[ThreatPost] 4-Year-Old Microsoft Azure Zero-Day Exposes Web App Source Code

The security vulnerability could expose passwords and access tokens, along with blueprints for internal infrastructure and finding software vulnerabilities.

Source: Read More (Threatpost)

You might be interested in …

[ZDNet] Meta agrees to pay $90 million settlement in decade-old Facebook privacy suit

All posts, ZDNet

After losing its most recent appeal and being rebuffed by the US Supreme Court, Facebook’s parent company finally intends to pay out. Source: Read More (Latest topics for ZDNet in Security)

Read More

[HackerNews] Apache Log4j Vulnerability — Log4Shell — Widely Under Active Attack

All posts, HackerNews

Threat actors are actively weaponizing unpatched servers affected by the newly disclosed “Log4Shell” vulnerability in Log4j to install cryptocurrency miners, Cobalt Strike, and recruit the devices into a botnet, even as telemetry signs point to exploitation of the flaw nine days before it even came to light. Netlab, the networking security division of Chinese tech […]

Read More

[SecurityWeek] Over 30 Countries Take Part in NATO’s ‘Locked Shields 2022’ Cyber Exercise

All posts, Security Week

NATO’s Cooperative Cyber Defence Centre of Excellence (CCDCOE) on Tuesday kicked off the thirteen installment of Locked Shields, its annual live-fire cyber defense exercise. read more Source: Read More (SecurityWeek RSS Feed)

Read More