Category: security
Two top PDF tools have been found leaking user documents and data online
Two top PDF maker tools, both owned by the same company, reportedly operated a misconfigured database leaking sensitive user data to the wider internet via an exposed Amazon S3 bucket. Researchers from Cybernews claim PDF Pro and Help PDF have so far leaked more than 89,000 documents, and apparently continue…
Read More
GitLab warns of critical security flaw which could allow hacker takeovers
GitLab has upgraded its Community and Enterprise editions to fix a critical vulnerability which allowed malicious actors to run pipeline jobs as any other platform user. In its patch release notes, published on the GitLab website, the company said it “strongly” recommends users upgrade their installations to the latest versions…
Read More
Bookworms beware — this sneaky malware disguises itself as ebooks
Researchers have warned reading fans of a new malware strain disguising itself as eBooks, and being distributed via torrents. Usually, threat actors sharing malware via torrents would disguise the files as popular movies, or cracks for expensive, commercial software, since these are popular and allow the attackers to distribute the…
Read More
Snowflake is bringing in some big MFA changes following recent security incidents
Snowflake is upgrading its security posture, giving admins the option to make multi-factor authentication (MFA) mandatory, as well as adding more security customization options and introducing a new platform for monitoring, and enforcing, MFA policies. Admins will be allowed to decide whether to push MFA on all users, those using…
Read More
Fujitsu says “advanced” malware was to blame for cyberattack, confirms customer data leaked
Fujitsu Japan has confirmed suffering a cyberattack in which sensitive data, including that of its customers, was leaked. In a press release, Fujitsu said the cyberattack, first spotted on March 15 2024, started with a compromise of a single device, after which it spread to a total of 49 business…
Read More
Zotac may have been exposing private customer data straight into Google search results
Computer hardware manufacturer Zotac misconfigured a database containing sensitive customer data, resulting in that information being leaked on the wider web. Zotac is best known for its graphics cards and mini PCs, with its product lineup including various NVIDIA GeForce graphics cards, ZBOX mini PCs, various motherboards, SSDs, and other…
Read More