misconfiguration – Page 9 – WindowsTechs.com

Open-source tool BlobHunter helps pinpoint public Azure blobs that might contain sensitive files

Posted on February 8, 2021 by Zeljka Zorz

CyberArk researchers have released BlobHunter, an open-source tool organizations can use to discover Azure blobs containing sensitive files they have inadvertently made public. The cloud storage misconfiguration problem The many advantages of using the… Continue reading Open-source tool BlobHunter helps pinpoint public Azure blobs that might contain sensitive files→

The 5G toolbox of defense

Posted on January 6, 2021 by Help Net Security

For the mobile communications industry, security has always held a prominent role. However, the onset of 5G – which introduces new network architectures, services and devices – raises the stakes and increases the challenge for network operators. 5G is … Continue reading The 5G toolbox of defense→

Accelerated cloud migration may leave business data insecure

Posted on December 16, 2020 by Help Net Security

The pandemic has accelerated digital transformation for 88% of global organizations. However, this increase in cloud adoption may leave business data insecure, Trend Micro reveals. Accelerated cloud migration “It’s a very positive sign that… Continue reading Accelerated cloud migration may leave business data insecure→

Pharma Giant Pfizer Leaks Customer Prescription Info, Call Transcripts

Posted on October 20, 2020 by Tara Seals

Hundreds of medical patients taking cancer drugs, Premarin, Lyrica and more are now vulnerable to phishing, malware and identity fraud. Continue reading Pharma Giant Pfizer Leaks Customer Prescription Info, Call Transcripts→

Google Cloud Buckets Exposed in Rampant Misconfiguration

Posted on September 22, 2020 by Tara Seals

A too-large percentage of cloud databases containing highly sensitive information are publicly available, an analysis shows. Continue reading Google Cloud Buckets Exposed in Rampant Misconfiguration→

Unsecured Microsoft Bing Server Leaks Search Queries, Location Data

Posted on September 21, 2020 by Lindsey O'Donnell

Data exposed included search terms, location coordinates, and device information – but no personal data. Continue reading Unsecured Microsoft Bing Server Leaks Search Queries, Location Data→

Cloud Leak Exposes 320M Dating-Site Records

Posted on September 14, 2020 by Tara Seals

A misconfigured, Mailfire-owned Elasticsearch server impacted 70 dating and e-commerce sites, exposing PII and details such as romantic preferences. Continue reading Cloud Leak Exposes 320M Dating-Site Records→

Cyber Security Roundup for September 2020

Posted on September 1, 2020 by SecurityExpert

A roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, August 2020.Taking security training courses and passing certification exams are common ingredients in th… Continue reading Cyber Security Roundup for September 2020→

Doki Backdoor Infiltrates Docker Servers in the Cloud

Posted on July 30, 2020 by Tara Seals

The malware is a new payload that uses Dogecoin wallets for its C2, and spreads via the Ngrok botnet. Continue reading Doki Backdoor Infiltrates Docker Servers in the Cloud→

Attackers exploit Twilio’s misconfigured cloud storage, inject malicious code into SDK

Posted on July 23, 2020 by Zeljka Zorz

Twilio has confirmed that, for 8 or so hours on July 19, a malicious version of their TaskRouter JS SDK was being served from their one of their AWS S3 buckets. “Due to a misconfiguration in the S3 bucket that was hosting the library, a bad actor… Continue reading Attackers exploit Twilio’s misconfigured cloud storage, inject malicious code into SDK→