millions
-
Blog
Security plugin flaw in millions of WordPress sites gives admin access
A critical authentication bypass vulnerability has been discovered impacting the WordPress plugin ‘Really Simple Security’ (formerly ‘Really Simple SSL’), including both free and Pro versions. Really Simple Security is a security plugin for the WordPress platform, offering SSL configuration, login protection, a two-factor authentication layer, and real-time vulnerability detection. Its free version alone is used in over four million websites. Wordfence,…
Read More » -
Blog
Misconfigurations in Microsoft Power Pages could expose millions of sensitive records
A data exposure issue stemming from misconfigured access controls in Microsoft Power Pages has left several millions of records exposed to unauthorized users, new research reveals. Aaron Costello, chief of SaaS security and research at AppOmni, detailed how Microsoft’s website building platform could be granting anonymous users permissions to access sensitive PII. In September 2024, Costello said he uncovered “significant…
Read More » -
Blog
The demise of the floppy disk continues: Months after Japan ‘won the war’ on the legacy storage medium, San Francisco announces plans to spend millions overhauling its metro rail technology
Officials from the San Francisco transportation department have announced they will be replacing their floppy disk-based train control system, jumping on the bandwagon to do away with the legacy storage platform. The Municipal Transportation Agency board, which is responsible for overseeing San Francisco’s Muni Metro light rail network, signed a new $212 million contract with Hitachi Rail to overhaul its…
Read More » -
Blog
UK government says new data bill will free up millions of hours of public sector time
The UK government is proposing new data laws it says could free up millions of hours of police and NHS time every year and boost the UK economy by £10 billion. The Data Use and Access Bill is not dissimilar to its predecessor, the Data Protection and Digital Information Bill (DPDI), which failed to pass during the ‘wash-up’ process before…
Read More » -
Blog
AWS, Azure auth keys found in Android and iOS apps used by millions
Multiple popular mobile applications for iOS and Android come with hardcoded, unencrypted credentials for cloud services like Amazon Web Services (AWS) and Microsoft Azure Blob Storage, exposing user data and source code to security breaches. Exposing this type of credentials can easily lead to unauthorized access to storage buckets and databases with sensitive user data. Apart from this, an attacker could use…
Read More » -
Blog
IT exec accused of falsifying data center certifications to win millions in government contracts
The chief executive of a US IT services company has been indicted for fraud amid accusations that he lied about the reliability, availability, and security of his firm’s data center. Deepak Jain, 49, of Potomac, was the CEO of an information technology services company – referred to as Company A – that provided data center services to customers, including the…
Read More » -
Blog
Severe flaws in E2EE cloud storage platforms used by millions
Several end-to-end encrypted (E2EE) cloud storage platforms are vulnerable to a set of security issues that could expose user data to malicious actors. Cryptographic analysis from ETH Zurich researchers Jonas Hofmann and Kien Tuong Turong revealed issue with Sync, pCloud, Icedrive, Seafile, and Tresorit services, collectively used by more than 22 million people. The analysis was based on the threat…
Read More » -
Blog
Millions of Pounds of Meals With Cooked Chicken Recalled for Listeria
The recalled products were sold nationally under the store brands of major retailers including 7-Eleven, Aldi, Amazon Kitchen, Target, Trader Joe’s, and Walmart, as well as large regional grocers such as Albertsons, H-E-B, Giant Eagle, Kroger, Meijer, Save Mart, and Wegmans. Other products were sold nationally under brand names including Atkins, Boston Market, Dole, Jenny Craig, Rao, ReadyMeals, and Udi’s. …
Read More » -
Blog
Blood Pressure Monitors Don’t Fit Millions of People
For the new study, the researchers selected 16 popular blood pressure devices from Amazon.com in January 2024, choosing devices that ranked highly in search, number of purchases, and number of ratings over the previous month. They ruled out six devices that were either unavailable or came with a wrist cuff instead of an arm cuff. Out of the remaining 10,…
Read More » -
Blog
Russian laundering millions for Lazarus hackers arrested in Argentina
The federal police in Argentina (PFA) have arrested a 29-year-old Russian national in Buenos Aires on charges of money laundering related to cryptocurrency proceeds belonging to the North Korean Lazarus hackers. The San Isidro Specialized Fiscal Unit in Cybercrime Investigations (UFEIC) collaborated with blockchain analysis firm TRM Labs to identify and locate the individual despite him using a complex transactions network…
Read More »
