Decommissioned medical infusion pumps sold on secondary market could reveal Wi-Fi configuration settings
Experts warn that decommissioned medical infusion pumps sold via the secondary market could expose Wi-Fi configuration settings. The sale of…
Security
OWASP Top 10 for LLM (Large Language Model) applications is out!
The OWASP Top 10 for LLM (Large Language Model) Applications version 1.0 is out, it focuses on the potential security…
The Need for Trustworthy AI
If you ask Alexa, Amazon’s voice assistant AI system, whether Amazon is a monopoly, it responds by saying it doesn’t…
Rapid7 found a bypass for the recently patched actively exploited Ivanti EPMM bug
Researchers discovered a bypass for a recently fixed actively exploited vulnerability in Ivanti Endpoint Manager Mobile (EPMM). Rapid7 cybersecurity researchers…
Russian APT29 conducts phishing attacks through Microsoft Teams
Russia-linked APT29 group targeted dozens of organizations and government agencies worldwide with Microsoft Teams phishing attacks. Microsoft Threat Intelligence reported…
Ethical Web Scraping and Crawling: Navigating the Digital World Responsibly
The wealth of data available on the internet and the infinite potential that it has to offer requires… The post…
Hackers already installed web shells on 581 Citrix servers in CVE-2023-3519 attacks
Researchers warn that hundreds of Citrix servers have been hacked in an ongoing campaign exploiting the RCE CVE-2023-3519. Security researchers…
Zero-day in Salesforce email services exploited in targeted Facebook phishing campaign
Experts spotted a spear-phishing Facebook campaign exploiting a zero-day vulnerability in Salesforce email services. Researchers from Guardio Labs uncovered a…
Burger King forgets to put a password on their systems, again
The fast food giant Burger King put their systems and data at risk by exposing sensitive credentials to the public…
Beware of BOLA (IDOR) Vulnerabilities in Web Apps and APIs
Introduction In a recent advisory, the Cybersecurity and Infrastructure Security Agency (CISA) warned vendors, designers, developers, and end-user organizations of…