Skip to main content

Security News

Filter by:

Jenkins struck by 'Confluenza' as US Cyber Command warns Atlassian flaw 'cannot wait'

How was your weekend? Got some patching done? The Jenkins team issued a reminder over the weekend that one should keep one's systems patched as it found itself with a compromised Confluence service.…
The Register 6 Sep 2021 10485 Views

ProtonMail Shares Activist's IP Address With Authorities Despite Its "No Log" Claims

End-to-end encrypted email service provider ProtonMail has drawn criticism after it ceded to a legal request and shared the IP address of anti-gentrification activists with law enforcement authorities, leading to their arrests in France. The Switzerland-based company...
The Hacker News 6 Sep 2021 10465 Views

SEC fines eight investment firms for cybersecurity breaches that leaked client info

Thousands of people had their personal information leaked by eight SEC-registered broker dealers and investment advisory firms over the last three years.
ZDnet 3 Sep 2021 319 Views

NSA: We 'don't know when or even if' a quantum computer will ever be able to break today's public-key encryption

Then again, it would say that America's National Security Agency has published an FAQ about quantum cryptography, saying it does not know "when or even if" a quantum computer will ever exist to "exploit" public-key cryptography.…
The Register 2 Sep 2021 10270 Views

Fujitsu says stolen data being sold on dark web 'related to customers'

A group called "Marketo" has claimed it has 4 GB of stolen data and purports to have 70 bids on it already.
ZDnet 31 Aug 2021 360 Views

Passport info and healthcare data leaked from Indonesia's COVID-19 test-and-trace app for travelers

About 1.3 million people had their sensitive personal data, COVID-19 test results and more exposed on an open server.
ZDnet 31 Aug 2021 334 Views

Microsoft Warns of Widespread Phishing Attacks Using Open Redirects

Microsoft is warning of a widespread credential phishing campaign that leverages open redirector links in email communications as a vector to trick users into visiting malicious websites while effectively bypassing security software. "Attackers combine these links with social engineering baits that impersonate well-known productivity tools...
The Hacker News 29 Aug 2021 11653 Views

Azure Cosmos DB alert: This critical vulnerability puts users at risk

Cosmos DB is in serious trouble thanks to ChaosDB, a critical vulnerability in the Azure cloud database. It enables anyone to take remote control of your databases. Fortunately, there is a fix.
ZDnet 28 Aug 2021 279 Views

Cloudflare says it stopped the largest DDoS attack ever reported

Cloudflare's system detected and mitigated a 17.2 million request-per-second DDoS attack, which they said is three times larger than any previous one.
ZDnet 28 Aug 2021 304 Views

Ragnarok ransomware releases master decryptor after shutdown

Ragnarok ransomware gang appears to have called it quits and released the master key that can decrypt files locked with their malware.
Bleeping Computer 27 Aug 2021 184 Views