January 2021 - Page 25 of 50

16 January, 2021
No Comments

Undisclosed Apache Velocity XSS Vulnerability Impacts GOV Sites

Undisclosed Apache Velocity XSS Vulnerability Impacts GOV Sites An undisclosed Cross-Site Scripting (XSS) vulnerability in Apache Velocity Tools can be exploited by unauthenticated attackers to target government sites, including NASAand NOAA. Although 90 days have elapsed since the vulnerability was reported and patched, BleepingComputer is not aware of a formal disclosure made by the project. Apache Velocity is a

15 January, 2021
No Comments

UN Data Breach Exposes Over 100,000 UN Employees’ Details

UN Data Breach Exposes Over 100,000 UN Employees’ Details Sakura Samurai discovered an endpoint that exposed GitHub credentials on a United Nations Environment Program (UNEP) subdomain, which allowed them to access more than 100,000 UN employees’ records. A group of cybersecurity researchers from Sakura Samurai accessed around 100,000 personal records and login credentials of United Nations’ (UN)

15 January, 2021
No Comments

Verified Twitter Accounts Hacked In $580k ‘Elon Musk’ Crypto Scam

Verified Twitter Accounts Hacked In $580k ‘Elon Musk’ Crypto Scam Threat actors are hacking verified Twitter accounts in an Elon Musk cryptocurrency giveaway scam that has recently become widely active. There is nothing new about cryptocurrency scams on Twitter, especially ones pretending to be giveaways from Elon Musk. In 2018, scammers raked in $180,000 using

15 January, 2021
No Comments

Facebook Sues Makers Of Malicious Chrome Extensions For Scraping Data

Facebook Sues Makers Of Malicious Chrome Extensions For Scraping Data Facebook has taken legal action against the makers of malicious Chrome extensions used for scraping user-profiles and other information from Facebook’s website and from users’ systems without authorization. The two defendants developed and distributed the malicious browser extensions through the Chrome Web Store working under the

Privacy Ninja

DPO-As-A-Service

DPTM Certification Readiness Consultancy

PDPA Awareness Training

Cyber Hygiene Training

Compromised Credentials Monitoring

Email Phishing

Vulnerability Assessment

Web Penetration Testing

Mobile Penetration Testing

Thick Client Penetration Testing

API Penetration Testing

On-Prem & Cloud Network Penetration Testing

Email Spoofing Prevention

Source Code Review

Smart Contract Audit

Cyber Essentials Bundle (Coming Soon)

Month: January 2021

Undisclosed Apache Velocity XSS Vulnerability Impacts GOV Sites

UN Data Breach Exposes Over 100,000 UN Employees’ Details

Verified Twitter Accounts Hacked In $580k ‘Elon Musk’ Crypto Scam

Facebook Sues Makers Of Malicious Chrome Extensions For Scraping Data

Categories

Privacy Ninja

Data Protection

Training

Managed Services

Cybersecurity

Location

Newsletter