Are You Ready for the Privacy Laws Tsunami?
Think PCI, HIPAA, and GDPR compliance is tough? There's a tsunami of similar laws on the way. Prepare your business…
Intercepting data traffic via iPhone
Intercepting data traffic via iPhone By Jordan Marcus Bonagura Introduction This article aims to demonstrate in a simplified […] The…
WordPress MStore API 2.0.6 Shell Upload
Authored by spacehen WordPress MStore API plugin version 2.0.6 suffers from a remote shell upload vulnerability. Change Mirror Download #…
Tapatalk Plugins PHP Object Injection
Authored by dH team dH team discovered a PHP object injection vulnerability in all Tapatalk plugins that can allow attackers…
Risky Business #640 — Huh. The CIA really was out to neck Assange
On this week’s show Patrick Gray and Adam Boileau discuss the week’s security news, including: The amazing Yahoo! News story…
Google Extensible Service Proxy Header Forgery
Authored by Imre Rad Google’s Extensible Service Proxy suffers from a header forgery vulnerability. Change Mirror Download Extensible Service Proxy…
Gurock Testrail 7.2.0.3014 Improper Access Control
Authored by JohnJHacking, Sick Codes Gurock Testrail version 7.2.0.3014 suffers from an improper access control vulnerability. advisories | CVE-2021-40875 Change…
Misconfigurations are the biggest threat to cloud security, period
By eSentire There is no doubt that cloud adoption is accelerating at an exponential rate. Whether it’s for […] The…
Secrets from Public Repositories Were Exposed Due to Travis CI Flaw
Travis CI, a continuous integration provider located in Berlin, has patched a severe issue that exposed signing keys, API keys,…