Security News

The storage server was left open for about a week and exposed everything from sensitive FBI investigations to data related to patients with AIDS.

A tale of XSS, SQL injection and OAuth implementation Crafty infosec bods exploited XSS vulns on dusty corners of Epic Games’ web infrastructure to steal Fortnite gamers’ login tokens and...

A California-based Voice-Over-IP (VoIP) services provider VOIPO has accidentally left tens of gigabytes of its customer data, containing millions of call logs, SMS/MMS messages, and plaintext...

Data transfer tools caught not checking what exactly they're downloading A decades-old oversight in the design of Secure Copy Protocol (SCP) tools can be exploited by malicious servers to...

Plus, Vita boot ROM caper, TCL caught slinging Android malware, etc Roundup This week we saw a Huawei official cuffed (again), telcos caught selling tracking data (again) and Microsoft patching...

Plus, bonus shock: Adobe spares Flash in January patch dump Microsoft has released the first Patch Tuesday bundle of the year, patching up 49 CVE-listed security vulnerabilities and issuing two...

AppGuard launched AppGuard Server, the server protection solution built from scratch that addresses specific server only requirements. It is the lightest weight solution available, ensuring no...

Hackers could remotely brick servers by launching firmware attacks that involve the Baseboard Management Controller (BMC), researchers at firmware security company Eclypsium have demonstrated. read more

Out-of-band management systems can be a weak link to securing your data center. Here's how a debug utility can be leveraged to brick your systems.

Another leak, this time it's personal Developing A server containing personal information, including social security numbers, of current and former NASA workers may have been hacked, and its data...