Security News > 2020
New episode available now.
Not only that, search engines such as Google index public Trello boards, making it simple for anyone to uncover the boards' contents using a specialised type of search called a 'dork'. One of the worst Trello boards I came across, a HR onboarding Trello board, it's been reported and removed now.
Popular WordPress plugin Code Snippets recently received a patch for a high-severity vulnerability that can be exploited to take control of affected websites. The Code Snippets plugin, which has over 200,000 installations, provides admins with a graphical interface to run PHP code on their WordPress-powered websites by removing the need to add custom snippets to the theme's functions.
A former moderator for the now-defunct AlphaBay darknet marketplace site pleaded guilty this week to a federal racketeering charge and could face 20 years in federal prison, according to the U.S. Justice Department. As a moderator on the AlphaBay site, Herrell settled over 20,000 disputes between vendors and purchasers, according to court papers.
Understanding Data Breach Myth Vs. Reality.Watch this webinar OnDemand and learn three of the most common data breach myths.
Those third parties send Facebook information about your activities including things like opening an app on your mobile, logging into it online using your Facebook ID, or even just visiting a site. This piece of Facebook code is known more generically as a web bug, and it logs your activities on any site that embeds it, sending that information back to Facebook.
According to the confidential document, at least 42 U.N. servers were compromised in Geneva and Vienna, potentially exposing staff personnel data and sensitive documents for other organizations collaborating with the U.N. "Although it is unclear what documents and data the hackers obtained in the 2019 incident, the report implies that internal documents, databases, emails, commercial information and personal data may have been available to the intruders - sensitive data that could have far-reaching repercussions for staff, individuals and organisations communicating with and doing business with the U.N.," Ben Parker, with The New Humanitarian, said on Wednesday. Servers in three separate locations were compromised: the U.N. office at Vienna; the U.N. office at Geneva; and the U.N. Office of the High Commissioner for Human Rights headquarters, also in Geneva.
Will Britain's Huawei decision serve as a blueprint for other nations' 5G infrastructure rollouts? U.K. Prime Minister Boris Johnson on Tuesday announced that the country's four biggest telecommunications firms will be allowed to use equipment from Huawei for up to 35 percent of non-sensitive parts of their 5G and gigabit-capable networks.
Avast will pull the plug on Jumpshot, its controversial data analytics business, after it was revealed the company was harvesting its users' data. The Brit antivirus firm ran into trouble last month when a security researcher, Wladimir Palant, found that the company's Firefox browser extensions were collecting customers' browsing data, including URLs of sites they had visited, and per-device unique IDs, and selling it, apparently deanonymised, to customers such as Revlon, Tripadvisor and Intel.
Two Harvard undergraduates completed a project where they went out on the Dark Web and found a bunch of stolen datasets. Then they correlated all the information, and then combined it with...