Facebook Now Offers Bounties For Access Token Exposure
The newly expanded Facebook bug bounty program sniffs out access token exposure flaws.
Source: Threat Post – Web Security – Facebook Now
[...]
AuthorLindsey O Donnell
CSS-Based Attack Causes iOS, macOS Devices to Crash
The attack stems from a glitch in WebKit, an HTML layout browser engine in Apple’s Safari browser.
Source: Threat Post – Mobile
[...]
Apple Yet to Patch Safari Browser Address Bar Spoofing Flaw
A flaw in Safari – that allows an attacker to spoof websites and trick victims into handing over their credentials – has yet
[...]
Millions of Records Exposed in Veeam Misconfigured Server
Exposed data included names, emails addresses and IP addresses.
Source: Threat Post – Web Security – Millions of Records Exposed in Veeam
[...]
Adobe Patches Six Critical Flaws in ColdFusion
Adobe issued fixes for versions of its ColdFusion web development platform – including six critical flaws.
Source: Threat Post – Web Security
[...]
Magecart Group Pinned in Recent British Airways Breach
The Magecart Group has been blamed for the British Airways breach that compromised 380k payment cards.
Source: Threat Post – Web Security
[...]
Threat Actors Eyeing IQY Files To Peddle Malspam
The Necurs Botnet, DarkHydrus and other threat actors are turning to the inconspicuous files.
Source: Threat Post – Web Security – Threat
[...]
Mozilla Patches Critical Code Execution Bug in Firefox 62
The update includes nine security patches overall.
Source: Threat Post – Web Security – Mozilla Patches Critical Code Execution Bug in Firefox
[...]
Google Rolls Out 40 Fixes with Chrome 69
The official release of the version includes 40 fixes, seven of which are rated “High.”
Source: Threat Post – Web Security –
[...]
ThreatList: 60% of BEC Attacks Fly Under the Radar
The report also found that simply protecting employees in sensitive departments is not sufficient to protect against BEC.
Source: Threat Post –
[...]