Category: Cybersecurity News
-
Internet Archive, One of the Largest Digital Libraries, Suffers Data Breach Exposing 30M+ Users
Internet Archive, one of the largest online libraries of digital content and creator of the Wayback Machine which has collections of billions of websites over the years, has confirmed a recent data breach that exposed the data of millions of users. This occurs as they’ve been rebuilding their website amongst recent DDos (Distributed Denial of…
-
Two Critical Ubuntu Linux Vulnerabilities Within OverlayFS Discovered
Wiz, a cloud security provider, has discovered two vulnerabilities that allow privilege escalation on Ubuntu, a Linux distribution variant. These vulnerabilities can impact users from Ubuntu versions 18.04 LTS (Bionic Beaver) to the most recent versions. This includes 22.10 (Kinetic Kudu) and 23.04 (Lunar Lobster). The vulnerabilities were found in OverlayFS, a modern file system…
-
LastPass, A Widely-Used Password Manager, Suffers Data Breach
LastPass, a widely-used and recognized password manager from LogMeIn, recently made an announcement of a recent security breach. On their official blog, they acknowledged unusual activity within a third-party cloud storage service and stated steps they are currently taking. According to their blog post, a breacher was able to gain unauthorized access using information from…
-
Google Chrome Releases New Update 107 With Security, Performance Updates
Google has announced the release of Google Chrome version 107. This new Chrome, available for desktop and mobile (Android, iOS), brings many security and performance updates such as HEVC hardware decoding which may help with performance and security patches. HEVC hardware decoding is available which may help with performance for graphics and video. About 14…
-
Microsoft Confirms Reports Misconfigured Storage Location Causing Possible Leak
Microsoft last week confirmed in an advisory on a Microsoft Security Response Center post a report by SOCradar of a misconfigured Microsoft endpoint that was not in current use possibly exposing over 65,000 organizations’ data. This storage endpoint had communication between Microsoft and clients. Some of the data included in the misconfigured endpoint may have…
-
WordPress Releases 6.0.3 With Secure Fixes, Patches
WordPress 6.0.3, the latest security release, is out and now available to all WordPress websites. If your site supports automatic updates, it will be automatically updated. You can also manually update within your dashboard => Updates. If your site supports automatic updates, it will be automatically updated. You can also manually update within your dashboard…
-
Fortinet Releases Patch for Auth Vulnerability Affecting FortiOS, FortiProxy, and FortiSwitchManager
Fortinet has released a patch an advisory on a recent critical authentication bypass vulnerabilities affecting FortiOS, FortiProxy, and FortiSwitchManager. The authentication bypass bug, CVE-2022-40684, allows an unauthenticated user to perform administrative functions through maliciously crafted HTTPS requests. Account owners with affected devices have been notified early last week prior to their public release to update…
Categories:
Have any comments or suggestions? Feel free to let us know!
