[HackerNews] 23 Android Apps Expose Over 100,000,000 Users’ Personal Data

Misconfigurations in multiple Android apps leaked sensitive data of more than 100 million users, potentially making them a lucrative target for malicious actors. “By not following best-practices when configuring and integrating third-party cloud-services into applications, millions of users’ private data was exposed,” Check Point researchers said in an analysis published today and shared with Source: […]

Read More

[HackerNews] Is Single Sign-On Enough to Secure Your SaaS Applications?

If there’s one thing all great SaaS platforms share in common, it’s their focus on simplifying the lives of their end-users. Removing friction for users in a safe way is the mission of single sign-on (SSO) providers. With SSO at the helm, users don’t have to remember separate passwords for each app or hide the […]

Read More

[ZDNet] ByteDance CEO to step down, focus on ‘long-term’ strategy

Also the Chinese company’s founder, Zhang Yiming says he will move to a new role by end-2021 to focus on corporate culture and initiatives that are long-term, adding in an internal note to employees that he lacks the skills to be an “ideal” manager. Source: Read More (Latest topics for ZDNet in Security)

Read More

[HackerNews] Watering Hole Attack Was Used to Target Florida Water Utilities

An investigation undertaken in the aftermath of the Oldsmar water plant hack earlier this year has revealed that an infrastructure contractor in the U.S. state of Florida hosted malicious code on its website in what’s known as a watering hole attack. “This malicious code seemingly targeted water utilities, particularly in Florida, and more importantly, was visited by […]

Read More

[SecurityWeek] Scans for Vulnerable Exchange Servers Started 5 Minutes After Disclosure of Flaws

Adversaries are typically quick to take advantage of newly disclosed vulnerabilities, and they started scanning for vulnerable Microsoft Exchange Servers within five minutes after Microsoft’s announcement, Palo Alto Networks reveals in a new report. read more Source: Read More (SecurityWeek RSS Feed)

Read More