Clicky

Newly Patched Peloton API Flaws Exposed Users’ Private Data

Application Security , Endpoint Security , Incident & Breach Response Pen Test Partners: Millions Could Have Had Data Exposed Marianne Kolbasuk McGee (HealthInfoSec) • May 6, 2021     Photo: Peloton Security researchers say API flaws could have exposed the private data of millions of Peloton fitness equipment online service users for months before they …

Newly Patched Peloton API Flaws Exposed Users’ Private Data Read More »

Millions of Dell Devices Vulnerable to Update Driver Flaw

Endpoint Security , Governance & Risk Management , Patch Management Dell Has Patched Driver Issue Found by SentinelOne Jeremy Kirk (jeremy_kirk) • May 5, 2021     Dell’s headquarters in Round Rock, Texas (Photo: Jjpwiki via Wikipedia/CC) Dell has patched five flaws in a vulnerable firmware update driver that has shipped in millions of laptops, …

Millions of Dell Devices Vulnerable to Update Driver Flaw Read More »

Exim Bugs Put Millions of Mail Servers at Risk of Being Hacked (Fixes Available)

Softpedia News / Security 5. May 2021 Multiple critical vulnerabilities have been discovered in the Exim email server software by the Qualys Research Team. Some of these flaws can be chained together to achieve full remote unauthenticated code execution and root privileges.  Exim is a widely used mail transfer agent (MTA) that even comes pre-installed …

Exim Bugs Put Millions of Mail Servers at Risk of Being Hacked (Fixes Available) Read More »

DDoS attack knocks Belgian government websites offline

The attack overwhelmed the systems of a Belgian ISP, leading to widespread service outages and disruptions Many government websites and services in Belgium were knocked offline on Tuesday after Belnet, the internet service provider (ISP) for the country’s public sector, was hit by a massive distributed denial-of-service (DDoS) attack. According to Belnet, the attack started …

DDoS attack knocks Belgian government websites offline Read More »

Attack Taking Big Bite Out of Revenue

Breach Notification , Business Continuity Management / Disaster Recovery , Fraud Management & Cybercrime SEC Filing Predicts $10 Million to $15 Million Impact Marianne Kolbasuk McGee (HealthInfoSec) • May 5, 2021     SmileDirectClub, which sells teeth-straightening appliances, expects that a recent cyberattack, which disrupted the manufacturing of its products, will take a $10 million …

Attack Taking Big Bite Out of Revenue Read More »

New Study Warns of Security Threats Linked to Recycled Phone Numbers

A new academic study has highlighted a number of privacy and security pitfalls associated with recycling mobile phone numbers that could be abused to stage a variety of exploits, including account takeovers, conduct phishing and spam attacks, and even prevent victims from signing up for online services. Nearly 66% of the recycled numbers that were …

New Study Warns of Security Threats Linked to Recycled Phone Numbers Read More »

Google celebrates World Password Day 2021 with hope for a passwordless future

Today is World Password Day 2021, and while companies are touting the best password management practices, Google is hoping someday we won’t have to worry about them at all. According to the company, even the strongest passwords can be compromised.  “You may not realize it, but passwords are the single biggest threat to your online …

Google celebrates World Password Day 2021 with hope for a passwordless future Read More »

Belgium’s parliament and universities hit by cyber attack

Belgium”s parliament, universities, and scientific institutions have been targeted in a coordinated cyberattack. Belnet, the company that provides internet services to the country’s government agencies, said their network was “victim of a large-scale attack” on Tuesday. Unknown hackers committed a distributed denial of service (DDoS) attack at 11:00 (CEST), Belnet said, designed to prevent the …

Belgium’s parliament and universities hit by cyber attack Read More »

Scroll to Top