunC, the universal container runtime used by Docker, Kubernetes and other containerization systems. Further research has discovered that a similar versio… Continue reading High Severity RunC Vulnerability Exposes Docker And Kubernetes Hosts
Dunkin’ Brands Inc. (“Dunkin’”) said that bad actors recently used credential stuffing attacks to target some DD Perks accounts. Kari McHugh, senior director of customer relations at Dunkin’, wrote in a sample letter sent to the… Continue reading Dunkin’ Says Credential Stuffing Attacks Targeted DD Perks Accounts
Two U.S. Senators expressed their concern that federal government employees could be undermining the United States’ national security by using VPNs made by foreign companies. In a letter dated 7 February 2019, U.S. Senators Marco Rubio (R-FL) and… Continue reading U.S. Senators Concerned by Government Employees’ Use of Foreign VPNs
Australia’s security agencies have launched an investigation into a digital attack attempt against the country’s Federal Parliament. Sources told the Australian Broadcasting Company that security personnel caught digital attackers in the ea… Continue reading Australia Investigating Digital Attack Attempt against Federal Parliament
Phishers are leveraging Google Translate in their attempts to steal the login credentials for users’ Google and Facebook accounts. Larry Cashdollar, a member of Akamai’s Security Intelligence Response Team (SIRT), received an email in early… Continue reading Phishers Leveraging Google Translate to Target Google and Facebook Users
Vulnerabilities in software used by 200 Vermont municipalities left town employees’ Social Security Numbers and other information exposed. Brett Johnson, owner of IT company simpleroute, discovered the flaws after two Vermont towns hired him to d… Continue reading Software Vulnerabilities Used by 200 VT Towns Left Employees’ SSNs Exposed
Scammers are now using the threat of channel suspension to coerce YouTube content creators into meeting their demands and sending over money. These digital attackers are specifically targeting YouTube’s policy infringement system through which us… Continue reading Scammers Threatening YouTube Content Creators with Channel Suspension
Home design website and community Houzz revealed that a security incident might have exposed some users’ personal and account data. On 1 February, Houzz published a security update explaining that it detected the security event in late December 2… Continue reading Houzz Says Security Incident Might Have Exposed User Data
European aerospace corporation Airbus SE has revealed that a digital security incident recently affected some of its computer systems. In a press release published on 30 January, Airbus confirmed that its “Commercial Aircraft business” info… Continue reading Airbus Reveals It Suffered a Digital Security Incident
A federal judge has denied the approval of a proposed $50 million settlement to a class action lawsuit over a data breach at Yahoo. On 28 January, Judge Lucy Koh rejected the settlement in a order submitted to the San Jose division of the U.S. District… Continue reading Judge Denies Approval of $50M Settlement to Yahoo Data Breach Lawsuit