Any web-based business organization should give a decent customer experience. This Christmas season, a great deal is on the line for those organizations. Computerized Business 360 predicts that during the 2022 Christmas shopping season, almost $1 of each $4 will…
Latest posts
Digital Personal Data Protection Bill 2022, by the Government of India
The long-awaited data protection rule draught was released by the Indian government on Friday, marking the fourth attempt since it was first suggested in July 2018. Public comment on the draught is welcome till December 17, 2022. Including over 760…
A faulty server exposed the PHI of 600,000 Inmates.
A claims processing company claims that the affected data is at least ten years old. Nearly 600,000 prisoners who got medical care while detained over the past ten years had sensitive information exposed. Due to a server misconfiguration at a…
Google Roulette: XSS in Chromium browsers can be activated by a developer console trick
An example of how difficult browser cybersecurity is. Suppose bad actors can fool Chromium browser users into submitting a straightforward JavaScript command in the developer console. In that case, they can launch cross-site scripting (XSS) assaults throughout the subdomain of…
Several Amazon RDS instances are disclosing user data.
New research from Mitiga, a cloud incident management business, reveals that several databases on Amazon RDS (Amazon Relational Database Service) disclosed personally identifiable information (PII). Ariel Szarf, Doron Karmi, and Lionel Saposnik, who were Researchers, stated that “leaking PII in…
Users of Mastodon are at risk of password-stealing attacks
A researcher has cautioned that a vulnerability in Anomaly, a fork of Mastodon, could allow hackers to obtain users’ password information. Mastodon has been more well-known recently due to people switching from Twitter, which the controversial entrepreneur Elon Musk just…
Another Parse Server RCE is produced by the prototype pollution project
Parse Server has been updated to address a prototype pollution vulnerability that could result in remote code execution (RCE). According to a GitHub security advisory posted on November 8, an attacker could potentially trigger RCE by utilizing the flaw (CVE-2022-39396)…
Two persistent Android spyware campaigns that target Uyghurs are discovered by experts.
Two ongoing surveillance operations have been discovered using Android spyware programmes to gather personal data and locate the Uyghur population in China and other countries. This includes upgraded versions of an espionage artefact termed MOONSHINE by researchers from the University…
Ukraine claims Russian hackers are using the latest Somnia ransomware.
The Russian hacktivists introduced a new ransomware strain called Somnia that hit Multiple Ukrainian enterprises and encrypted their computers and disrupted operations. In a statement published on its website, the Computer Emergency Response Team of Ukraine (CERT-UA) announced the outbreak…
Arrested in Canada: Accused LockBit Ransomware Operator
Arrested in Canada: Accused LockBit Ransomware Operator. Mikhail Vasiliev, a Russian-Canadian, could spend up to five years in prison in the US. Ontario police detained a dual citizen of Canada and Russia for serving as a member of the LockBit…