Cloud Security

Assume Clubhouse Conversations Are Being Recorded, Researchers Warn
Posted on Monday February 22, 2021

Two breaches of the audio-based social media app reinforce privacy, security concerns.

Microsoft: SolarWinds Attackers Downloaded Azure, Exchange Code
Posted on Friday February 19, 2021

However, internal products and systems were not leveraged to attack others during the massive supply-chain incident, the tech giant said upon completion of its Solorigate investigation.

Stolen Jones Day Law Firm Files Posted on Dark Web
Posted on Wednesday February 17, 2021

Jones Day, which represented Trump, said the breach is part of the Accellion attack from December.

Let’s Encrypt Gears Up to Replace 200M Certificates a Day
Posted on Tuesday February 16, 2021

The open CA prepares for ‘worst scenarios’ with new fiber, servers, cryptographic signing and more.

Misconfigured Baby Monitors Allow Unauthorized Viewing
Posted on Tuesday February 16, 2021

Hundreds of thousands of individuals are potentially affected by this vulnerability.

mHealth Apps Expose Millions to Cyberattacks
Posted on Friday February 12, 2021

Researcher testing of 30 mobile health apps for clinicians found that all of them had vulnerable APIs.

Spotify Suffers Second Credential-Stuffing Cyberattack in 3 Months
Posted on Thursday February 04, 2021

As many as 100,000 of the music streaming service's customers could face account takeover.

Microsoft 365 Becomes Haven for BEC Innovation
Posted on Friday January 29, 2021

Two new phishing tactics use the platform's automated responses to evade email filters.

Mimecast Confirms SolarWinds Hack as List of Security Vendor Victims Snowball
Posted on Thursday January 28, 2021

A growing number of cybersecurity vendors like CrowdStrike, Fidelis, FireEye, Malwarebytes, Palo Alto Networks and Qualys are confirming being targeted in the espionage attack.

23M Gamer Records Exposed in VIPGames Leak
Posted on Tuesday January 26, 2021

The personal data of 66,000 users was left wide open on a misconfigured Elasticsearch server, joining a growing list of companies with leaky clouds.